Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-06-2021
Exécuté par User (administrateur) sur PC-LENOVO-STÉPH (LENOVO ChiefRiver Platform) (23-06-2021 22:58:05)
Exécuté depuis C:\Users\User\Desktop
Profils chargés: User
Platform: Windows 10 Home Version 2004 19041.1052 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\User\Desktop\ZHPSuite.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\User\Documents\Désinfection\ZHPDiag3.exe
(Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenu.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2015-10-19] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2015-10-19] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [216576 2020-09-26] (Open-Shell) [Fichier non signé]
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508256 2020-08-12] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2012-07-30] (Broadcom Corporation -> Broadcom Corporation.)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00F5F5FE-4D3B-4260-BBC1-5973E62793F6} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264328 2016-12-07] (LENOVO -> )
Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0E37E586-1F29-4B87-A6A6-F52BB238AAF2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {101F76CF-E02F-4AE8-88FD-1BF7F9443C8F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {136AF4ED-480D-46A8-B768-C444145B85AB} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {2DBF204B-EA0C-4E04-B61A-9ADA08BEAA9D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103344 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D3AD1C-BE49-477C-B77B-F912139648DB} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4ABB74D7-506D-4167-A20E-5ADFD6C9A3F2} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {4B5DB688-8B54-4BB1-B032-3DA75113C64A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51153748-2C0B-433D-8F8D-BC6CF74C8B41} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758224 2021-04-25] (Lenovo -> )
Task: {57FEF382-CAE7-414D-BC28-2E9FF06B000B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D7F4931-6095-4892-9A5D-CF135362E356} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {61C21713-48DA-40D6-9034-0787F3A46E40} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103344 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {660A8F2D-92BE-423C-978A-F8B46BFD852A} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {84D8C31D-3BB4-49F0-8F64-677D0F11C07B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8E46A010-CC59-4100-B7D0-C4B3C857597D} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321608 2016-12-07] (LENOVO -> Lenovo)
Task: {9C2B9188-4ECD-43C6-8FA7-9A67B1EA100A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A3DF0BD7-5AEC-4F4F-8F2C-778AD6816398} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {B520E0C3-2FF7-4888-AA5B-1A636470C2D6} - System32\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupload.exe [31320 2021-05-31] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {C47B3952-D67F-4038-86B2-DA7C38A8834C} - System32\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupdate.exe [31320 2021-05-31] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D60A184E-C166-4109-818A-2C8F2A41FCEE} - System32\Tasks\AdBlock Master => C:\Program Files (x86)\AdBlock Master\AdBlock.exe <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E426023D-ECD4-46A5-A69D-66A8085B04EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E43B039D-5498-4408-A9C6-0164E71DD590} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECE36251-D6DA-44F0-B957-F4C0DA73D733} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {EE5F6402-16FA-4D04-A779-99F695A76263} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1121168 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEDFB755-A2C7-4620-AB49-F145BAADF940} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758224 2021-04-25] (Lenovo -> )
Task: {FB1460CC-8BF0-4947-977C-EE4C001D0B76} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupload.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{07e5b248-3456-42d9-b3f1-1681055429eb}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{cdd9aa6a-c17f-4a9e-b56f-63ed7ea59cec}: [DhcpNameServer] 192.168.0.254
Edge:
=======
DownloadDir: C:\Users\User\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-23]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-06-23]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: sdcf5m94.default-1449679278495-1622248414203
FF DefaultProfile: bjcbl64y.default
FF ProfilePath: C:\Users\User\AppData\Roaming\TomTom\HOME\Profiles\2xvvmal5.default [2019-07-16]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-07-16] [] [non signé]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 [2021-06-23]
FF Homepage: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> hxxps://www.google.fr/
FF Session Restore: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> hxxps://www.gametwist.com
FF NewTabOverride: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> Enabled: {66E978CD-981F-47DF-AC42-E3CF417C1467}
FF NewTabOverride: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> Enabled: uBlock0@raymondhill.net
FF Extension: (Bookmark search plus 2) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\bookmarksearchplus2@aafn.org.xpi [2021-05-29]
FF Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\firefox@online-convert.com.xpi [2021-05-29]
FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-06-23]
FF Extension: (uBlock Origin) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\uBlock0@raymondhill.net.xpi [2021-06-23]
FF Extension: (Reverse Image Search) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{0da2e603-21ba-4422-8049-b6d9e013ed84}.xpi [2021-05-29]
FF Extension: (Tab Suspender) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{29780561-0607-49f3-aba9-fb8806d2f22d}.xpi [2021-05-29]
FF Extension: (New Tab Homepage) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2021-05-29]
FF Extension: (Flash and Video Download) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2021-05-29]
FF Extension: (Video DownloadHelper) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-05-29]
FF Extension: (Auto Tab Discard) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{c2c003ee-bd69-42a2-b0e9-6f34222cb046}.xpi [2021-06-06]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-29]
FF ProfilePath: C:\Users\User\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default [2021-06-04]
FF Homepage: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> hxxps://www.google.com/
FF NewTab: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> hxxps://www.google.com/
FF Session Restore: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> est activé.
FF Extension: (Adblock Latitude) - C:\Users\User\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2020-08-01] [] [non signé]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2021-06-05]
OPR Extension: (Avira Safe Shopping) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2021-04-01]
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-04-01]
OPR Extension: (Avira Password Manager) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2021-04-01]
OPR Extension: (Avira Phantom VPN gratuit – débloquez des sites) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2021-04-01]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-07-03] (Mixbyte Inc -> Freemake)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (LENOVO -> Lenovo)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> )
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-12-06] (AnchorFree Inc -> Anchorfree Inc.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
S3 MEIx64; \SystemRoot\System32\drivers\HECIx64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
Erreur lors de la lecture du fichier: "C:\Users\User\Downloads\Graphic content 18+_ US backed "
2021-06-23 22:22 - 2021-06-23 22:22 - 003472024 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPSuite.exe
2021-06-18 18:55 - 2021-06-18 18:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-18 01:22 - 2021-06-21 01:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-13 10:37 - 2021-06-13 10:38 - 000003180 _____ C:\WINDOWS\system32\Tasks\AdBlock Master
2021-06-13 10:35 - 2021-06-20 13:48 - 000000000 ____D C:\Program Files (x86)\AdBlock Master
2021-06-13 10:34 - 2021-06-13 10:34 - 001273280 _____ (Major Share (MajorShare.com) ) C:\Users\User\Desktop\setup-remove-ads.exe
2021-06-13 10:13 - 2021-06-13 10:13 - 000009105 _____ C:\Users\User\Desktop\ZHPCleaner (R).html
2021-06-13 10:13 - 2021-06-13 10:13 - 000002455 _____ C:\Users\User\Desktop\ZHPCleaner (R).txt
2021-06-13 09:50 - 2021-06-20 13:42 - 000009547 _____ C:\Users\User\Desktop\ZHPCleaner (S).html
2021-06-13 09:50 - 2021-06-20 13:42 - 000002803 _____ C:\Users\User\Desktop\ZHPCleaner (S).txt
2021-06-13 09:29 - 2021-06-13 09:29 - 003256472 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPCleaner.exe
2021-06-13 07:50 - 2021-06-13 07:50 - 003276440 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPDiag3.exe
2021-06-13 05:14 - 2021-06-13 05:14 - 008534696 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.2.exe
2021-06-12 13:33 - 2021-06-12 13:33 - 000002599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk
2021-06-12 13:33 - 2021-06-12 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-06-11 12:04 - 2021-06-11 12:04 - 000000000 ____D C:\Users\User\Documents\Travaux maison
2021-06-10 04:46 - 2021-06-10 04:46 - 000463808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-10 04:46 - 2021-06-10 04:46 - 000000000 ____D C:\WINDOWS\Panther
2021-06-08 20:59 - 2021-06-08 20:59 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-08 20:59 - 2021-06-08 20:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-08 20:58 - 2021-06-08 20:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-08 20:58 - 2021-06-08 20:58 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-08 20:58 - 2021-06-08 20:58 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-08 20:58 - 2021-06-08 20:58 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-08 20:57 - 2021-06-08 20:57 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-08 20:57 - 2021-06-08 20:57 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-08 20:56 - 2021-06-08 20:56 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-08 20:56 - 2021-06-08 20:56 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-08 20:55 - 2021-06-08 20:55 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-08 20:55 - 2021-06-08 20:55 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-08 20:55 - 2021-06-08 20:55 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-08 20:54 - 2021-06-08 20:54 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-08 20:54 - 2021-06-08 20:54 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-08 20:53 - 2021-06-08 20:53 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-08 20:53 - 2021-06-08 20:53 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-08 20:53 - 2021-06-08 20:53 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-05 01:40 - 2021-06-05 19:05 - 000057708 _____ C:\Users\User\Desktop\Shortcut.txt
2021-06-05 01:37 - 2021-06-05 19:05 - 000038321 _____ C:\Users\User\Desktop\Addition.txt
2021-06-05 01:33 - 2021-06-23 23:00 - 000024068 _____ C:\Users\User\Desktop\FRST.txt
2021-06-05 01:33 - 2021-06-05 01:33 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2021-06-05 00:47 - 2021-06-23 14:44 - 000000000 ____D C:\Users\User\AppData\Local\OpenShell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\Users\User\AppData\Roaming\OpenShell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open-Shell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\Program Files\Open-Shell
2021-06-05 00:17 - 2021-06-05 00:17 - 007571456 _____ (Open-Shell) C:\Users\User\Downloads\OpenShellSetup_4_4_160.exe
2021-06-01 03:04 - 2021-06-03 03:09 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-05-28 01:29 - 2021-06-23 22:59 - 000000000 ____D C:\FRST
2021-05-28 01:29 - 2021-06-05 01:33 - 002300928 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2021-05-27 18:13 - 2021-05-29 04:16 - 000000754 _____ C:\Users\User\Desktop\ZHPFix.txt
2021-05-27 17:46 - 2021-06-04 10:28 - 000000931 _____ C:\Users\User\Desktop\ZHPCleaner.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-23 22:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-23 22:39 - 2020-11-09 20:37 - 000471012 _____ C:\Users\User\Desktop\ZHPDiag.html
2021-06-23 22:39 - 2018-09-10 13:08 - 000364277 _____ C:\Users\User\Desktop\ZHPDiag.txt
2021-06-23 22:39 - 2018-05-01 01:55 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2021-06-23 21:37 - 2020-08-12 23:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-23 13:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-23 13:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-23 09:59 - 2019-02-06 12:54 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-23 09:58 - 2016-11-16 08:40 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2021-06-21 02:04 - 2018-07-11 19:22 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2021-06-21 01:02 - 2020-08-12 23:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-21 01:02 - 2020-08-12 23:05 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-21 01:02 - 2015-10-23 16:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-20 12:52 - 2020-06-22 02:40 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-20 12:52 - 2020-06-22 02:40 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-18 21:17 - 2018-06-20 01:47 - 000000000 ____D C:\Users\User\Documents\Désinfection
2021-06-18 18:55 - 2015-10-23 16:34 - 000001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-16 23:16 - 2020-08-12 23:45 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-06-16 23:16 - 2020-08-12 23:09 - 000002459 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-16 23:16 - 2015-11-02 12:52 - 000000000 ___RD C:\Users\User\OneDrive
2021-06-13 05:44 - 2020-08-12 23:28 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-13 05:44 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-13 05:44 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-13 05:44 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-13 05:36 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-13 05:35 - 2018-05-29 20:44 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-06-13 05:35 - 2017-05-10 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2021-06-13 05:34 - 2020-11-09 19:54 - 000000000 ____D C:\AdwCleaner
2021-06-13 05:34 - 2017-05-10 18:43 - 000000000 ____D C:\Users\User\AppData\Roaming\Samsung
2021-06-13 05:34 - 2017-05-10 18:39 - 000000000 ____D C:\Program Files (x86)\Samsung
2021-06-12 14:33 - 2018-05-29 21:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-12 13:33 - 2019-10-11 02:42 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-06-12 13:33 - 2017-02-04 04:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-06-11 09:31 - 2021-01-22 08:13 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-10 04:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-10 04:46 - 2018-10-17 12:55 - 000000660 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job
2021-06-10 04:46 - 2018-10-17 12:55 - 000000564 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job
2021-06-10 04:45 - 2015-10-23 16:39 - 000000000 ____D C:\Program Files (x86)\Avira
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-08 21:23 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-08 20:02 - 2020-08-06 13:02 - 000000000 ___HD C:\$WinREAgent
2021-06-08 19:58 - 2015-10-24 04:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-08 19:54 - 2015-10-24 04:06 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-06 21:26 - 2015-10-19 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-06-06 21:26 - 2015-10-19 09:47 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-06-06 21:26 - 2015-10-19 09:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-05 05:00 - 2016-03-15 19:03 - 000000000 ____D C:\Users\User\Documents\Documents officiels
2021-06-05 01:25 - 2015-10-26 14:17 - 000000000 ____D C:\ProgramData\Lenovo
2021-06-05 00:11 - 2016-11-18 23:26 - 000000000 ____D C:\Users\User\Desktop\Sécurité
2021-06-05 00:05 - 2015-10-23 16:56 - 000000000 ____D C:\Users\User\AppData\Local\ClassicShell
2021-06-05 00:03 - 2017-05-10 18:39 - 000000000 ____D C:\ProgramData\Samsung
2021-06-04 21:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-04 21:51 - 2015-10-26 17:02 - 000000000 ____D C:\Users\User\AppData\LocalLow\Temp
2021-06-03 03:24 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-06-03 03:14 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-03 03:14 - 2019-02-27 22:51 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-06-03 03:14 - 2017-10-22 17:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-03 03:13 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-01 16:05 - 2020-08-12 23:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-06-01 16:05 - 2020-03-03 17:04 - 000000000 ____D C:\WINDOWS\TempInst
2021-06-01 16:05 - 2018-11-15 13:32 - 000004189 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-05-31 14:02 - 2020-08-12 23:45 - 000003828 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-05-31 14:02 - 2020-08-12 23:45 - 000003732 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-05-31 14:02 - 2018-10-17 12:55 - 000000000 ____D C:\Users\User\AppData\Local\GoToMeeting
2021-05-29 02:33 - 2015-12-09 18:41 - 000000000 ____D C:\Users\User\Desktop\Anciennes données de Firefox
2021-05-28 17:10 - 2015-10-23 16:39 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-28 17:10 - 2015-10-23 16:39 - 000000000 ____D C:\ProgramData\Avira
2021-05-25 18:48 - 2016-02-18 17:07 - 000000000 ____D C:\Users\User\Documents\Impôts
2021-05-25 07:48 - 2021-01-22 08:13 - 000725304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-05-25 07:48 - 2021-01-22 08:13 - 000470328 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
==================== Fichiers à la racine de certains dossiers ========
2015-10-19 11:31 - 2015-10-19 11:36 - 000000070 _____ () C:\Program Files\smaple.txt
2019-10-02 17:17 - 2020-12-29 08:55 - 000002210 _____ () C:\Users\User\AppData\Roaming\downloads.json
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par User (administrateur) sur PC-LENOVO-STÉPH (LENOVO ChiefRiver Platform) (23-06-2021 22:58:05)
Exécuté depuis C:\Users\User\Desktop
Profils chargés: User
Platform: Windows 10 Home Version 2004 19041.1052 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\User\Desktop\ZHPSuite.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\User\Documents\Désinfection\ZHPDiag3.exe
(Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenu.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (AlcorMicro, Corp. -> Alcor Micro Corp.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2015-10-19] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2015-10-19] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [216576 2020-09-26] (Open-Shell) [Fichier non signé]
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508256 2020-08-12] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2012-07-30] (Broadcom Corporation -> Broadcom Corporation.)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00F5F5FE-4D3B-4260-BBC1-5973E62793F6} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264328 2016-12-07] (LENOVO -> )
Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0E37E586-1F29-4B87-A6A6-F52BB238AAF2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {101F76CF-E02F-4AE8-88FD-1BF7F9443C8F} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {136AF4ED-480D-46A8-B768-C444145B85AB} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
Task: {2DBF204B-EA0C-4E04-B61A-9ADA08BEAA9D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103344 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {32D3AD1C-BE49-477C-B77B-F912139648DB} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4ABB74D7-506D-4167-A20E-5ADFD6C9A3F2} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {4B5DB688-8B54-4BB1-B032-3DA75113C64A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51153748-2C0B-433D-8F8D-BC6CF74C8B41} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758224 2021-04-25] (Lenovo -> )
Task: {57FEF382-CAE7-414D-BC28-2E9FF06B000B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D7F4931-6095-4892-9A5D-CF135362E356} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {61C21713-48DA-40D6-9034-0787F3A46E40} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103344 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {660A8F2D-92BE-423C-978A-F8B46BFD852A} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10165384 2016-12-07] (LENOVO -> Lenovo)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {84D8C31D-3BB4-49F0-8F64-677D0F11C07B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8E46A010-CC59-4100-B7D0-C4B3C857597D} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321608 2016-12-07] (LENOVO -> Lenovo)
Task: {9C2B9188-4ECD-43C6-8FA7-9A67B1EA100A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A3DF0BD7-5AEC-4F4F-8F2C-778AD6816398} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {B520E0C3-2FF7-4888-AA5B-1A636470C2D6} - System32\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupload.exe [31320 2021-05-31] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {C47B3952-D67F-4038-86B2-DA7C38A8834C} - System32\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001 => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupdate.exe [31320 2021-05-31] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D60A184E-C166-4109-818A-2C8F2A41FCEE} - System32\Tasks\AdBlock Master => C:\Program Files (x86)\AdBlock Master\AdBlock.exe <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E426023D-ECD4-46A5-A69D-66A8085B04EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E43B039D-5498-4408-A9C6-0164E71DD590} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECE36251-D6DA-44F0-B957-F4C0DA73D733} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {EE5F6402-16FA-4D04-A779-99F695A76263} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1121168 2021-06-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEDFB755-A2C7-4620-AB49-F145BAADF940} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758224 2021-04-25] (Lenovo -> )
Task: {FB1460CC-8BF0-4947-977C-EE4C001D0B76} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19709\g2mupload.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{07e5b248-3456-42d9-b3f1-1681055429eb}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{cdd9aa6a-c17f-4a9e-b56f-63ed7ea59cec}: [DhcpNameServer] 192.168.0.254
Edge:
=======
DownloadDir: C:\Users\User\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-23]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-06-23]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: sdcf5m94.default-1449679278495-1622248414203
FF DefaultProfile: bjcbl64y.default
FF ProfilePath: C:\Users\User\AppData\Roaming\TomTom\HOME\Profiles\2xvvmal5.default [2019-07-16]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-07-16] [] [non signé]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 [2021-06-23]
FF Homepage: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> hxxps://www.google.fr/
FF Session Restore: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> hxxps://www.gametwist.com
FF NewTabOverride: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> Enabled: {66E978CD-981F-47DF-AC42-E3CF417C1467}
FF NewTabOverride: Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203 -> Enabled: uBlock0@raymondhill.net
FF Extension: (Bookmark search plus 2) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\bookmarksearchplus2@aafn.org.xpi [2021-05-29]
FF Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\firefox@online-convert.com.xpi [2021-05-29]
FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-06-23]
FF Extension: (uBlock Origin) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\uBlock0@raymondhill.net.xpi [2021-06-23]
FF Extension: (Reverse Image Search) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{0da2e603-21ba-4422-8049-b6d9e013ed84}.xpi [2021-05-29]
FF Extension: (Tab Suspender) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{29780561-0607-49f3-aba9-fb8806d2f22d}.xpi [2021-05-29]
FF Extension: (New Tab Homepage) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2021-05-29]
FF Extension: (Flash and Video Download) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2021-05-29]
FF Extension: (Video DownloadHelper) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-05-29]
FF Extension: (Auto Tab Discard) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{c2c003ee-bd69-42a2-b0e9-6f34222cb046}.xpi [2021-06-06]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\sdcf5m94.default-1449679278495-1622248414203\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-29]
FF ProfilePath: C:\Users\User\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default [2021-06-04]
FF Homepage: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> hxxps://www.google.com/
FF NewTab: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> hxxps://www.google.com/
FF Session Restore: Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default -> est activé.
FF Extension: (Adblock Latitude) - C:\Users\User\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\bjcbl64y.default\Extensions\adblocklatitude@addons.palemoon.org.xpi [2020-08-01] [] [non signé]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2021-06-05]
OPR Extension: (Avira Safe Shopping) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2021-04-01]
OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-04-01]
OPR Extension: (Avira Password Manager) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2021-04-01]
OPR Extension: (Avira Phantom VPN gratuit – débloquez des sites) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2021-04-01]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-07-03] (Mixbyte Inc -> Freemake)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (LENOVO -> Lenovo)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> )
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-12-06] (AnchorFree Inc -> Anchorfree Inc.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-12] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
S3 MEIx64; \SystemRoot\System32\drivers\HECIx64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
Erreur lors de la lecture du fichier: "C:\Users\User\Downloads\Graphic content 18+_ US backed "
2021-06-23 22:22 - 2021-06-23 22:22 - 003472024 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPSuite.exe
2021-06-18 18:55 - 2021-06-18 18:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-18 01:22 - 2021-06-21 01:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-13 10:37 - 2021-06-13 10:38 - 000003180 _____ C:\WINDOWS\system32\Tasks\AdBlock Master
2021-06-13 10:35 - 2021-06-20 13:48 - 000000000 ____D C:\Program Files (x86)\AdBlock Master
2021-06-13 10:34 - 2021-06-13 10:34 - 001273280 _____ (Major Share (MajorShare.com) ) C:\Users\User\Desktop\setup-remove-ads.exe
2021-06-13 10:13 - 2021-06-13 10:13 - 000009105 _____ C:\Users\User\Desktop\ZHPCleaner (R).html
2021-06-13 10:13 - 2021-06-13 10:13 - 000002455 _____ C:\Users\User\Desktop\ZHPCleaner (R).txt
2021-06-13 09:50 - 2021-06-20 13:42 - 000009547 _____ C:\Users\User\Desktop\ZHPCleaner (S).html
2021-06-13 09:50 - 2021-06-20 13:42 - 000002803 _____ C:\Users\User\Desktop\ZHPCleaner (S).txt
2021-06-13 09:29 - 2021-06-13 09:29 - 003256472 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPCleaner.exe
2021-06-13 07:50 - 2021-06-13 07:50 - 003276440 _____ (Nicolas Coolman) C:\Users\User\Desktop\ZHPDiag3.exe
2021-06-13 05:14 - 2021-06-13 05:14 - 008534696 _____ (Malwarebytes) C:\Users\User\Desktop\adwcleaner_8.2.exe
2021-06-12 13:33 - 2021-06-12 13:33 - 000002599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk
2021-06-12 13:33 - 2021-06-12 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-06-11 12:04 - 2021-06-11 12:04 - 000000000 ____D C:\Users\User\Documents\Travaux maison
2021-06-10 04:46 - 2021-06-10 04:46 - 000463808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-10 04:46 - 2021-06-10 04:46 - 000000000 ____D C:\WINDOWS\Panther
2021-06-08 20:59 - 2021-06-08 20:59 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-08 20:59 - 2021-06-08 20:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-08 20:58 - 2021-06-08 20:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-08 20:58 - 2021-06-08 20:58 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-08 20:58 - 2021-06-08 20:58 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-08 20:58 - 2021-06-08 20:58 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-08 20:57 - 2021-06-08 20:57 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-08 20:57 - 2021-06-08 20:57 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-08 20:56 - 2021-06-08 20:56 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-08 20:56 - 2021-06-08 20:56 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-08 20:55 - 2021-06-08 20:55 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-08 20:55 - 2021-06-08 20:55 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-08 20:55 - 2021-06-08 20:55 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-08 20:54 - 2021-06-08 20:54 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-08 20:54 - 2021-06-08 20:54 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-08 20:53 - 2021-06-08 20:53 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-08 20:53 - 2021-06-08 20:53 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-08 20:53 - 2021-06-08 20:53 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-05 01:40 - 2021-06-05 19:05 - 000057708 _____ C:\Users\User\Desktop\Shortcut.txt
2021-06-05 01:37 - 2021-06-05 19:05 - 000038321 _____ C:\Users\User\Desktop\Addition.txt
2021-06-05 01:33 - 2021-06-23 23:00 - 000024068 _____ C:\Users\User\Desktop\FRST.txt
2021-06-05 01:33 - 2021-06-05 01:33 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2021-06-05 00:47 - 2021-06-23 14:44 - 000000000 ____D C:\Users\User\AppData\Local\OpenShell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\Users\User\AppData\Roaming\OpenShell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open-Shell
2021-06-05 00:47 - 2021-06-05 00:47 - 000000000 ____D C:\Program Files\Open-Shell
2021-06-05 00:17 - 2021-06-05 00:17 - 007571456 _____ (Open-Shell) C:\Users\User\Downloads\OpenShellSetup_4_4_160.exe
2021-06-01 03:04 - 2021-06-03 03:09 - 000000000 ____D C:\Users\User\AppData\LocalLow\IGDump
2021-05-28 01:29 - 2021-06-23 22:59 - 000000000 ____D C:\FRST
2021-05-28 01:29 - 2021-06-05 01:33 - 002300928 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2021-05-27 18:13 - 2021-05-29 04:16 - 000000754 _____ C:\Users\User\Desktop\ZHPFix.txt
2021-05-27 17:46 - 2021-06-04 10:28 - 000000931 _____ C:\Users\User\Desktop\ZHPCleaner.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-23 22:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-23 22:39 - 2020-11-09 20:37 - 000471012 _____ C:\Users\User\Desktop\ZHPDiag.html
2021-06-23 22:39 - 2018-09-10 13:08 - 000364277 _____ C:\Users\User\Desktop\ZHPDiag.txt
2021-06-23 22:39 - 2018-05-01 01:55 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2021-06-23 21:37 - 2020-08-12 23:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-23 13:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-23 13:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-23 09:59 - 2019-02-06 12:54 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-23 09:58 - 2016-11-16 08:40 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2021-06-21 02:04 - 2018-07-11 19:22 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2021-06-21 01:02 - 2020-08-12 23:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-21 01:02 - 2020-08-12 23:05 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-21 01:02 - 2015-10-23 16:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-20 12:52 - 2020-06-22 02:40 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-20 12:52 - 2020-06-22 02:40 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-18 21:17 - 2018-06-20 01:47 - 000000000 ____D C:\Users\User\Documents\Désinfection
2021-06-18 18:55 - 2015-10-23 16:34 - 000001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-16 23:16 - 2020-08-12 23:45 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-06-16 23:16 - 2020-08-12 23:09 - 000002459 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-16 23:16 - 2015-11-02 12:52 - 000000000 ___RD C:\Users\User\OneDrive
2021-06-13 05:44 - 2020-08-12 23:28 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-13 05:44 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-13 05:44 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-13 05:44 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-13 05:36 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-13 05:35 - 2018-05-29 20:44 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-06-13 05:35 - 2017-05-10 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2021-06-13 05:34 - 2020-11-09 19:54 - 000000000 ____D C:\AdwCleaner
2021-06-13 05:34 - 2017-05-10 18:43 - 000000000 ____D C:\Users\User\AppData\Roaming\Samsung
2021-06-13 05:34 - 2017-05-10 18:39 - 000000000 ____D C:\Program Files (x86)\Samsung
2021-06-12 14:33 - 2018-05-29 21:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-12 13:33 - 2019-10-11 02:42 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-06-12 13:33 - 2019-10-11 02:42 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-06-12 13:33 - 2017-02-04 04:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-06-11 09:31 - 2021-01-22 08:13 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-10 04:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-10 04:46 - 2018-10-17 12:55 - 000000660 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job
2021-06-10 04:46 - 2018-10-17 12:55 - 000000564 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001.job
2021-06-10 04:45 - 2015-10-23 16:39 - 000000000 ____D C:\Program Files (x86)\Avira
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-10 04:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-08 21:23 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-08 20:02 - 2020-08-06 13:02 - 000000000 ___HD C:\$WinREAgent
2021-06-08 19:58 - 2015-10-24 04:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-08 19:54 - 2015-10-24 04:06 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-06 21:26 - 2015-10-19 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2021-06-06 21:26 - 2015-10-19 09:47 - 000000000 ____D C:\Program Files (x86)\Lenovo
2021-06-06 21:26 - 2015-10-19 09:35 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-05 05:00 - 2016-03-15 19:03 - 000000000 ____D C:\Users\User\Documents\Documents officiels
2021-06-05 01:25 - 2015-10-26 14:17 - 000000000 ____D C:\ProgramData\Lenovo
2021-06-05 00:11 - 2016-11-18 23:26 - 000000000 ____D C:\Users\User\Desktop\Sécurité
2021-06-05 00:05 - 2015-10-23 16:56 - 000000000 ____D C:\Users\User\AppData\Local\ClassicShell
2021-06-05 00:03 - 2017-05-10 18:39 - 000000000 ____D C:\ProgramData\Samsung
2021-06-04 21:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-04 21:51 - 2015-10-26 17:02 - 000000000 ____D C:\Users\User\AppData\LocalLow\Temp
2021-06-03 03:24 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-06-03 03:14 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-03 03:14 - 2019-02-27 22:51 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-06-03 03:14 - 2017-10-22 17:01 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-03 03:13 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-01 16:05 - 2020-08-12 23:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT
2021-06-01 16:05 - 2020-03-03 17:04 - 000000000 ____D C:\WINDOWS\TempInst
2021-06-01 16:05 - 2018-11-15 13:32 - 000004189 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2021-05-31 14:02 - 2020-08-12 23:45 - 000003828 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-05-31 14:02 - 2020-08-12 23:45 - 000003732 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-2571112955-4239876419-1220594018-1001
2021-05-31 14:02 - 2018-10-17 12:55 - 000000000 ____D C:\Users\User\AppData\Local\GoToMeeting
2021-05-29 02:33 - 2015-12-09 18:41 - 000000000 ____D C:\Users\User\Desktop\Anciennes données de Firefox
2021-05-28 17:10 - 2015-10-23 16:39 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-28 17:10 - 2015-10-23 16:39 - 000000000 ____D C:\ProgramData\Avira
2021-05-25 18:48 - 2016-02-18 17:07 - 000000000 ____D C:\Users\User\Documents\Impôts
2021-05-25 07:48 - 2021-01-22 08:13 - 000725304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-05-25 07:48 - 2021-01-22 08:13 - 000470328 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
==================== Fichiers à la racine de certains dossiers ========
2015-10-19 11:31 - 2015-10-19 11:36 - 000000070 _____ () C:\Program Files\smaple.txt
2019-10-02 17:17 - 2020-12-29 08:55 - 000002210 _____ () C:\Users\User\AppData\Roaming\downloads.json
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================