cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-01-2021
Exécuté par Philippe (administrateur) sur DESKTOP-EEUN360 (ASUSTeK COMPUTER INC. X751LJ) (21-01-2021 11:52:30)
Exécuté depuis C:\Users\Philippe\Downloads
Profils chargés: Philippe
Platform: Windows 10 Home Version 20H2 19042.746 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\TrayStatus\TrayStatus.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(GoPro, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2012.16655.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <12>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Ralink Technology, Corp.) [Fichier non signé] C:\Program Files (x86)\ALFA\Common\RaRegistry.exe
(Ralink Technology, Corp.) [Fichier non signé] C:\Program Files (x86)\ALFA\Common\RaRegistry64.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2654512 2015-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\Run: [TrayStatus] => C:\Program Files (x86)\TrayStatus\TrayStatus.exe [3695552 2020-08-25] (Binary Fortress Software Ltd -> Binary Fortress Software)
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\Run: [OpenVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [755296 2020-10-28] (OpenVPN Inc. -> )
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1339168 2020-12-24] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [581120 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP 7012 Status Monitor: C:\Windows\system32\hpinksts7012LM.dll [328704 2014-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP DC11 Status Monitor: C:\Windows\system32\hpinkstsDC11LM.dll [391984 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 7640 series): C:\Windows\system32\HPDiscoPMDC11.dll [751624 2014-05-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PDF Architect 8 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\architect_pdfpmon_v.4.12.26.3.dll [932984 2021-01-14] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2021-01-14] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.96\Installer\chrmstp.exe [2021-01-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-3605AD5C0A0C}] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /f /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ALFA Wireless Utility.lnk [2018-07-06]
ShortcutTarget: ALFA Wireless Utility.lnk -> C:\Program Files (x86)\ALFA\Common\RaUI.exe (ALFA Inc.) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00AFE875-073D-44E3-9C03-98057159F9F7} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {0C65BDE7-2E6C-42E7-9921-90A1CABCD2D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-26] (Google Inc -> Google Inc.)
Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [505200 2015-05-29] (Dropbox, Inc -> )
Task: {279EE901-0FFF-417B-97E7-51C70F16A92D} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {2E87213F-76E5-4195-96F1-4262B0153A36} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {34549394-E174-4866-9EE8-A7F318B963EA} - System32\Tasks\HPCustParticipation HP ENVY Photo 6200 series => C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\HPCustPartic.exe [6659488 2019-03-18] (HP Inc -> HP Inc.)
Task: {4AFBA267-AB2D-4342-AD78-CBC0D8A92A77} - System32\Tasks\HPCustParticipation HP ENVY 7640 series => C:\Program Files\HP\HP ENVY 7640 series\Bin\HPCustPartic.exe [5853704 2014-05-06] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {741B298D-3EBF-4970-BE4B-745C2267F90D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
Task: {8436925B-3DE5-4BDE-B2B5-38AB40122AD2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8642DDD5-B51F-46B0-A08C-A13F51BBE504} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8EC188ED-4E41-4965-A395-87E99277FFE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {916F98AD-1158-4B1C-B095-D8FE161D9688} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {93E20BBE-F3D1-4629-83D2-D7741C7271D8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {98D996D7-F64E-4BE8-AB20-F26A91EFCCB0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {998BBE05-CD23-4F2B-B5F7-71ED9BD63763} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16409496 2015-11-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {9E3EC246-3FB3-49B0-BC65-1BF90F312B7E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B4D10337-9B4C-43D2-8BAB-8B505341C3E8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5C0B902-2821-44D8-B4A7-AE1924046754} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BDE58024-ED04-47AE-BC96-0F721651E346} - System32\Tasks\UCheck => C:\Program Files\UCheck\UCheck64.exe [26949688 2020-12-16] (Adlice -> )
Task: {C4C263E0-76B3-4EF1-8689-C84FCEDADF29} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061896 2021-01-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFABC7D5-1560-425E-9C2F-5811C783460F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EF6CE991-92E8-4CEE-B620-763A04CD0C0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-26] (Google Inc -> Google Inc.)
