cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-02-2021
Exécuté par JPG (administrateur) sur LAPTOP-F89CC33C (Acer Aspire E5-575) (24-02-2021 14:14:32)
Exécuté depuis C:\Users\JPG\Desktop
Profils chargés: JPG
Platform: Windows 10 Home Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Ransomware Protection\ARPTray.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Ransomware Protection\Service\arp-application-service.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) CN -> Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_587befb80671fb38\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_587befb80671fb38\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_587befb80671fb38\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_587befb80671fb38\IntelCpHeciSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.10222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.10222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Rene.E Laboratory Co., Ltd. -> Rene.E Laboratory) C:\Program Files (x86)\Rene.E Laboratory\Becca\x64\bcservice.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINEE.EXE
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-08-18] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390904 2020-05-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2020-05-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Acronis Ransomware Protection] => C:\Program Files (x86)\Acronis\Ransomware Protection\ARPTray.exe [670736 2018-12-14] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3311696 2019-05-01] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Run: [FreeYouTubeDownloader] => C:\Program Files (x86)\YouTube Downloader\YouTubeDownloader.exe [1004544 2018-06-14] (Vitzo Ltd.) [Fichier non signé]
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINEE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2005153464-3247899628-2303397517-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\EPSON XP-322 323 325 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBNEE.DLL [179712 2013-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-04-17] (pdfforge GmbH) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0AEE4E20-17A2-4774-84EF-FAC6CEDECEB3} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5849872 2019-07-31] (IObit Information Technology -> IObit)
Task: {1B811134-68FB-4E1A-8795-BD7DC20181C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C31143F-67C6-4DD9-A89D-E2B52D0BCB96} - System32\Tasks\EPSON XP-322 323 325 Series Update {C4D7E96C-4897-4E9A-BAA6-49DE91BA66B5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {206A6E77-03F8-4A3D-8CFE-DF2AA1C07138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-30] (Google Inc -> Google Inc.)
Task: {2B0AF33D-B99C-4A3C-B2D0-34F53E0882BE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {36ADB0DB-24EC-41E4-9D61-A0EA9C19F270} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3DC1ED58-BA3D-4791-8EFE-87B6832BF342} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {406B3A4F-EF07-48FF-98F4-901D117C361E} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646152 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {47FC462D-B912-4D62-B6A8-E9D1C5AB2F18} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {54093B56-F9A2-4599-AD6C-87B0E6FC5881} - System32\Tasks\CareCenter\IObit Malware Fighter_Reg_HKLMWow6432Run => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {576BC47C-EC6F-4F2F-B8FD-C76EF55F3983} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472992 2016-06-24] (Acer Incorporated -> Acer Incorporated)
Task: {6058F644-1BA3-4785-BC50-B280D1FD10C2} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32696 2019-11-15] (Microsoft Corporation -> Microsoft)
Task: {63D10DB4-98A2-40A6-BCBB-DB591A2DCCA1} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.1.0\AutoUpdate.exe
Task: {698DCEAA-6B91-4C4A-9240-6B3E710358F7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {718DD40B-580D-4A9F-9A23-30D746B3017D} - System32\Tasks\Driver Booster SkipUAC (JPG) => C:\Program Files (x86)\IObit\Driver Booster\8.1.0\DriverBooster.exe
Task: {73D4FB6E-88AD-44E5-B6CC-B29DF9FD8880} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {76BDEA8A-1E70-404F-A201-945A5FF1F157} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646152 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {88AF4459-8A96-4B3D-BC76-89F28584B886} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2177464 2019-11-15] (Microsoft Corporation -> Microsoft)
Task: {89D65296-6161-4532-8A34-23101FCD628A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {93C9E1A0-BA02-4C0D-9549-0A9A0B1CF8B9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {95C7CF78-5843-4248-845F-3D5F7FFBF7AE} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {9B2EFA91-055C-4295-A407-924544C37819} - System32\Tasks\EPSON XP-322 323 325 Series Update {104D0024-0296-4BE9-8DFC-44B1FB77D678} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9BFCA748-BA14-437B-8217-4C6B91FDDB0D} - System32\Tasks\EPSON XP-322 323 325 Series Update {0B26A87A-7152-48DA-B60B-C4F8E3ADCF0F} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {9E4CDDB8-9BC2-41E7-993E-ABDD154F2C3A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1126320 2021-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0489FF4-2CA2-4D95-B93F-2F16652A6125} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {A1213314-E05E-455F-AA7E-8CDE8B51BF04} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {A321689F-E623-4A57-9239-1BDF2F8B6C85} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {A6343A6C-8519-4C42-A9F8-F297C7B71A62} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-30] (Google Inc -> Google Inc.)
Task: {AABC25CC-4E63-4DC3-B042-F651AC01FEE6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AC891AC4-93AD-4697-AC67-185F860C3014} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3007760 2019-04-24] (IObit Information Technology -> IObit)
Task: {C32C02F8-467B-4550-9AF6-4D5BF1A0559C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF56F68D-2277-4862-B539-8C614DC5096B} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D47817DC-0065-4F8F-95C6-6C4FAE118913} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {DEDED88F-694F-4E9D-A591-8755C4B97663} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4107248 2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {E9AC9E07-7A60-422C-B60B-D01F405ADDAA} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-11-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {F656E3C7-2D00-4F66-ABD4-015D9A051038} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-13] (Mozilla Corporation -> Mozilla Foundation)
Task: {F80EE04D-C3A6-44FB-A5D6-44DC8CA5B771} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {F8B26B8F-5F61-4163-8060-B325D6094D2C} - System32\Tasks\ASC_SkipUac_JPG => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {FBBC135C-92B4-42F4-A06E-5F7F75E0E002} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {FBC5B80B-C262-4244-A281-B07E6CF084E3} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {FCBEF753-8B9E-4BDF-BEF3-48CA0674FB12} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {0B26A87A-7152-48DA-B60B-C4F8E3ADCF0F}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{0B26A87A-7152-48DA-B60B-C4F8E3ADCF0F} /F:UpdateWORKGROUP\LAPTOP-F89CC33C$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {104D0024-0296-4BE9-8DFC-44B1FB77D678}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{104D0024-0296-4BE9-8DFC-44B1FB77D678} /F:UpdateWORKGROUP\LAPTOP-F89CC33C$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {C4D7E96C-4897-4E9A-BAA6-49DE91BA66B5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNEE.EXE:/EXE:{C4D7E96C-4897-4E9A-BAA6-49DE91BA66B5} /F:UpdateWORKGROUP\LAPTOP-F89CC33C$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{153bb5fa-b8bf-481d-85c6-b6ccd619d82c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{184eb532-a3ac-4132-8710-e9177dc522c0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{4db6cd75-9396-40e3-9ffa-8ca2ff7d413d}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dddedc6c-5be9-4fdb-bff3-26936a73b911}: [DhcpNameServer] 192.168.1.254

Edge:
=======
DownloadDir: C:\Users\JPG\Downloads
Edge Notifications: HKU\S-1-5-21-2005153464-3247899628-2303397517-1001 -> hxxps://web.skype.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\JPG\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-24]
Edge DownloadDir: C:\Users\JPG\Downloads
Edge Notifications: Default -> hxxps://web.skype.com

FireFox:
========
FF ProfilePath: C:\Users\JPG\AppData\Roaming\Comodo\CSS\User Data-firefox1 [non trouvé(e)] <==== ATTENTION
FF DefaultProfile: rh7cy8qe.default-1604653337398
FF ProfilePath: C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\j9iy1lwg.default-release [2021-02-13]
FF user.js: detected! => C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\j9iy1lwg.default-release\user.js [2020-02-14]
FF ProfilePath: C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398 [2021-02-24]
FF Homepage: Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398 -> hxxps://www.qwant.com/?client=ext-firefox-hp
FF Session Restore: Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398 -> est activé.
FF Extension: (Facebook Container) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\@contain-facebook.xpi [2020-11-06]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\firefox@ghostery.com.xpi [2020-12-07]
FF Extension: (Privacy Badger) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-02-03]
FF Extension: (Lilo) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\jid1-zmgYgiQPXJtjNA@jetpack.xpi [2020-11-06]
FF Extension: (Pas de nom) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\qwantcomforfirefox@jetpack.xpi [2020-11-06]
FF Extension: (Pas de nom) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\support@shoptimate.com.xpi [2020-11-06]
FF Extension: (uBlock Origin) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\uBlock0@raymondhill.net.xpi [2021-02-02]
FF Extension: (Lilo - Moteur de recherche) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{3004c9c0-ac9c-4ae2-9ac8-c59948bdd021}.xpi [2020-11-06]
FF Extension: (Bitwarden - Gestionnaire de mots de passe gratuit) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2021-01-27]
FF Extension: (Japanese Tattoo) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{4d7820bd-9fec-45f5-82db-92fd03cf7fc2}.xpi [2020-11-06]
FF Extension: (Colombian Firefox) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{64dcccca-a9cb-4459-97ba-c5723b1d0824}.xpi [2020-11-06]
FF Extension: (Adobe Flash) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{abf6a41a-5038-4dd9-abef-b66ae700fe88}.xpi [2020-11-06]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2020-12-08]
FF Extension: (Video DownloadHelper) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-16]
FF Extension: () - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{c8934291-7998-4094-84fa-a352e8bd3aad}.xpi [2020-11-06]
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2020-11-06]
FF Extension: (Flash Video Player for Facebook™) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{d0bfdcce-52c7-4b32-bb45-948f62db8d3f}.xpi [2020-11-06]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-29]
FF Extension: (Ranfox) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{dfe49622-a99f-4571-9129-b06f6bbc9ba9}.xpi [2020-11-06]
FF Extension: (YouTube Flash Video Player) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2020-11-06]
FF Extension: (Katana 006) - C:\Users\JPG\AppData\Roaming\Mozilla\Firefox\Profiles\rh7cy8qe.default-1604653337398\Extensions\{ff035bbc-2dc7-4c97-8630-0b6e96c70930}.xpi [2020-11-06]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-10-27] [] [non signé]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-2005153464-3247899628-2303397517-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR Profile: C:\Users\JPG\AppData\Local\Google\Chrome\User Data\Default [2021-02-13]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR HKLM\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc]

Vivaldi:
=======
VIV Profile: C:\Users\JPG\AppData\Local\Vivaldi\User Data\Default [2021-02-13]
VIV DefaultSearchURL: Default -> hxxps://search.totalav.com/search/web?fcoid=417&fcop=topnav&fpid=27&q={searchTerms}
VIV DefaultSearchKeyword: Default -> safesearch
VIV Extension: (Total AV Safe Search) - C:\Users\JPG\AppData\Local\Vivaldi\User Data\Default\Extensions\looohgelibjoplmkhecmalapkgadkfcc [2018-01-31]
VIV Extension: (Chrome Media Router) - C:\Users\JPG\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-31]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [4380176 2018-12-04] (Acronis International GmbH -> Acronis International GmbH)
R2 ARPApplicationService; C:\Program Files (x86)\Acronis\Ransomware Protection\Service\arp-cloudusage.exe [25104 2018-12-14] (Acronis International GmbH -> )
R2 Becca Service; C:\Program Files (x86)\Rene.E Laboratory\Becca\x64\bcservice.exe [79344 2017-06-20] (Rene.E Laboratory Co., Ltd. -> Rene.E Laboratory)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S3 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-02-05] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-02-05] (Intel Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-27] (Malwarebytes Inc -> Malwarebytes)
S3 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [413832 2017-11-01] (Geek Software GmbH -> Geek Software GmbH)
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2018-04-08] (Reason Software Company Inc. -> Reason Software Company Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [667144 2018-12-21] (Acronis International GmbH -> Acronis International GmbH)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-03] (Martin Malik - REALiX -> REALiX(tm))
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [129232 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-18] (Malwarebytes Inc -> Malwarebytes)
R2 NDivert; C:\WINDOWS\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2021-01-30] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-20] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-20] (Microsoft Windows -> Microsoft Corporation)
S4 IMFFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win10_amd64\IMFFilter.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-24 14:14 - 2021-02-24 14:16 - 000035563 _____ C:\Users\JPG\Desktop\FRST.txt
2021-02-24 14:11 - 2021-02-24 14:11 - 000011921 _____ C:\Users\JPG\Documents\message zebulon.odt
2021-02-24 13:35 - 2021-02-24 13:35 - 000001234 _____ C:\Users\JPG\Desktop\ZSoft Uninstaller.lnk
2021-02-24 13:35 - 2021-02-24 13:35 - 000000000 ____D C:\Program Files (x86)\ZSoft
2021-02-24 11:57 - 2021-02-24 11:57 - 000000732 _____ C:\Users\JPG\Desktop\WinChk.txt
2021-02-24 11:56 - 2021-02-24 11:56 - 000000732 _____ C:\WinChk.txt
2021-02-24 11:55 - 2021-02-24 11:56 - 000315000 _____ C:\Users\JPG\Desktop\winchk_2.0.exe
2021-02-24 11:46 - 2021-02-24 11:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2021-02-24 11:45 - 2021-02-24 14:16 - 000004832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2021-02-24 11:43 - 2021-02-24 11:56 - 000003956 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2021-02-24 11:43 - 2021-02-24 11:43 - 000000000 ____D C:\ProgramData\Shared Space
2021-02-24 11:43 - 2021-02-24 11:43 - 000000000 ____D C:\ProgramData\Comodo Downloader
2021-02-24 09:50 - 2021-02-24 14:15 - 000000000 ____D C:\FRST
2021-02-24 09:47 - 2021-02-24 09:48 - 002301440 _____ (Farbar) C:\Users\JPG\Desktop\FRST64.exe
2021-02-18 10:39 - 2021-02-18 10:39 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-02-13 14:17 - 2021-02-13 14:17 - 000000046 _____ C:\WINDOWS\wininit.ini
2021-02-13 14:01 - 2021-02-24 11:14 - 000000000 ____D C:\Program Files (x86)\Comodo
2021-02-13 12:14 - 2021-02-24 11:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-13 11:07 - 2021-02-13 13:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-02-13 10:44 - 2021-02-13 10:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-13 10:44 - 2021-02-13 10:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-13 10:44 - 2021-02-13 10:44 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-13 10:44 - 2021-02-13 10:44 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-13 10:43 - 2021-02-13 10:43 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-11 17:44 - 2021-02-11 17:44 - 000000000 ____D C:\Users\JPG\Documents\Zoom
2021-02-11 17:43 - 2021-02-11 17:43 - 000000000 ____D C:\Users\JPG\AppData\Roaming\Zoom
2021-02-11 17:43 - 2021-02-11 17:43 - 000000000 ____D C:\Users\JPG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-02-08 15:29 - 2021-02-08 15:29 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2005153464-3247899628-2303397517-1001
2021-02-08 15:29 - 2021-02-08 15:29 - 000002448 _____ C:\Users\JPG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-04 11:00 - 2021-02-04 11:00 - 000001802 _____ C:\Users\JPG\Desktop\NordVPN.lnk
2021-02-04 11:00 - 2021-02-01 14:25 - 000105184 _____ C:\WINDOWS\system32\Drivers\NDivert.sys
2021-02-01 11:19 - 2021-02-01 11:19 - 000000000 ____D C:\Users\JPG\AppData\Roaming\Skype
2021-02-01 11:19 - 2021-02-01 11:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-01-30 10:58 - 2021-02-04 11:01 - 000000000 ____D C:\Users\JPG\AppData\Local\NordVPN
2021-01-30 10:58 - 2021-02-04 11:00 - 000000000 ____D C:\ProgramData\NordVPN
2021-01-30 10:58 - 2021-02-04 11:00 - 000000000 ____D C:\Program Files\NordVPN
2021-01-30 10:58 - 2021-01-30 10:58 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2021-01-30 10:58 - 2020-12-14 10:21 - 000038608 _____ (TEFINCOM S.A.) C:\WINDOWS\system32\Drivers\nordlwf.sys
2021-01-30 10:52 - 2021-01-30 10:52 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-30 10:45 - 2021-01-30 10:45 - 000039360 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\nlwt.sys
2021-01-30 10:45 - 2021-01-30 10:45 - 000000000 ____D C:\Program Files\NordVPN network TUN
2021-01-30 09:52 - 2021-02-24 11:46 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-27 14:48 - 2021-01-27 15:35 - 000017474 _____ C:\Users\JPG\Documents\petition françoise.odt

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-24 14:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-24 14:13 - 2017-08-22 16:16 - 000000000 ____D C:\Users\JPG\AppData\LocalLow\Mozilla
2021-02-24 13:34 - 2020-10-26 20:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-24 12:42 - 2017-09-25 18:06 - 000000000 ____D C:\Program Files\CCleaner
2021-02-24 11:54 - 2020-10-26 21:00 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-24 11:54 - 2019-12-07 15:49 - 000792838 _____ C:\WINDOWS\system32\perfh00C.dat
2021-02-24 11:54 - 2019-12-07 15:49 - 000149968 _____ C:\WINDOWS\system32\perfc00C.dat
2021-02-24 11:54 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-24 11:52 - 2019-02-04 22:33 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-24 11:46 - 2020-10-26 21:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-24 11:46 - 2017-08-22 13:30 - 000000000 __SHD C:\Users\JPG\IntelGraphicsProfiles
2021-02-24 11:45 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-02-24 11:43 - 2017-08-22 17:43 - 000000000 ____D C:\ProgramData\Comodo
2021-02-24 11:37 - 2017-08-23 19:49 - 000000000 ____D C:\Program Files (x86)\IObit
2021-02-24 11:19 - 2019-08-26 14:45 - 000000000 ____D C:\Users\JPG\AppData\Roaming\IObit
2021-02-24 11:18 - 2017-08-23 19:49 - 000000000 ____D C:\Users\JPG\AppData\LocalLow\IObit
2021-02-24 11:18 - 2017-08-23 19:47 - 000000000 ____D C:\ProgramData\IObit
2021-02-24 11:18 - 2017-08-22 13:32 - 000000000 ____D C:\Users\JPG\AppData\Local\CrashDumps
2021-02-24 11:17 - 2017-08-22 15:58 - 000000000 ___RD C:\Users\JPG\Desktop\Outils
2021-02-24 11:16 - 2017-08-23 19:44 - 000000000 ____D C:\ProgramData\GlarySoft
2021-02-24 11:16 - 2017-08-23 19:37 - 000000000 ____D C:\Users\JPG\AppData\Roaming\GlarySoft
2021-02-24 11:15 - 2020-10-29 12:44 - 000000000 ____D C:\Users\JPG\AppData\Local\Deployment
2021-02-23 18:39 - 2020-10-01 19:14 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-23 17:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-23 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-23 17:17 - 2017-11-30 20:21 - 000000000 ____D C:\Users\JPG\AppData\Local\Packages
2021-02-23 17:15 - 2017-08-26 11:07 - 000000000 ____D C:\Users\JPG\AppData\Roaming\KeePass
2021-02-22 23:44 - 2017-08-23 19:49 - 000000000 ____D C:\ProgramData\ProductData
2021-02-19 19:01 - 2020-11-25 18:08 - 000002431 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 11:13 - 2017-01-09 13:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-02-13 18:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-13 16:57 - 2018-01-30 18:08 - 000001577 _____ C:\Users\JPG\Desktop\firefox.lnk
2021-02-13 16:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps.tmp
2021-02-13 14:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-02-13 14:24 - 2018-02-06 09:51 - 000000000 ____D C:\KMPlayer
2021-02-13 14:17 - 2017-08-22 17:47 - 000000000 ____D C:\Program Files\COMODO
2021-02-13 13:51 - 2017-01-09 15:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-13 12:19 - 2020-10-26 21:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-13 12:19 - 2017-01-09 15:01 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-13 12:08 - 2017-08-29 13:03 - 000000000 ____D C:\Users\JPG\AppData\Roaming\XnView
2021-02-13 11:04 - 2020-10-26 20:50 - 000629680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-13 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-13 11:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-13 10:49 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-13 10:27 - 2020-10-24 18:12 - 000000000 ___HD C:\$WinREAgent
2021-02-13 10:19 - 2017-08-22 17:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-13 10:12 - 2017-08-22 17:35 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-12 23:29 - 2020-10-26 20:52 - 000000000 ____D C:\Users\JPG
2021-02-08 19:55 - 2020-11-25 18:07 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-08 19:55 - 2020-11-25 18:07 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-08 15:29 - 2017-08-22 13:32 - 000000000 ___RD C:\Users\JPG\OneDrive
2021-02-05 20:04 - 2020-10-01 19:14 - 000734016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-02-05 20:03 - 2020-10-01 19:14 - 000470848 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-05 08:39 - 2020-10-26 21:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 08:39 - 2020-10-26 21:16 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-03 09:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-02-03 09:05 - 2017-11-30 19:31 - 000000000 ____D C:\Users\JPG\AppData\Local\ElevatedDiagnostics
2021-02-02 16:35 - 2017-09-03 14:46 - 000000000 ____D C:\AdwCleaner
2021-01-30 10:10 - 2021-01-09 08:40 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-30 09:56 - 2019-12-12 19:11 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-25 16:41 - 2020-11-15 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8
2021-01-25 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-25 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Fichiers à la racine de certains dossiers ========

2021-01-09 16:37 - 2021-01-09 16:38 - 000000716 ____H () C:\Users\JPG\AppData\Roaming\{D46AE71A-BB85-7E6C-830E-306C7380A1D1}
2018-11-15 19:42 - 2018-11-15 19:42 - 000014185 _____ () C:\Users\JPG\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité