Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2021 01
Exécuté par Jean-Pierre (administrateur) sur DESKTOP-J73SG6S (ASUSTeK COMPUTER INC. E202SA) (08-06-2021 08:57:24)
Exécuté depuis C:\Users\Jean-Pierre\Downloads
Profils chargés: Jean-Pierre
Platform: Windows 10 Home Version 1909 18363.1440 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe <4>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\13dbcf2b45eb3e7173a01c88529f0a10\WindowsUpdateBox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1430_none_16f0726f2a33ac55\TiWorker.exe
(Orange -> Orange) C:\Users\Jean-Pierre\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497384 2016-05-17] (Acronis International GmbH -> )
HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4042960 2021-05-26] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Dashlane] => C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\Dashlane.exe [321208 2021-05-24] (Dashlane USA, Inc. -> Dashlane, Inc.) <==== ATTENTION
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [DashlanePlugin] => C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\DashlanePlugin.exe [342200 2021-05-24] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Mobile Partner] => C:\Program Files (x86)\Wi-Fi Modem\Wi-Fi Modem
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Screenpresso] => C:\Users\Jean-Pierre\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [16867272 2021-05-07] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Jean-Pierre\AppData\Local\WebEx\ciscowebexstart.exe [3710800 2021-05-28] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPLTarget\P0000000000000003] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] () [Fichier non signé]
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049600 2017-09-18] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMILE.DLL [120320 2014-12-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-243 245 247 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRFE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-07] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2017-11-12]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1131B1E7-A3E0-43BD-958C-AA8C9F229215} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {15322D73-FF2B-44EE-B492-3DC377921AF9} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signé]
Task: {188DA873-0EE4-409A-9FC4-0DEDAA9B2AAE} - System32\Tasks\Opera scheduled assistant Autoupdate 1553611530 => C:\Program Files\Opera\launcher.exe [2199760 2021-06-02] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {22E18614-F698-46FF-BF20-03FAD91110B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-06-01] (Google Inc -> Google Inc.)
Task: {2B2E552D-1FC6-4010-882B-F5AFE1CA91B4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {309E3EF8-8C76-4B15-8BA2-267A6707F7A7} - System32\Tasks\WpsKtpcntrQingTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exe [1531136 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {45CA1315-660D-4418-AEFD-DAB00CCD5EDA} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {4C5D118C-7634-45AD-94A4-4E2EE5E14C70} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {526B461F-F78A-4DA3-BEE2-98A3AC71F919} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049600 2017-09-18] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {55511541-F852-4A7F-9EC7-EB3B2C796864} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5751B987-7A9C-4068-AEDC-A6796CE017C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EE08B53-5F87-4A5E-86DF-72BD5B745C05} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-07] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {5F937B9F-ACC7-483C-9C1B-02FB2A5A8BB7} - System32\Tasks\EPSON XP-243 245 247 Series Update {4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {6F5D93CB-7105-40FB-AC85-2880BD7A839B} - System32\Tasks\Opera scheduled Autoupdate 1496345045 => C:\Program Files\Opera\launcher.exe [2199760 2021-06-02] (Opera Software AS -> Opera Software)
Task: {806E686F-0B35-442F-BEDF-B138A67867B4} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {87054865-A684-46BD-9EE3-D57A32866B04} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A5BE691A-EF42-4CC6-B8AB-DFB388C48550} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {A5FD5A94-000D-4291-AEA1-D8BC82FC044C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-06-01] (Google Inc -> Google Inc.)
Task: {AE7E1FB0-145F-41F0-B965-1A3BD2129C2A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C9ACBCD4-9F29-48F0-940B-ACE4CEA0E858} - System32\Tasks\EPSON XP-243 245 247 Series Update {50A7AF93-9FD7-4F63-BB37-41AA569DC43F} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {D20D89CF-483C-4251-81D8-833668BBCB2B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {D821AFD5-3881-431C-BEB3-C9A2B99CE910} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Jean-Pierre\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1935064 2020-11-20] (Orange -> Orange)
Task: {E39B04FB-3166-494E-B519-06F60D7B1BBC} - System32\Tasks\WpsExternal_20161111081738 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe [516352 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {E607C0F1-37AB-49E7-85DA-411D4576DCA4} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-18] (ASUSTeK Computer Inc. -> AsusTek)
Task: {FD68B90E-C6A7-46B9-BC1D-C60D2427BC26} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D} /F:UpdateWORKGROUP\DESKTOP-J73SG6S$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {50A7AF93-9FD7-4F63-BB37-41AA569DC43F}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{50A7AF93-9FD7-4F63-BB37-41AA569DC43F} /F:UpdateWORKGROUP\DESKTOP-J73SG6S$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45ee2b84-ad15-41a2-8558-222a2e39701e}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8d15135a-c254-4d60-9bef-17bd1bcaf4e9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b43643e0-8c56-43b3-955e-a628a283ce51}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jean-Pierre\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-07]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-30]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: ihnplnbk.default-1594911270646
FF ProfilePath: C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 [2021-06-08]
FF Homepage: Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 -> hxxps://r.orange.fr/r/Oodc_oi_odc
FF Notifications: Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 -> hxxps://www.lemonde.fr; hxxps://www.ohmymag.com
FF Extension: (AdBlocker Ultimate) - C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646\Extensions\adblockultimate@adblockultimate.net.xpi [2021-05-02]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-06-07]
FF HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Firefox\Extensions: [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}] - C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\6.2041.0.39937\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f} => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default [2021-06-07]
CHR HomePage: Default -> orange.fr
CHR Extension: (Slides) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-08]
CHR Extension: (Docs) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-08]
CHR Extension: (Google Drive) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-08]
CHR Extension: (YouTube) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-05-08]
CHR Extension: (Sheets) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-08]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-08]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2021-05-08]
CHR Extension: (Gmail) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-08]
CHR Extension: (Chrome Media Router) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-08]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
Opera:
=======
OPR Profile: C:\Users\Jean-Pierre\AppData\Roaming\Opera Software\Opera Stable [2021-06-08]
OPR Notifications: Opera Stable -> hxxps://www.facebook.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Jean-Pierre\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135168 2016-05-17] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2017-08-30] (Acronis International GmbH -> Acronis)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe [125144 2016-02-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] (HUAWEI Technologies Co., Ltd. -> )
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis International GmbH -> Acronis)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2581864 2017-01-25] (LULU Software -> LULU Software)
S3 Soda PDF Desktop CrashHandler; C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe [931176 2017-01-25] (LULU Software -> LULU Software)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-11-06] (Acronis International GmbH -> Acronis)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-20] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-13] (Malwarebytes Inc -> Malwarebytes)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [339808 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [115704 2015-07-16] (GENESYS LOGIC, INC. -> GenesysLogic)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-05] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [250712 2018-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1049432 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [202592 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [581464 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 ubloxVcp; C:\WINDOWS\system32\DRIVERS\ubloxVcp.sys [60416 2012-04-18] (u-blox) [Fichier non signé]
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102664 2014-07-09] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25992 2014-07-09] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [700296 2014-07-09] (Paragon Software GmbH -> )
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [301408 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-08 08:54 - 2021-06-08 08:53 - 000357023 _____ C:\Users\Jean-Pierre\Desktop\ZHPDiag.txt
2021-06-07 22:11 - 2021-06-07 22:24 - 000049059 _____ C:\Users\Jean-Pierre\Downloads\Addition.txt
2021-06-07 22:08 - 2021-06-08 08:59 - 000030463 _____ C:\Users\Jean-Pierre\Downloads\FRST.txt
2021-06-07 22:06 - 2021-06-07 22:06 - 002300416 _____ (Farbar) C:\Users\Jean-Pierre\Downloads\FRST64.exe
2021-06-07 20:55 - 2021-06-07 20:55 - 003256472 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\Downloads\ZHPCleaner(2).exe
2021-06-07 19:54 - 2021-06-07 19:58 - 000000920 _____ C:\Users\Jean-Pierre\Desktop\ZHPSuite.lnk
2021-06-07 19:52 - 2021-06-07 19:52 - 003471512 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\Downloads\ZHPSuite.exe
2021-06-07 18:33 - 2021-06-07 18:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-03 17:13 - 2021-06-03 17:13 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-03 17:12 - 2021-06-03 17:12 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-03 17:12 - 2021-06-03 17:12 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-05-29 08:47 - 2021-06-03 17:12 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-05-29 08:47 - 2021-05-29 08:47 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-27 19:19 - 2021-05-27 19:20 - 000030041 _____ C:\Users\Jean-Pierre\Downloads\AttestationMichèle.pdf
2021-05-27 10:50 - 2021-05-27 10:51 - 000029997 _____ C:\Users\Jean-Pierre\Downloads\Mon attestation de vaccination Covid-19.pdf
2021-05-25 19:30 - 2021-05-25 19:31 - 001691108 _____ C:\Users\Jean-Pierre\Downloads\Eclaté Winch Harken 48.2.pdf
2021-05-18 20:10 - 2021-05-18 20:10 - 000000162 ____H C:\Users\Jean-Pierre\Documents\~$ts de passe.odt
2021-05-16 19:48 - 2021-05-16 19:48 - 011045058 _____ C:\Users\Jean-Pierre\Downloads\JulietteauSaxo.wmv
2021-05-16 19:48 - 2021-05-16 19:48 - 011045058 _____ C:\Users\Jean-Pierre\Downloads\JulietteauSaxo (1).wmv
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-08 08:58 - 2020-05-26 11:52 - 000000000 ____D C:\FRST
2021-06-08 08:57 - 2019-05-22 12:59 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{50EEDDE3-9288-49C7-91A2-37E9D3EE16E5}
2021-06-08 08:56 - 2017-06-01 15:35 - 000000000 ____D C:\Users\Jean-Pierre\AppData\LocalLow\Mozilla
2021-06-08 08:55 - 2019-12-08 11:58 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-08 08:53 - 2019-05-22 12:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-08 08:53 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-08 08:53 - 2017-11-10 14:40 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\ZHP
2021-06-08 08:24 - 2017-06-01 15:27 - 000000184 _____ C:\Users\Jean-Pierre\AppData\Roaming\sp_data.sys
2021-06-08 08:23 - 2018-10-23 07:56 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-08 08:23 - 2017-06-01 15:27 - 000000000 __SHD C:\Users\Jean-Pierre\IntelGraphicsProfiles
2021-06-07 21:03 - 2020-04-07 15:16 - 000000930 _____ C:\Users\Jean-Pierre\Desktop\ZHPCleaner.lnk
2021-06-07 20:35 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-07 20:35 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-07 19:59 - 2020-07-21 01:25 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-07 19:59 - 2020-07-21 01:25 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-07 19:58 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-07 19:58 - 2017-02-04 17:45 - 000000000 ____D C:\Program Files\Microsoft Office
2021-06-07 19:54 - 2017-11-10 14:40 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\ZHP
2021-06-07 19:52 - 2020-08-23 00:15 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-06-07 19:52 - 2017-11-12 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-06-07 18:33 - 2021-05-07 09:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-07 18:33 - 2017-06-01 15:34 - 000001316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-07 18:33 - 2017-06-01 15:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-07 18:23 - 2020-03-30 18:56 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\WebEx
2021-06-03 17:13 - 2020-09-14 14:56 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-03 17:13 - 2020-08-15 19:45 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-03 17:07 - 2019-05-22 12:59 - 000003984 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1496345045
2021-06-03 17:07 - 2017-08-26 16:01 - 000001207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-06-03 17:07 - 2017-06-01 21:22 - 000000000 ____D C:\Program Files\Opera
2021-06-03 16:57 - 2020-03-30 18:55 - 000000000 ____D C:\Users\Jean-Pierre\AppData\LocalLow\WebEx
2021-05-30 10:59 - 2018-01-19 09:56 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\Packages
2021-05-29 17:30 - 2019-05-22 12:58 - 000020958 _____ C:\WINDOWS\diagwrn.xml
2021-05-29 17:30 - 2019-05-22 12:58 - 000020958 _____ C:\WINDOWS\diagerr.xml
2021-05-29 17:12 - 2019-12-07 17:30 - 000000000 ___HD C:\$WINDOWS.~BT
2021-05-29 17:03 - 2019-05-22 11:16 - 000000000 ___DC C:\WINDOWS\Panther
2021-05-29 16:13 - 2017-06-01 21:51 - 000000000 ____D C:\ProgramData\opencpn
2021-05-28 19:06 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-05-27 19:54 - 2019-05-22 12:59 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-945854890-2078425937-559493312-1001
2021-05-27 19:54 - 2019-05-22 12:18 - 000002468 _____ C:\Users\Jean-Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-27 19:54 - 2017-06-01 15:43 - 000000000 ___RD C:\Users\Jean-Pierre\OneDrive
2021-05-27 08:10 - 2017-06-02 19:13 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\CrashDumps
2021-05-26 20:12 - 2017-06-01 21:45 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\Dashlane
2021-05-26 19:11 - 2020-10-29 19:41 - 000004170 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1553611530
2021-05-21 09:29 - 2019-05-22 12:18 - 000000000 ____D C:\Users\Jean-Pierre
2021-05-20 09:12 - 2019-05-22 12:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-16 19:11 - 2017-06-01 21:31 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers ========
2020-05-26 12:55 - 2020-11-23 14:05 - 003337600 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\ZHPCleaner.exe
2019-01-03 18:05 - 2019-01-03 18:05 - 007895040 _____ () C:\Program Files (x86)\GUT9EF9.tmp
2017-06-01 15:27 - 2021-06-08 08:24 - 000000184 _____ () C:\Users\Jean-Pierre\AppData\Roaming\sp_data.sys
2019-03-12 11:47 - 2019-03-12 12:15 - 000000600 _____ () C:\Users\Jean-Pierre\AppData\Local\PUTTY.RND
2020-07-24 13:41 - 2020-07-24 13:41 - 000003314 _____ () C:\Users\Jean-Pierre\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Jean-Pierre (administrateur) sur DESKTOP-J73SG6S (ASUSTeK COMPUTER INC. E202SA) (08-06-2021 08:57:24)
Exécuté depuis C:\Users\Jean-Pierre\Downloads
Profils chargés: Jean-Pierre
Platform: Windows 10 Home Version 1909 18363.1440 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe <4>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\13dbcf2b45eb3e7173a01c88529f0a10\WindowsUpdateBox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1430_none_16f0726f2a33ac55\TiWorker.exe
(Orange -> Orange) C:\Users\Jean-Pierre\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497384 2016-05-17] (Acronis International GmbH -> )
HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4042960 2021-05-26] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Dashlane] => C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\Dashlane.exe [321208 2021-05-24] (Dashlane USA, Inc. -> Dashlane, Inc.) <==== ATTENTION
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [DashlanePlugin] => C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\DashlanePlugin.exe [342200 2021-05-24] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Mobile Partner] => C:\Program Files (x86)\Wi-Fi Modem\Wi-Fi Modem
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [Screenpresso] => C:\Users\Jean-Pierre\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [16867272 2021-05-07] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Jean-Pierre\AppData\Local\WebEx\ciscowebexstart.exe [3710800 2021-05-28] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPLTarget\P0000000000000003] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] () [Fichier non signé]
HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049600 2017-09-18] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMILE.DLL [120320 2014-12-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-243 245 247 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRFE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-07] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2017-11-12]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1131B1E7-A3E0-43BD-958C-AA8C9F229215} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {15322D73-FF2B-44EE-B492-3DC377921AF9} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signé]
Task: {188DA873-0EE4-409A-9FC4-0DEDAA9B2AAE} - System32\Tasks\Opera scheduled assistant Autoupdate 1553611530 => C:\Program Files\Opera\launcher.exe [2199760 2021-06-02] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {22E18614-F698-46FF-BF20-03FAD91110B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-06-01] (Google Inc -> Google Inc.)
Task: {2B2E552D-1FC6-4010-882B-F5AFE1CA91B4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {309E3EF8-8C76-4B15-8BA2-267A6707F7A7} - System32\Tasks\WpsKtpcntrQingTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exe [1531136 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {45CA1315-660D-4418-AEFD-DAB00CCD5EDA} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {4C5D118C-7634-45AD-94A4-4E2EE5E14C70} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {526B461F-F78A-4DA3-BEE2-98A3AC71F919} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049600 2017-09-18] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {55511541-F852-4A7F-9EC7-EB3B2C796864} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5751B987-7A9C-4068-AEDC-A6796CE017C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EE08B53-5F87-4A5E-86DF-72BD5B745C05} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-07] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {5F937B9F-ACC7-483C-9C1B-02FB2A5A8BB7} - System32\Tasks\EPSON XP-243 245 247 Series Update {4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {6F5D93CB-7105-40FB-AC85-2880BD7A839B} - System32\Tasks\Opera scheduled Autoupdate 1496345045 => C:\Program Files\Opera\launcher.exe [2199760 2021-06-02] (Opera Software AS -> Opera Software)
Task: {806E686F-0B35-442F-BEDF-B138A67867B4} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {87054865-A684-46BD-9EE3-D57A32866B04} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A5BE691A-EF42-4CC6-B8AB-DFB388C48550} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {A5FD5A94-000D-4291-AEA1-D8BC82FC044C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-06-01] (Google Inc -> Google Inc.)
Task: {AE7E1FB0-145F-41F0-B965-1A3BD2129C2A} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C9ACBCD4-9F29-48F0-940B-ACE4CEA0E858} - System32\Tasks\EPSON XP-243 245 247 Series Update {50A7AF93-9FD7-4F63-BB37-41AA569DC43F} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {D20D89CF-483C-4251-81D8-833668BBCB2B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {D821AFD5-3881-431C-BEB3-C9A2B99CE910} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Jean-Pierre\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1935064 2020-11-20] (Orange -> Orange)
Task: {E39B04FB-3166-494E-B519-06F60D7B1BBC} - System32\Tasks\WpsExternal_20161111081738 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe [516352 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {E607C0F1-37AB-49E7-85DA-411D4576DCA4} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-18] (ASUSTeK Computer Inc. -> AsusTek)
Task: {FD68B90E-C6A7-46B9-BC1D-C60D2427BC26} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{4D9533C3-A0A2-4EBF-BF95-CE5983DEAE2D} /F:UpdateWORKGROUP\DESKTOP-J73SG6S$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {50A7AF93-9FD7-4F63-BB37-41AA569DC43F}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{50A7AF93-9FD7-4F63-BB37-41AA569DC43F} /F:UpdateWORKGROUP\DESKTOP-J73SG6S$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45ee2b84-ad15-41a2-8558-222a2e39701e}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8d15135a-c254-4d60-9bef-17bd1bcaf4e9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b43643e0-8c56-43b3-955e-a628a283ce51}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jean-Pierre\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-07]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-30]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: ihnplnbk.default-1594911270646
FF ProfilePath: C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 [2021-06-08]
FF Homepage: Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 -> hxxps://r.orange.fr/r/Oodc_oi_odc
FF Notifications: Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646 -> hxxps://www.lemonde.fr; hxxps://www.ohmymag.com
FF Extension: (AdBlocker Ultimate) - C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646\Extensions\adblockultimate@adblockultimate.net.xpi [2021-05-02]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Roaming\Mozilla\Firefox\Profiles\ihnplnbk.default-1594911270646\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-06-07]
FF HKU\S-1-5-21-945854890-2078425937-559493312-1001\...\Firefox\Extensions: [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}] - C:\Users\Jean-Pierre\AppData\Roaming\Dashlane\6.2041.0.39937\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f} => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default [2021-06-07]
CHR HomePage: Default -> orange.fr
CHR Extension: (Slides) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-08]
CHR Extension: (Docs) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-08]
CHR Extension: (Google Drive) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-08]
CHR Extension: (YouTube) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-08]
CHR Extension: (Adobe Acrobat) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-05-08]
CHR Extension: (Sheets) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-08]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-08]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2021-05-08]
CHR Extension: (Gmail) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-08]
CHR Extension: (Chrome Media Router) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-08]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
Opera:
=======
OPR Profile: C:\Users\Jean-Pierre\AppData\Roaming\Opera Software\Opera Stable [2021-06-08]
OPR Notifications: Opera Stable -> hxxps://www.facebook.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Jean-Pierre\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135168 2016-05-17] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2017-08-30] (Acronis International GmbH -> Acronis)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe [125144 2016-02-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] (HUAWEI Technologies Co., Ltd. -> )
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis International GmbH -> Acronis)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2581864 2017-01-25] (LULU Software -> LULU Software)
S3 Soda PDF Desktop CrashHandler; C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe [931176 2017-01-25] (LULU Software -> LULU Software)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-11-06] (Acronis International GmbH -> Acronis)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [141304 2015-12-18] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-20] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-13] (Malwarebytes Inc -> Malwarebytes)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [339808 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [115704 2015-07-16] (GENESYS LOGIC, INC. -> GenesysLogic)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-06-05] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [250712 2018-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1049432 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [202592 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [581464 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 ubloxVcp; C:\WINDOWS\system32\DRIVERS\ubloxVcp.sys [60416 2012-04-18] (u-blox) [Fichier non signé]
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102664 2014-07-09] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25992 2014-07-09] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [700296 2014-07-09] (Paragon Software GmbH -> )
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [301408 2017-08-30] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-08 08:54 - 2021-06-08 08:53 - 000357023 _____ C:\Users\Jean-Pierre\Desktop\ZHPDiag.txt
2021-06-07 22:11 - 2021-06-07 22:24 - 000049059 _____ C:\Users\Jean-Pierre\Downloads\Addition.txt
2021-06-07 22:08 - 2021-06-08 08:59 - 000030463 _____ C:\Users\Jean-Pierre\Downloads\FRST.txt
2021-06-07 22:06 - 2021-06-07 22:06 - 002300416 _____ (Farbar) C:\Users\Jean-Pierre\Downloads\FRST64.exe
2021-06-07 20:55 - 2021-06-07 20:55 - 003256472 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\Downloads\ZHPCleaner(2).exe
2021-06-07 19:54 - 2021-06-07 19:58 - 000000920 _____ C:\Users\Jean-Pierre\Desktop\ZHPSuite.lnk
2021-06-07 19:52 - 2021-06-07 19:52 - 003471512 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\Downloads\ZHPSuite.exe
2021-06-07 18:33 - 2021-06-07 18:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-03 17:13 - 2021-06-03 17:13 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-03 17:12 - 2021-06-03 17:12 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-03 17:12 - 2021-06-03 17:12 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-05-29 08:47 - 2021-06-03 17:12 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-05-29 08:47 - 2021-05-29 08:47 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-27 19:19 - 2021-05-27 19:20 - 000030041 _____ C:\Users\Jean-Pierre\Downloads\AttestationMichèle.pdf
2021-05-27 10:50 - 2021-05-27 10:51 - 000029997 _____ C:\Users\Jean-Pierre\Downloads\Mon attestation de vaccination Covid-19.pdf
2021-05-25 19:30 - 2021-05-25 19:31 - 001691108 _____ C:\Users\Jean-Pierre\Downloads\Eclaté Winch Harken 48.2.pdf
2021-05-18 20:10 - 2021-05-18 20:10 - 000000162 ____H C:\Users\Jean-Pierre\Documents\~$ts de passe.odt
2021-05-16 19:48 - 2021-05-16 19:48 - 011045058 _____ C:\Users\Jean-Pierre\Downloads\JulietteauSaxo.wmv
2021-05-16 19:48 - 2021-05-16 19:48 - 011045058 _____ C:\Users\Jean-Pierre\Downloads\JulietteauSaxo (1).wmv
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-08 08:58 - 2020-05-26 11:52 - 000000000 ____D C:\FRST
2021-06-08 08:57 - 2019-05-22 12:59 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{50EEDDE3-9288-49C7-91A2-37E9D3EE16E5}
2021-06-08 08:56 - 2017-06-01 15:35 - 000000000 ____D C:\Users\Jean-Pierre\AppData\LocalLow\Mozilla
2021-06-08 08:55 - 2019-12-08 11:58 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-08 08:53 - 2019-05-22 12:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-08 08:53 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-08 08:53 - 2017-11-10 14:40 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\ZHP
2021-06-08 08:24 - 2017-06-01 15:27 - 000000184 _____ C:\Users\Jean-Pierre\AppData\Roaming\sp_data.sys
2021-06-08 08:23 - 2018-10-23 07:56 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-08 08:23 - 2017-06-01 15:27 - 000000000 __SHD C:\Users\Jean-Pierre\IntelGraphicsProfiles
2021-06-07 21:03 - 2020-04-07 15:16 - 000000930 _____ C:\Users\Jean-Pierre\Desktop\ZHPCleaner.lnk
2021-06-07 20:35 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-07 20:35 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-07 19:59 - 2020-07-21 01:25 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-07 19:59 - 2020-07-21 01:25 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-07 19:58 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-06-07 19:58 - 2017-02-04 17:45 - 000000000 ____D C:\Program Files\Microsoft Office
2021-06-07 19:54 - 2017-11-10 14:40 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\ZHP
2021-06-07 19:52 - 2020-08-23 00:15 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-06-07 19:52 - 2020-08-23 00:15 - 000002397 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-06-07 19:52 - 2017-11-12 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-06-07 18:33 - 2021-05-07 09:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-07 18:33 - 2017-06-01 15:34 - 000001316 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-07 18:33 - 2017-06-01 15:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-07 18:23 - 2020-03-30 18:56 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\WebEx
2021-06-03 17:13 - 2020-09-14 14:56 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-03 17:13 - 2020-08-15 19:45 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-03 17:07 - 2019-05-22 12:59 - 000003984 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1496345045
2021-06-03 17:07 - 2017-08-26 16:01 - 000001207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-06-03 17:07 - 2017-06-01 21:22 - 000000000 ____D C:\Program Files\Opera
2021-06-03 16:57 - 2020-03-30 18:55 - 000000000 ____D C:\Users\Jean-Pierre\AppData\LocalLow\WebEx
2021-05-30 10:59 - 2018-01-19 09:56 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\Packages
2021-05-29 17:30 - 2019-05-22 12:58 - 000020958 _____ C:\WINDOWS\diagwrn.xml
2021-05-29 17:30 - 2019-05-22 12:58 - 000020958 _____ C:\WINDOWS\diagerr.xml
2021-05-29 17:12 - 2019-12-07 17:30 - 000000000 ___HD C:\$WINDOWS.~BT
2021-05-29 17:03 - 2019-05-22 11:16 - 000000000 ___DC C:\WINDOWS\Panther
2021-05-29 16:13 - 2017-06-01 21:51 - 000000000 ____D C:\ProgramData\opencpn
2021-05-28 19:06 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-05-27 19:54 - 2019-05-22 12:59 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-945854890-2078425937-559493312-1001
2021-05-27 19:54 - 2019-05-22 12:18 - 000002468 _____ C:\Users\Jean-Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-27 19:54 - 2017-06-01 15:43 - 000000000 ___RD C:\Users\Jean-Pierre\OneDrive
2021-05-27 08:10 - 2017-06-02 19:13 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\CrashDumps
2021-05-26 20:12 - 2017-06-01 21:45 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\Dashlane
2021-05-26 19:11 - 2020-10-29 19:41 - 000004170 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1553611530
2021-05-21 09:29 - 2019-05-22 12:18 - 000000000 ____D C:\Users\Jean-Pierre
2021-05-20 09:12 - 2019-05-22 12:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-16 19:11 - 2017-06-01 21:31 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers ========
2020-05-26 12:55 - 2020-11-23 14:05 - 003337600 _____ (Nicolas Coolman) C:\Users\Jean-Pierre\ZHPCleaner.exe
2019-01-03 18:05 - 2019-01-03 18:05 - 007895040 _____ () C:\Program Files (x86)\GUT9EF9.tmp
2017-06-01 15:27 - 2021-06-08 08:24 - 000000184 _____ () C:\Users\Jean-Pierre\AppData\Roaming\sp_data.sys
2019-03-12 11:47 - 2019-03-12 12:15 - 000000600 _____ () C:\Users\Jean-Pierre\AppData\Local\PUTTY.RND
2020-07-24 13:41 - 2020-07-24 13:41 - 000003314 _____ () C:\Users\Jean-Pierre\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================