Task: {F8E5BBB6-3C79-41E6-BE79-F0352DD97F6A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{10917f6b-a8a8-49ab-943c-652f1b4c23b0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4bfd9fc5-be24-4863-976a-31010a05a92b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5206e2b0-e09d-47dc-a41d-0cb8b1c17b89}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{db8ff22b-354e-4522-9329-38889bda4a69}: [DhcpNameServer] 172.17.2.1
Tcpip\..\Interfaces\{fe252ed7-096a-4999-b486-ea8373437931}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Edge:
=======
DownloadDir: C:\Users\Philippe\Downloads
Edge Profile: C:\Users\Philippe\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: zcd5gh60.default-1604656495019
FF ProfilePath: C:\Users\Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\zcd5gh60.default-1604656495019 [2021-01-05]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google Inc -> Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR Profile: C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default [2021-01-21]
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
CHR DefaultSearchKeyword: Default -> qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Extension: (Duolingo sur le Web) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2021-01-07]
CHR Extension: (IBM Security Rapport) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2021-01-07]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-07]
CHR Extension: (uBlock Origin) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-01-10]
CHR Extension: (Qwant) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2021-01-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-07]
CHR Extension: (Chrome Media Router) - C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-20]
CHR Profile: C:\Users\Philippe\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-01]
CHR HKU\S-1-5-21-140641448-3471451293-3027832417-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Philippe\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-03-19]
CHR HKU\S-1-5-21-140641448-3471451293-3027832417-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-25] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-25] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [438560 2020-12-24] (Digital Wave Ltd -> Digital Wave Ltd)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-04-14] (GoPro, Inc. -> )
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-05] (Malwarebytes Inc -> Malwarebytes)
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74336 2020-10-28] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [74336 2020-10-28] (OpenVPN Inc. -> The OpenVPN Project)
R2 RalinkRegistryWriter; C:\Program Files (x86)\ALFA\Common\RaRegistry.exe [372736 2012-07-04] (Ralink Technology, Corp.) [Fichier non signé]
R2 RalinkRegistryWriter64; C:\Program Files (x86)\ALFA\Common\RaRegistry64.exe [447488 2012-07-04] (Ralink Technology, Corp.) [Fichier non signé]
S3 RaMediaServer; C:\Program Files (x86)\ALFA\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [Fichier non signé]
R2 RealtekWlanU; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe [48856 2014-05-19] (Realtek Semiconductor Corp -> Realtek)
S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-04-23] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] (Realtek Semiconductor Corp -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OpenVPNService; "C:\Program Files\OpenVPN\bin\openvpnserv2.exe" [X]
S3 PDF Architect 8; "C:\Program Files\PDF Architect 8\ws.exe" [X]
S3 PDF Architect 8 Creator; "C:\Program Files\PDF Architect 8\creator-ws.exe" [X]
S2 PDF Architect 8 Update Service; "C:\Program Files\PDF Architect 8\updater-ws.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2021-01-05] (Malwarebytes Inc -> Malwarebytes)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
S0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-01-14] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [38176 2021-01-14] (WireGuard LLC -> WireGuard LLC)
S3 HIDSwitch; \SystemRoot\System32\drivers\AsHIDSwitch64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

Erreur lors de la lecture du fichier: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office "
2021-01-21 11:52 - 2021-01-21 11:53 - 000025659 _____ C:\Users\Philippe\Downloads\FRST.txt
2021-01-21 11:52 - 2021-01-21 11:52 - 000000000 ____D C:\FRST
2021-01-21 11:50 - 2021-01-21 11:50 - 002295808 _____ (Farbar) C:\Users\Philippe\Downloads\FRST64.exe
2021-01-21 06:07 - 2021-01-21 06:07 - 000000141 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2021-01-21 06:07 - 2021-01-21 06:07 - 000000141 _____ C:\ProgramData\Documents\pre_fileassoc.tmp
2021-01-20 05:00 - 2021-01-20 05:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-15 06:56 - 2021-01-15 06:56 - 000000000 ____D C:\WINDOWS\LastGood
2021-01-14 15:49 - 2021-01-14 15:49 - 000000000 ____D C:\Users\Philippe\AppData\Local\pdfforge
2021-01-14 15:47 - 2021-01-14 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2021-01-14 15:43 - 2021-01-14 15:43 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-14 15:42 - 2021-01-14 15:42 - 000039920 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2021-01-14 15:42 - 2021-01-14 15:42 - 000038176 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-13 14:17 - 2021-01-13 14:17 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-01-13 12:45 - 2021-01-13 12:45 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 12:45 - 2021-01-13 12:45 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 12:45 - 2021-01-13 12:45 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 12:45 - 2021-01-13 12:45 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 12:45 - 2021-01-13 12:45 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 12:45 - 2021-01-13 12:45 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 12:45 - 2021-01-13 12:45 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 12:45 - 2021-01-13 12:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 12:45 - 2021-01-13 12:45 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 12:45 - 2021-01-13 12:45 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 12:45 - 2021-01-13 12:45 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 12:45 - 2021-01-13 12:45 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 12:45 - 2021-01-13 12:45 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 12:44 - 2021-01-13 12:44 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 12:44 - 2021-01-13 12:44 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 12:44 - 2021-01-13 12:44 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 12:44 - 2021-01-13 12:44 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 12:44 - 2021-01-13 12:44 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 12:44 - 2021-01-13 12:44 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 12:44 - 2021-01-13 12:44 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 12:43 - 2021-01-13 12:43 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 12:43 - 2021-01-13 12:43 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 12:43 - 2021-01-13 12:43 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 12:43 - 2021-01-13 12:43 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 12:43 - 2021-01-13 12:43 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-13 06:43 - 2021-01-13 06:43 - 005385040 _____ (Canneverbe Limited ) C:\Users\Philippe\Downloads\cdbxp_setup_4.5.8.7128_minimal.exe
2021-01-13 06:43 - 2021-01-13 06:43 - 000000000 ____D C:\Program Files (x86)\CDBurnerXP
2021-01-11 19:44 - 2021-01-11 19:44 - 000000000 ____D C:\Users\Philippe\AppData\Local\TSR_Software_-_www.tsr-so
2021-01-11 19:35 - 2021-01-11 19:37 - 000000000 ____D C:\Users\Philippe\Documents\TSR Software
2021-01-11 19:34 - 2021-01-11 19:34 - 014156984 _____ (TSR Software ) C:\Users\Philippe\Downloads\WatermarkImageSetup.exe
2021-01-11 19:29 - 2021-01-11 19:29 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2021-01-11 19:27 - 2020-10-23 22:49 - 012717872 _____ C:\Users\Philippe\Downloads\paint.net.4.2.14.install.exe
2021-01-11 19:00 - 2021-01-11 19:26 - 012689504 _____ C:\Users\Philippe\Downloads\paint.net.4.2.14.install.zip
2021-01-11 18:20 - 2021-01-11 18:20 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirusTotal Uploader 2.2
2021-01-11 18:20 - 2021-01-11 18:20 - 000000000 ____D C:\Program Files (x86)\VirusTotalUploader2
2021-01-11 18:18 - 2021-01-11 18:18 - 000142744 _____ C:\Users\Philippe\Downloads\vtuploader2.2.exe
2021-01-11 18:10 - 2021-01-11 18:10 - 000003106 _____ C:\WINDOWS\system32\Tasks\UCheck
2021-01-11 18:10 - 2021-01-11 18:10 - 000000000 ____D C:\ProgramData\UCheck
2021-01-11 18:10 - 2021-01-11 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2021-01-11 18:10 - 2021-01-11 18:10 - 000000000 ____D C:\Program Files\UCheck
2021-01-11 18:08 - 2021-01-11 18:08 - 026055624 _____ (Adlice Software ) C:\Users\Philippe\Downloads\UCheck_setup.exe
2021-01-09 18:52 - 2021-01-12 06:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-09 18:52 - 2021-01-09 18:52 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-01-09 18:52 - 2021-01-09 18:52 - 000002437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-01-09 18:43 - 2021-01-20 09:37 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-09 18:43 - 2021-01-09 18:43 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-01-09 15:33 - 2021-01-09 18:18 - 000000000 ____D C:\Users\Philippe\AppData\Local\SaraResults
2021-01-09 15:32 - 2021-01-09 15:32 - 000000000 ____D C:\Users\Philippe\AppData\Local\SaRALogs
2021-01-09 15:31 - 2021-01-09 15:32 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2021-01-09 15:30 - 2021-01-09 18:18 - 000000000 ____D C:\Users\Philippe\AppData\Local\Deployment
2021-01-09 15:30 - 2021-01-09 15:30 - 000000000 ____D C:\Users\Philippe\AppData\Local\Apps\2.0
2021-01-08 14:05 - 2020-11-11 03:54 - 000159600 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2021-01-07 17:03 - 2021-01-07 17:03 - 000000000 ____D C:\Users\Philippe\AppData\Local\ZHP
2021-01-05 20:59 - 2021-01-05 20:59 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-05 20:59 - 2021-01-05 20:58 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-01-05 19:25 - 2021-01-05 19:25 - 000003662 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2021-01-05 19:23 - 2021-01-05 19:23 - 000000000 ____D C:\KPRM
2020-12-26 16:56 - 2020-12-26 16:56 - 000063948 _____ C:\Users\Philippe\Desktop\CBTalk memo.pdf
2020-12-25 12:06 - 2021-01-04 17:18 - 000000000 ____D C:\Program Files (x86)\OpenAL
2020-12-25 12:06 - 2020-12-25 12:06 - 000000000 ____D C:\Users\Philippe\.GoPro

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-21 11:49 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-21 11:27 - 2017-07-30 06:57 - 000000000 ____D C:\Program Files (x86)\ASUS
2021-01-21 11:22 - 2017-07-30 06:57 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-21 11:22 - 2016-02-25 19:26 - 000000000 __SHD C:\Users\Philippe\IntelGraphicsProfiles
2021-01-21 11:20 - 2017-07-30 06:58 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-21 11:12 - 2016-02-25 19:42 - 000000000 ____D C:\ProgramData\Oracle
2021-01-21 09:45 - 2020-06-18 17:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-21 06:10 - 2016-02-26 06:59 - 000000000 ___RD C:\Users\Philippe\Desktop\Logiciels vidéo
2021-01-21 05:32 - 2016-02-26 06:48 - 000000000 ____D C:\Program Files\CCleaner
2021-01-20 17:03 - 2016-02-26 09:28 - 000000000 ____D C:\Users\Philippe\Documents\Mes Fichiers reçus
2021-01-20 10:34 - 2017-12-03 01:01 - 000000000 ____D C:\Users\Philippe\AppData\Local\Packages
2021-01-20 08:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-20 08:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-20 05:00 - 2015-08-18 06:29 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-19 06:53 - 2016-02-25 19:03 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\BankPerfect
2021-01-19 06:53 - 2016-02-25 19:00 - 000437610 _____ C:\Users\Philippe\Documents\Compte Courant Boursorama.bp
2021-01-18 07:31 - 2020-06-26 16:36 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-18 07:31 - 2020-06-26 16:36 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-16 18:19 - 2016-02-26 07:56 - 000000000 ___RD C:\Users\Philippe\Desktop\Logiciels musique
2021-01-16 18:18 - 2017-07-11 08:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2021-01-16 18:18 - 2017-07-11 08:29 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2021-01-16 18:18 - 2016-02-26 08:01 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\DVDVideoSoft
2021-01-15 07:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-14 15:59 - 2020-06-18 18:01 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-14 15:59 - 2019-12-07 15:49 - 000794294 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-14 15:59 - 2019-12-07 15:49 - 000150408 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-14 15:55 - 2020-06-18 17:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-14 15:55 - 2020-03-22 12:04 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-14 15:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-14 15:54 - 2020-06-18 17:51 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-14 15:54 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-14 15:54 - 2018-10-03 10:47 - 000000000 ____D C:\Program Files\PDFCreator
2021-01-14 15:48 - 2018-10-03 10:47 - 000116736 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2021-01-14 15:42 - 2019-01-11 08:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2021-01-14 15:42 - 2017-12-26 12:37 - 000000000 ____D C:\Program Files\OpenVPN
2021-01-13 14:17 - 2020-06-18 17:51 - 000446136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-13 14:16 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 14:16 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 14:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 12:47 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 12:43 - 2020-06-18 17:52 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 12:37 - 2016-02-26 17:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 12:34 - 2016-02-26 17:40 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 06:43 - 2016-02-25 19:46 - 000001176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2021-01-13 06:40 - 2016-02-25 19:26 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\Adobe
2021-01-13 06:39 - 2020-04-07 13:55 - 000000000 ____D C:\Users\Philippe\Documents\My Digital Editions
2021-01-13 06:39 - 2016-02-26 08:07 - 000002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.5.lnk
2021-01-13 06:39 - 2016-02-26 08:07 - 000000000 ___RD C:\Users\Philippe\Desktop\Logiciels lecture
2021-01-13 06:38 - 2018-07-14 14:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-01-13 06:38 - 2016-02-26 06:46 - 000000000 ___RD C:\Users\Philippe\Desktop\Logiciel maintenance
2021-01-13 06:34 - 2016-02-25 19:43 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-13 06:34 - 2016-02-25 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-13 06:34 - 2016-02-25 19:43 - 000000000 ____D C:\Program Files\WinRAR
2021-01-11 19:31 - 2016-02-26 06:58 - 000000000 ___RD C:\Users\Philippe\Desktop\Logiciels photo
2021-01-11 19:29 - 2016-02-26 07:11 - 000000000 ____D C:\Program Files\paint.net
2021-01-11 19:05 - 2016-03-12 18:01 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\ObviousIdea
2021-01-11 17:36 - 2018-08-01 06:55 - 000000000 ____D C:\Users\Philippe\AppData\Local\CrashDumps
2021-01-10 10:52 - 2020-06-18 15:52 - 000000000 ____D C:\Users\Philippe
2021-01-09 19:13 - 2018-03-28 10:02 - 000002495 _____ C:\Users\Philippe\Desktop\Word.lnk
2021-01-09 19:13 - 2018-03-17 07:06 - 000002457 _____ C:\Users\Philippe\Desktop\Excel.lnk
2021-01-09 18:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-01-09 16:00 - 2020-06-26 16:37 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 10:58 - 2018-07-14 14:08 - 000000000 ____D C:\Users\Philippe\AppData\Local\AxCrypt
2021-01-07 17:17 - 2016-03-06 14:38 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\ZHP
2021-01-07 11:01 - 2016-04-12 17:55 - 000000000 ____D C:\Users\Philippe\AppData\Roaming\vlc
2021-01-06 08:22 - 2016-02-25 19:00 - 000000000 ____D C:\Users\Philippe\Documents\Sauvegarde Wlm-Monney
2021-01-05 20:59 - 2020-11-25 07:39 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-01-05 20:59 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-05 20:58 - 2020-04-09 13:34 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-01-05 17:34 - 2016-07-23 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrayStatus
2021-01-05 17:34 - 2016-07-23 16:10 - 000000000 ____D C:\Program Files (x86)\TrayStatus
2021-01-05 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-05 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-01-05 17:17 - 2016-03-08 20:44 - 000000000 ____D C:\Users\Philippe\AppData\LocalLow\Temp
2021-01-05 17:16 - 2020-06-18 17:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-01-04 17:19 - 2017-07-30 06:57 - 000000000 ____D C:\ProgramData\SetupTPDriver
2021-01-04 17:18 - 2019-05-01 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2021-01-04 17:18 - 2018-10-30 17:43 - 000000000 ____D C:\ProgramData\Garmin
2021-01-04 17:18 - 2018-10-30 17:42 - 000000000 ____D C:\Program Files (x86)\Garmin
2021-01-04 17:18 - 2016-05-08 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
2021-01-04 17:18 - 2016-02-02 09:38 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-04 17:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-01-04 17:14 - 2016-05-08 13:20 - 000000000 ____D C:\Program Files\GoPro
2021-01-04 17:14 - 2016-02-25 19:28 - 000000000 ____D C:\Users\Philippe\AppData\Local\NVIDIA
2020-12-27 10:27 - 2016-02-25 20:20 - 000000000 ____D C:\Users\Philippe\AppData\Local\Comms
2020-12-25 12:06 - 2016-05-08 13:20 - 000000000 ____D C:\Users\Philippe\AppData\Local\GoPro

==================== Fichiers à la racine de certains dossiers ========

2019-12-21 15:41 - 2020-12-21 12:55 - 003340160 _____ (Nicolas Coolman) C:\Users\Philippe\ZHPCleaner.exe
2020-10-04 09:54 - 2020-10-04 09:55 - 000000003 _____ () C:\Users\Philippe\AppData\Roaming\.ptbt
2016-11-03 21:15 - 2016-12-12 13:21 - 000001019 _____ () C:\Users\Philippe\AppData\Roaming\.ptbt0
2016-02-26 09:07 - 2016-02-26 09:07 - 000000268 ___RH () C:\Users\Philippe\AppData\Roaming\Smooth Strings
2016-02-26 09:07 - 2016-02-26 09:07 - 000000268 ___RH () C:\Users\Philippe\AppData\Roaming\Solid Colors
2016-02-26 09:07 - 2016-02-26 09:07 - 000000268 ___RH () C:\Users\Philippe\AppData\Roaming\Sound Effects
2016-02-25 19:26 - 2018-07-01 05:02 - 000000184 _____ () C:\Users\Philippe\AppData\Roaming\sp_data.sys
2016-05-27 15:53 - 2018-12-25 18:09 - 000034816 _____ () C:\Users\Philippe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-11-25 17:25 - 2020-11-25 17:25 - 000000036 _____ () C:\Users\Philippe\AppData\Local\housecall.guid.cache
2018-07-15 16:02 - 2018-07-15 16:02 - 000000000 _____ () C:\Users\Philippe\AppData\Local\{0600CFA4-271C-429C-9B15-7E423B6B44E7}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité