cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-01-2021
Exécuté par MATULA (administrateur) sur MALKO (ASUSTeK COMPUTER INC. X751MD) (02-02-2021 15:38:13)
Exécuté depuis C:\Users\MATULA\1 SKIPE\Desktop
Profils chargés: MATULA
Platform: Windows 10 Home Version 20H2 19042.746 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [557760 2021-01-22] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-643979615-3718182490-1915481562-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-643979615-3718182490-1915481562-1001\...\Run: [HP ENVY 5530 series (NET)] => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-643979615-3718182490-1915481562-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016568 2020-12-30] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-643979615-3718182490-1915481562-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [581120 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP C311 Status Monitor: C:\WINDOWS\system32\hpinkstsC311LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 5530 series): C:\WINDOWS\system32\HPDiscoPMC311.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\PDF Suite 2020 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2021-02-02] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-02-25] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
Startup: C:\Users\MATULA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-06-19]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0035AF81-21A1-4AC7-83DB-266402B116DF} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {06B2C3D7-56D4-437A-9880-F66C03E0E9D1} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {07F1D222-3C32-4408-B69A-B4ED7956893B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0907AD6F-9BCC-4BA0-9403-240773EC92BE} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {0AE44AC0-4F76-4457-AD4A-73F6D0373EB8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {10D4C425-4847-48F2-9096-8A2E9787AAA3} - System32\Tasks\SkipUAC Nettoyage du Registre => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {152F83B8-ADF0-4007-B425-268A41CFA20F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {15BEDD9D-BBF9-46A1-BEF8-601BD9EE4BBB} - System32\Tasks\{FFF54788-3F48-499B-9154-23596A52E825} => "c:\program files (x86)\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.38.0.101/fr/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {1793961A-93BE-47F2-B618-7BEF86C65CD4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-01-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {1B0A39AC-769B-4B90-AC7E-49FDAA0BB084} - System32\Tasks\HP AR Program Upload - 73b5d510c32346b8b8628356953921b5eb9c2c3c60044affb84738ab9eb9b566 => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {1BD87450-7F65-49E5-AD61-07032500900A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20D7E9FF-F9B1-491B-BD5C-1714A96BE878} - System32\Tasks\SkipUAC Défragmentation des lecteurs => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {210C774B-57DF-473C-8535-D407528028DA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2476F7BC-C07E-47DB-9607-CCD255243D08} - System32\Tasks\{0DD0EC34-A6EC-466D-A8CB-1BFC53819C99} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.0.0.102/fr/abandoninstall?page=tsMain
Task: {277F6C51-5548-4790-AE8B-9E994B4A29FD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {27918113-3158-43FF-B81A-DD1B8525D553} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3C2F0BB6-EBE6-4848-AC7D-C0529CF4B867} - System32\Tasks\SkipUAC Optimisation du démarrage système => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {4728CDD2-EC66-43D1-AB9A-E0B52E8040DB} - System32\Tasks\HP AR Program Upload - 522aee15161a407b9e474019f7ca43a49f8440e4fc7f4578af7715face806740 => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {5CA4BB01-C530-4C26-81AE-3D41CA297331} - System32\Tasks\SkipUAC Suppression des traces laissées sur Internet => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {60A31AB8-53ED-4A60-BBBE-D367B4BE12BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7032FD74-B959-4A71-A2B8-A8C0AA7C644D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.)
Task: {7461FDE6-4AFE-4FE3-8FDD-63292DA8E95D} - System32\Tasks\HP AR Program Upload - 98917427bc244a1285dd426f33737ddc39208182467a4c4f878491ac0e8ec615 => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {7A2FA892-E4D0-4ACB-B090-165D1EC9E7F7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7C398905-B8D5-430B-86A6-E79E9EB476E8} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {862DCA31-1EB0-4EF2-9C46-10AEF9989FDD} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {875D4256-B93B-4F28-90D0-37F4C1ACD7B2} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {8CDBFB7A-F2FA-4BD5-B464-DDC3BDBDDC38} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E26E22A-A690-4BC1-AE32-49C70CDBB87B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {94ACCD52-1F80-4FA1-874F-1EA16E608AE1} - System32\Tasks\{17D50E5F-9F38-43E0-AD60-DB19837E6169} => "c:\program files (x86)\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.30.80.103/fr/go/help.faq.installer?LastError=1603
Task: {959ED096-661C-49FF-94D3-B3D1046DFC9D} - System32\Tasks\HP AR Program Upload - 1581b40121724b3286571db4710aea0d2dd157902b394a9ca912ae1bf071cc7d => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {96240459-DFD1-455B-A030-32E9904A24E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99642599-006E-4788-BA96-90E60EE5BB9E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1161112 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {9FCE1242-3A53-41C9-A2C6-B576C5164329} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2EC2FC3-94C2-4029-93B7-CDB643C88C45} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A57D9BE2-7CE2-46A4-B1DC-E6AF7CD7B470} - System32\Tasks\HP AR Program Upload - 8cc19ffeaffb45d69c3e90eaba066c27175f36f4b10b441ba9a0e161d694bd6a => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {BB1D503C-CF6B-479B-AE28-9104CD010B75} - System32\Tasks\HP AR Program Upload - 9bc5b6b6893345a79ba7b1d6ed9502a88ed13e87f0c240178335a45100c243ea => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {C0E29E94-36C3-4344-BFEA-1C94C9F7468B} - System32\Tasks\HP AR Program Upload - 96246d2ee5534696b96dbc96449d73719ad192f7fd654df8818533c4d7e906a3 => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {C3710222-2D50-41BC-9177-47358CE499EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-13] (Google Inc -> Google Inc.)
Task: {C8F8EBDD-8C51-45CE-B161-4CFF7C1291E9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9A6C54D-AE0C-44F0-8B0B-694C6E84D331} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19723888 2014-03-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CA114D82-7809-4A21-B6E3-EDDC3838709F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071336 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {CAA67667-8606-4DF8-A7BE-76F7E757429A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D2DC32A0-A8D5-4227-80BB-C2E39A552CE6} - System32\Tasks\HP AR Program Upload - 69df1520fcf1443fa40616cd351c370722844838a521403cb91f840fbc1ee2a7 => C:\Program Files\HP\HP ENVY 5530 series\bin\HPRewards.exe [3495944 2014-07-21] (Hewlett Packard -> TODO: )
Task: {D2E479F2-5287-4C15-AD77-B9FE9FC156D1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3BAB091-D729-4E9E-A712-37F5C951751D} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {D52E5FF0-C02A-468C-8948-A9520D1A0A00} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [158336 2013-01-09] (ASUSTeK Computer Inc. -> ASUSTek Computer INC.)
Task: {D66953A4-EC3F-4030-A443-BFFCC3F5870B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8955F2A-7A08-434C-A454-D9A7DC0ADBCB} - System32\Tasks\{B8EE4D9C-89BF-46A3-A190-0E52E8AF4599} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.0.0.102/fr/abandoninstall?page=tsMain
Task: {E2C46673-2AF9-49A5-832E-D2DCE579D21B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E3F9CB1E-6969-4D3D-A671-BBF499FD2F0F} - System32\Tasks\{797B8A0B-706F-4211-8689-492E70870E4A} => "c:\program files\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.35.0.103/fr/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {E6A4B6DD-C7E0-4873-9516-65FCF04D66B7} - System32\Tasks\{3D91F5A9-190D-481E-8BFB-09719D2E6448} => "c:\program files (x86)\mozilla firefox\firefox.exe" https://ui.skype.com/ui/0/7.37.0.103/fr/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {ED183C8C-1B2A-49E1-9B6A-E7E1CEC78EF5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-13] (Google Inc -> Google Inc.)
Task: {F002B736-0A1C-4227-8482-9E986369830F} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14049536 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {F0BBD519-B017-4AA8-8C08-595ADB64F112} - System32\Tasks\SkipUAC Suppression définitive des éléments de la corbeille => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {F5F5BCF6-2BC0-4D67-B6C6-39453F476CEE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071336 2021-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F77F7E4E-C4DE-40A8-B4F7-E48E87A5650F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA86DDB6-2132-4ABA-B57C-11D2EA587460} - System32\Tasks\SkipUAC Optimisation des services Windows => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe
Task: {FFFA4301-246E-4993-A508-96911A110DEA} - System32\Tasks\SkipUAC Économie d'énergie => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2e5e1d74-5346-4987-89cd-55e1648e486b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8cc03029-b3c1-45f3-986f-dc64267885e0}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\MATULA\Downloads
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2020-12-07]
Edge Extension: (Mouvements de souris) -> MouseGestures_MicrosoftMouseGestures_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.MouseGestures_0.6.17136.0_neutral__8wekyb3d8bbwe [2020-12-07]
Edge Extension: (Amazon Assistant) -> xxx_AmazoncomAmazonAssistant_343d40qqvtj1t => C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2020-12-07]
Edge DefaultProfile: Default
Edge Profile: C:\Users\MATULA\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-01]
Edge StartupUrls: Default -> "hxxps://www.google.fr/"
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 993zg6qh.MALKO
FF ProfilePath: C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507 [2021-02-02]
FF Homepage: C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507 -> hxxps://www.sfr.fr/cas/login?service=https%3A%2F%2Fwww.sfr.fr%2Faccueil%2Fj_spring_cas_security_check
FF Notifications: C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507 -> hxxps://axa-fr-by.accengage.net; hxxps://forum.zebulon.fr
FF Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2020-10-12]
FF Extension: (Protected Browsing) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\protbrowsing@live.xpi [2021-01-15] [UpdateUrl:hxxps://protected-browsing.best/resources/extension.json]
FF Extension: (Google Translator for Firefox) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\translator@zoli.bod.xpi [2020-01-01]
FF Extension: (OldWood) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{1268dd7d-073e-4bf1-81dc-f1bb0f4f0c2e}.xpi [2020-06-27]
FF Extension: (Dark-ish Rainbow) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{21f69c5d-b9e1-470f-a890-74454e954eee}.xpi [2020-08-13]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2020-12-17]
FF Extension: (Blue Carbon Fiber) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{5ab03bdd-3d91-4c73-801e-607ca27458d0}.xpi [2020-01-01]
FF Extension: (NoScript) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2021-01-28]
FF Extension: (Fenetre Mailto) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{7954b599-d6d5-4b4c-b048-dd39ee8325a2}.xpi [2020-03-26]
FF Extension: (chrystalize) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{96b7a652-8716-4678-be68-7a8bac53a373}.xpi [2020-01-01]
FF Extension: (Video DownloadHelper) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-17]
FF Extension: (A N I M A T E D KITTY CAT) - C:\Users\MATULA\PROFILS\FIREFOX\00ft0q70.default-1496386417507\Extensions\{cf4e89f2-b8e0-4ad7-932d-7b82d8956543}.xpi [2020-01-01]
FF ProfilePath: C:\Users\MATULA\AppData\Roaming\Mozilla\Firefox\Profiles\993zg6qh.MALKO [2021-01-28]
FF HKLM\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
FF Extension: (PDF Suite 2020 Creator) - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi [2020-01-08]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-12-30] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [pdf_suite_2020_conv_v.1@pdf-suite.com] - C:\Program Files\PDF Suite 2020\creator\plugins\FirefoxAddin\pdf_suite_2020_conv_v.1@pdf-suite.com.xpi
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2021-01-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2021-01-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-643979615-3718182490-1915481562-1001: www.mydlink.com/Uplayer -> C:\Users\MATULA\AppData\Roaming\D-Link\mydlink services plugin\1.0.2.7\npUplayer.dll [2015-12-11] (D-LINK CORPORATION -> D-Link Corporation)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960384 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-21] (Malwarebytes Inc -> Malwarebytes)
S3 PDF Suite 2020; C:\Program Files\PDF Suite 2020\ws.exe [1972184 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S3 PDF Suite 2020 Creator; C:\Program Files\PDF Suite 2020\creator\common\creator-ws.exe [570840 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
S2 PDF Suite 2020 Update Service; C:\Program Files\PDF Suite 2020\updater-ws.exe [1648088 2020-01-10] (PDF SUITE (7270356 Canada Inc) -> Interactive Brands Malta Limited)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [557760 2021-01-22] (geek software GmbH -> geek software GmbH)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-09-24] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-09-24] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [Fichier non signé]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2021-01-13] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43584 2019-09-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [23200 2015-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-02 15:34 - 2021-02-02 15:36 - 000027743 _____ C:\Users\MATULA\Downloads\FRST.txt
2021-02-02 15:33 - 2021-02-02 15:39 - 000000000 ____D C:\FRST
2021-02-02 14:23 - 2021-02-02 14:23 - 000000000 ____D C:\Users\MATULA\AppData\Local\PDF24
2021-02-02 14:20 - 2021-02-02 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2021-02-02 14:19 - 2021-02-02 14:20 - 000000000 ____D C:\Program Files\PDF24
2021-02-02 14:17 - 2021-02-02 14:18 - 126955064 _____ (geek software GmbH ) C:\Users\MATULA\Downloads\pdf24-creator-10.0.8.exe
2021-02-02 14:12 - 2021-02-02 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Suite 2020
2021-02-02 14:11 - 2021-02-02 14:11 - 000001107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Suite 2020.lnk
2021-02-02 14:11 - 2021-02-02 14:11 - 000000000 ____D C:\Users\MATULA\Documents\PDF Suite Files
2021-02-02 14:11 - 2021-02-02 14:11 - 000000000 ____D C:\Program Files\PDF Suite 2020
2021-02-02 14:11 - 2021-02-02 14:11 - 000000000 ____D C:\Program Files (x86)\PDF Suite 2020
2021-02-02 14:08 - 2021-02-02 14:08 - 014821168 _____ (Interactive Brands Malta Limited) C:\Users\MATULA\Downloads\PDF_Suite_2021_Installer.exe
2021-02-02 14:08 - 2021-02-02 14:08 - 000000000 ____D C:\ProgramData\PDF Suite 2020
2021-02-02 13:20 - 2021-02-02 13:20 - 000029529 _____ C:\Users\MATULA\Downloads\autorisation_retour1809631354.bin
2021-02-01 09:55 - 2021-02-01 09:55 - 003480712 _____ (Nicolas Coolman) C:\Users\MATULA\Downloads\ZHPSuite.exe
2021-02-01 09:54 - 2021-02-01 09:55 - 003342472 _____ (Nicolas Coolman) C:\Users\MATULA\Downloads\ZHPCleaner.exe
2021-01-28 18:23 - 2021-01-28 18:23 - 000201687 _____ C:\Users\MATULA\Downloads\2021-01-28-18-18-23-résultats.pdf
2021-01-28 17:00 - 2021-01-28 17:10 - 002088236 _____ C:\WINDOWS\Minidump\012821-39046-01.dmp
2021-01-28 17:00 - 2021-01-28 17:00 - 540874723 _____ C:\WINDOWS\MEMORY.DMP
2021-01-28 12:03 - 2021-01-28 12:03 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-28 10:53 - 2021-01-28 10:54 - 000000000 ____D C:\Users\MATULA\AppData\Local\Mozilla Thunderbird
2021-01-28 10:42 - 2021-01-28 10:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-28 10:40 - 2021-01-28 12:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-17 17:58 - 2021-01-17 17:58 - 000002157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2021-01-17 17:58 - 2021-01-17 17:58 - 000002115 _____ C:\Users\MATULA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk
2021-01-17 17:58 - 2021-01-17 17:58 - 000000000 ____D C:\Users\MATULA\AppData\Local\SumatraPDF
2021-01-17 17:52 - 2021-01-17 17:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnViewMP
2021-01-17 17:52 - 2021-01-17 17:52 - 000000000 ____D C:\Program Files\XnViewMP
2021-01-14 15:47 - 2021-01-28 11:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2021-01-13 18:15 - 2021-01-13 18:15 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 18:15 - 2021-01-13 18:15 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 18:15 - 2021-01-13 18:15 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 18:14 - 2021-01-13 18:14 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 18:14 - 2021-01-13 18:14 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 18:14 - 2021-01-13 18:14 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 18:14 - 2021-01-13 18:14 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 18:14 - 2021-01-13 18:14 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 18:14 - 2021-01-13 18:14 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 18:14 - 2021-01-13 18:14 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 18:13 - 2021-01-13 18:13 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 18:13 - 2021-01-13 18:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 18:13 - 2021-01-13 18:13 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 18:12 - 2021-01-13 18:12 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 18:12 - 2021-01-13 18:12 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 18:12 - 2021-01-13 18:12 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 18:12 - 2021-01-13 18:12 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 18:12 - 2021-01-13 18:12 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 18:11 - 2021-01-13 18:11 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 18:11 - 2021-01-13 18:11 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 18:10 - 2021-01-13 18:10 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 18:10 - 2021-01-13 18:10 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 18:10 - 2021-01-13 18:10 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 18:09 - 2021-01-13 18:09 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 18:09 - 2021-01-13 18:09 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 18:09 - 2021-01-13 18:09 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 18:09 - 2021-01-13 18:09 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 18:08 - 2021-01-13 18:08 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 18:08 - 2021-01-13 18:08 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 18:07 - 2021-01-13 18:07 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 18:07 - 2021-01-13 18:07 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 18:07 - 2021-01-13 18:07 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 18:06 - 2021-01-13 18:06 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 18:06 - 2021-01-13 18:06 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 18:06 - 2021-01-13 18:06 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 18:05 - 2021-01-13 18:05 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 18:05 - 2021-01-13 18:05 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 18:05 - 2021-01-13 18:05 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 18:05 - 2021-01-13 18:05 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 18:05 - 2021-01-13 18:05 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-13 16:18 - 2021-02-01 10:14 - 000000000 ____D C:\Users\MATULA\AppData\Local\ZHP
2021-01-12 16:13 - 2021-01-12 16:13 - 000000000 ____D C:\Users\MATULA\ansel

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-02 15:44 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-02 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-02 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-02 15:37 - 2016-11-16 08:19 - 000000000 ____D C:\Users\MATULA\AppData\LocalLow\Mozilla
2021-02-02 15:28 - 2020-06-17 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-02 14:06 - 2015-02-04 12:10 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-02 13:16 - 2017-06-03 08:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-02 13:15 - 2020-06-27 17:12 - 000000000 ____D C:\Users\MATULA\AppData\Roaming\AbiSuite
2021-02-02 13:14 - 2015-02-04 19:16 - 000000000 ____D C:\Program Files\CCleaner
2021-02-01 12:31 - 2016-09-06 07:19 - 000000000 ____D C:\Users\MATULA\AppData\Roaming\ZHP
2021-01-30 08:51 - 2020-09-02 13:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-28 18:27 - 2020-06-17 14:30 - 000000000 ____D C:\Users\MATULA
2021-01-28 17:34 - 2015-09-25 08:53 - 000000000 ____D C:\Users\MATULA\AppData\Local\ElevatedDiagnostics
2021-01-28 17:11 - 2020-09-14 12:07 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-28 17:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-28 17:05 - 2014-12-09 18:34 - 000000000 __SHD C:\Users\MATULA\IntelGraphicsProfiles
2021-01-28 17:00 - 2020-06-17 16:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-28 17:00 - 2020-06-17 16:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-28 12:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-28 12:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-01-28 12:07 - 2015-02-05 17:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-01-28 12:03 - 2015-02-04 12:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-28 12:02 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-28 11:07 - 2018-10-25 15:54 - 000001365 _____ C:\Users\MATULA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-01-28 11:07 - 2015-02-04 19:04 - 000001280 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-01-28 10:50 - 2017-10-22 08:47 - 000000000 ____D C:\Users\MATULA\AppData\Local\Packages
2021-01-28 10:42 - 2019-12-21 12:07 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-28 10:42 - 2018-05-05 15:14 - 000001306 _____ C:\Users\MATULA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\firefox.lnk
2021-01-28 10:11 - 2016-07-13 14:14 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-20 15:30 - 2020-09-02 13:48 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-20 15:30 - 2020-09-02 13:48 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-14 16:15 - 2020-06-17 16:54 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-14 15:38 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-14 10:13 - 2020-06-17 16:26 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-14 10:13 - 2019-12-07 15:49 - 000792836 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-14 10:13 - 2019-12-07 15:49 - 000149966 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-13 18:52 - 2020-12-21 12:22 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-13 18:45 - 2020-06-17 16:12 - 000444040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 18:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 18:38 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 18:38 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 18:38 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 18:04 - 2020-06-17 16:18 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 17:02 - 2020-06-17 10:06 - 000000000 ___HD C:\$WinREAgent
2021-01-13 16:50 - 2015-02-04 13:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 16:26 - 2015-02-04 13:06 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 16:22 - 2015-12-03 18:21 - 000000000 ____D C:\Program Files\WinRAR
2021-01-12 12:08 - 2018-12-31 15:09 - 000000000 ____D C:\Users\MATULA\0 A IMPRIMER
2021-01-12 11:39 - 2020-12-08 09:02 - 000000000 ____D C:\Users\MATULA\00 TITOUAN
2021-01-12 11:39 - 2020-09-12 17:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-12 11:26 - 2014-12-12 18:07 - 000000000 ____D C:\Users\MATULA\0 DE PASSAGE

==================== Fichiers à la racine de certains dossiers ========

2015-02-04 11:33 - 2017-10-06 10:49 - 000000093 _____ () C:\Users\MATULA\AppData\Roaming\sp_data.sys
2015-02-26 10:31 - 2017-10-30 10:57 - 000005632 _____ () C:\Users\MATULA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-01-17 18:07 - 2019-01-17 18:07 - 000000758 _____ () C:\Users\MATULA\AppData\Local\recently-used.xbel
2015-02-25 09:09 - 2015-02-25 09:09 - 000000017 _____ () C:\Users\MATULA\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité