Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Exécuté par Laurent & Marie-Anne (administrateur) sur PC-PORTABLE-LAU (Acer Aspire A517-51G) (23-09-2021 12:05:08)
Exécuté depuis C:\Users\Laurent & Marie-Anne\Desktop
Profils chargés: Laurent & Marie-Anne
Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHeciSvc.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [ReminderApp_EEAC3053-7055-4143-B8A0-306758055099] => C:\Program Files (x86)\Nova Development\Print Artist Platinum 25\ReminderApp.exe [146080 2013-07-31] (Nova Development (Avanquest North America Inc.) -> )
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SSC Service Utility] => C:\Program Files (x86)\SSC Service Utility\ssc_serv.exe [665600 2007-10-09] (SSC Localization Group) [Fichier non signé]
HKU\S-1-5-21-3094376551-586335632-2217792166-1001\...\MountPoints2: {83c72ace-e2d5-11ea-833c-505bc28e636e} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-530 Series 64MonitorBE: C:\Windows\system32\E_YLMBPME.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\Windows\system32\hpinkstsB111LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 5520 series): C:\Windows\system32\HPDiscoPMB111.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-18] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {08C5220B-8DE7-470A-9E42-8E4462B2BAE9} - System32\Tasks\EPSON XP-530 Series Update {EC013F63-4B2E-45D1-A0FA-622FD28835C3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {0AAE4462-D867-4805-B513-F33AF6D2871C} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)
Task: {0E53B595-93F9-4EE9-8FFA-3A60160E01CD} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {199E4333-F0ED-4295-B663-D3E0BB764CAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.)
Task: {1C0D041B-8C9D-469A-B9D7-2C445DCD4B48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20DE23E5-C610-4338-A79F-B8D02A93A29E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CE70A0E-6E54-4376-A220-69A610B48F15} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35BA1000-35A9-41E1-9C4D-787B697680EF} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {3A9A4786-274B-4AE5-A761-97C97205A66B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439384 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D5E20D9-B061-4A8A-A737-E692E52D5B99} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {3EE481F4-CF03-4AD7-8E2B-75E0FE4AEBF3} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {429A7510-80DC-4EB8-815A-4F3BB29EC9A7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {45E25573-D06C-4509-AF97-66DD3F8AA0A7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {48837A60-3B48-4ED2-A6A3-07100C234B27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4DA339D7-5B0C-4421-A06A-FFBD2C506123} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {59E45DE6-871B-486C-8212-777A0155EFF7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5FA97B42-250C-4C3E-83E0-AC9098F99B9E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6376FAC6-3462-4C1A-8412-04A768CBCC9F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {652C68F6-AAD3-44BB-9FA9-F1F81493CC4D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1155480 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ADCB633-AC26-4841-A37D-5E9787E55CB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.)
Task: {7A594A25-C7FF-4907-89E9-60692716341C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8895B8DC-1FBE-43A8-8E73-030F4816F852} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {99FCC266-79D8-4B7C-AB56-AF04BAC2CE35} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A5AB1565-0118-47F2-BD43-FA36B97440B8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8E05137-F523-4FFF-B41F-6CCC4A57A841} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439384 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5AFA35B-33C8-4D32-A3E4-7BCED9F1D82C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8136B8D-0B7C-4C6F-BA29-7B414097DF9D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB29470D-25B4-4D4F-A02F-3984F528BC5D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CB7E733E-5829-402D-9E76-2C27D91CFE5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E25CA9FA-4BF1-4431-A332-D59E95D004B3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E66ABC8E-F6E4-403E-A4AB-332D7AE6D6F8} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-530 Series Update {EC013F63-4B2E-45D1-A0FA-622FD28835C3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE:/EXE:{EC013F63-4B2E-45D1-A0FA-622FD28835C3} /F:UpdateWORKGROUP\LAPTOP-P1FFAKSV$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{38d6dde3-b806-4769-a7ad-b2851a397c89}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-3094376551-586335632-2217792166-1001 -> hxxp://www.google.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Laurent & Marie-Anne\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-23]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://www.google.fr/"
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Laurent & Marie-Anne\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-19]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: b63pj6vt.default
FF ProfilePath: C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default [2021-09-23]
FF Homepage: Mozilla\Firefox\Profiles\b63pj6vt.default -> hxxps://www.google.fr/
FF Extension: (Français Language Pack) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-09-10]
FF Extension: (Mozilla Partner Defaults) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\partnerdefaults@mozilla.com [2018-08-22] []
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-09-15]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-03]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-10-02] [] [non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3094376551-586335632-2217792166-1001: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Users\Laurent & Marie-Anne\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-06-04] (Chromium.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3094376551-586335632-2217792166-1001: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Users\Laurent & Marie-Anne\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-06-04] (Chromium.) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default [2021-08-19]
CHR Notifications: Default -> hxxps://www.marmiton.org
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-29]
CHR Extension: (Docs) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-29]
CHR Extension: (Google Drive) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (YouTube) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-29]
CHR Extension: (Sheets) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-26]
CHR Extension: (Gmail) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-19]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [347024 2017-06-01] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-09-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [22320 2018-03-09] (Acer Incorporated -> Acer Incorporated)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl065572e6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C100B01F-D3A8-485A-96DC-9EB039C8C349}\MpKslDrv.sys [130296 2021-09-23] (Microsoft Windows -> Microsoft Corporation)
S3 OV550I; C:\WINDOWS\System32\Drivers\ov550ivx.sys [196992 2008-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Omnivision Technologies, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [16688 2018-03-09] (Acer Incorporated -> Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 12:05 - 2021-09-23 12:05 - 000025266 _____ C:\Users\Laurent & Marie-Anne\Desktop\FRST.txt
2021-09-23 12:05 - 2021-09-23 12:05 - 000000000 ____D C:\FRST
2021-09-23 12:03 - 2021-09-23 12:03 - 002304512 _____ (Farbar) C:\Users\Laurent & Marie-Anne\Desktop\FRST64.exe
2021-09-18 17:38 - 2021-09-18 17:38 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-18 17:38 - 2021-09-18 17:38 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-18 17:38 - 2021-09-18 17:38 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-18 17:38 - 2021-09-18 17:38 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-18 17:38 - 2021-09-18 17:38 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-18 17:38 - 2021-09-18 17:38 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-18 17:37 - 2021-09-18 17:37 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-18 17:37 - 2021-09-18 17:37 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-18 17:37 - 2021-09-18 17:37 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-18 17:37 - 2021-09-18 17:37 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-18 17:37 - 2021-09-18 17:37 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-18 17:37 - 2021-09-18 17:37 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-18 17:37 - 2021-09-18 17:37 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-18 17:28 - 2021-09-18 17:28 - 000000000 ___HD C:\$WinREAgent
2021-09-10 17:33 - 2021-09-10 17:33 - 000162867 _____ C:\Users\Laurent & Marie-Anne\Desktop\OSCDR SPORTS 2mes document.pdf
2021-09-10 09:38 - 2021-09-10 09:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-10 09:30 - 2021-09-11 17:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-09 15:14 - 2021-09-09 15:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 12:04 - 2018-08-22 16:05 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\LocalLow\Mozilla
2021-09-23 12:00 - 2020-06-25 18:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-23 12:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-23 11:23 - 2019-02-06 19:19 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-23 11:19 - 2018-10-29 12:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-23 11:16 - 2020-06-25 18:31 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-23 11:16 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-23 11:16 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-23 11:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-23 11:14 - 2020-06-25 18:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2021-09-23 11:12 - 2020-06-25 18:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-23 11:12 - 2020-06-25 18:26 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-23 11:12 - 2019-12-14 13:47 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-23 11:12 - 2018-08-22 00:48 - 000000000 __SHD C:\Users\Laurent & Marie-Anne\IntelGraphicsProfiles
2021-09-23 11:12 - 2018-06-28 02:19 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-23 00:14 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-22 23:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-22 23:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-20 09:35 - 2020-06-25 18:26 - 000520368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-20 09:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-20 09:30 - 2018-08-22 16:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-09-18 17:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-18 17:30 - 2020-09-04 17:32 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-18 17:27 - 2018-08-22 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-18 17:26 - 2018-08-22 16:57 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 18:36 - 2020-06-25 18:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-15 18:36 - 2018-08-22 17:27 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-13 20:58 - 2021-06-19 10:56 - 000000000 ____D C:\Program Files (x86)\SSC Service Utility
2021-09-11 17:47 - 2018-06-28 02:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-10 11:15 - 2021-02-22 18:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-10 09:38 - 2018-06-28 02:30 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-09 15:40 - 2020-09-18 21:19 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-09-09 15:09 - 2018-09-28 09:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-03 17:14 - 2018-09-20 14:34 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\Local\ElevatedDiagnostics
2021-09-01 07:49 - 2018-09-28 11:31 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-25 17:52 - 2018-08-22 00:48 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers ========
2020-06-12 18:24 - 2020-06-12 18:24 - 000000073 _____ () C:\Users\Laurent & Marie-Anne\AppData\Roaming\WB.CFG
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Laurent & Marie-Anne (administrateur) sur PC-PORTABLE-LAU (Acer Aspire A517-51G) (23-09-2021 12:05:08)
Exécuté depuis C:\Users\Laurent & Marie-Anne\Desktop
Profils chargés: Laurent & Marie-Anne
Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHeciSvc.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [ReminderApp_EEAC3053-7055-4143-B8A0-306758055099] => C:\Program Files (x86)\Nova Development\Print Artist Platinum 25\ReminderApp.exe [146080 2013-07-31] (Nova Development (Avanquest North America Inc.) -> )
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SSC Service Utility] => C:\Program Files (x86)\SSC Service Utility\ssc_serv.exe [665600 2007-10-09] (SSC Localization Group) [Fichier non signé]
HKU\S-1-5-21-3094376551-586335632-2217792166-1001\...\MountPoints2: {83c72ace-e2d5-11ea-833c-505bc28e636e} - "F:\AutoRun.exe"
HKLM\...\Print\Monitors\EPSON XP-530 Series 64MonitorBE: C:\Windows\system32\E_YLMBPME.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\Windows\system32\hpinkstsB111LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 5520 series): C:\Windows\system32\HPDiscoPMB111.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-18] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {08C5220B-8DE7-470A-9E42-8E4462B2BAE9} - System32\Tasks\EPSON XP-530 Series Update {EC013F63-4B2E-45D1-A0FA-622FD28835C3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {0AAE4462-D867-4805-B513-F33AF6D2871C} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)
Task: {0E53B595-93F9-4EE9-8FFA-3A60160E01CD} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {199E4333-F0ED-4295-B663-D3E0BB764CAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.)
Task: {1C0D041B-8C9D-469A-B9D7-2C445DCD4B48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20DE23E5-C610-4338-A79F-B8D02A93A29E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CE70A0E-6E54-4376-A220-69A610B48F15} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35BA1000-35A9-41E1-9C4D-787B697680EF} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {3A9A4786-274B-4AE5-A761-97C97205A66B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439384 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D5E20D9-B061-4A8A-A737-E692E52D5B99} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {3EE481F4-CF03-4AD7-8E2B-75E0FE4AEBF3} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {429A7510-80DC-4EB8-815A-4F3BB29EC9A7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {45E25573-D06C-4509-AF97-66DD3F8AA0A7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680888 2021-09-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {48837A60-3B48-4ED2-A6A3-07100C234B27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4DA339D7-5B0C-4421-A06A-FFBD2C506123} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {59E45DE6-871B-486C-8212-777A0155EFF7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5FA97B42-250C-4C3E-83E0-AC9098F99B9E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6376FAC6-3462-4C1A-8412-04A768CBCC9F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {652C68F6-AAD3-44BB-9FA9-F1F81493CC4D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1155480 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ADCB633-AC26-4841-A37D-5E9787E55CB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.)
Task: {7A594A25-C7FF-4907-89E9-60692716341C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8895B8DC-1FBE-43A8-8E73-030F4816F852} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {99FCC266-79D8-4B7C-AB56-AF04BAC2CE35} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A5AB1565-0118-47F2-BD43-FA36B97440B8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A8E05137-F523-4FFF-B41F-6CCC4A57A841} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [5439384 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5AFA35B-33C8-4D32-A3E4-7BCED9F1D82C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8136B8D-0B7C-4C6F-BA29-7B414097DF9D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB29470D-25B4-4D4F-A02F-3984F528BC5D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CB7E733E-5829-402D-9E76-2C27D91CFE5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E25CA9FA-4BF1-4431-A332-D59E95D004B3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E66ABC8E-F6E4-403E-A4AB-332D7AE6D6F8} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-530 Series Update {EC013F63-4B2E-45D1-A0FA-622FD28835C3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE:/EXE:{EC013F63-4B2E-45D1-A0FA-622FD28835C3} /F:UpdateWORKGROUP\LAPTOP-P1FFAKSV$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{38d6dde3-b806-4769-a7ad-b2851a397c89}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge HomeButtonPage: HKU\S-1-5-21-3094376551-586335632-2217792166-1001 -> hxxp://www.google.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Laurent & Marie-Anne\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-23]
Edge HomePage: Default -> hxxp://www.google.com
Edge StartupUrls: Default -> "hxxp://www.google.fr/"
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Laurent & Marie-Anne\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-09-19]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: b63pj6vt.default
FF ProfilePath: C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default [2021-09-23]
FF Homepage: Mozilla\Firefox\Profiles\b63pj6vt.default -> hxxps://www.google.fr/
FF Extension: (Français Language Pack) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-09-10]
FF Extension: (Mozilla Partner Defaults) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\partnerdefaults@mozilla.com [2018-08-22] []
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-09-15]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Laurent & Marie-Anne\AppData\Roaming\Mozilla\Firefox\Profiles\b63pj6vt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-03]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-10-02] [] [non signé]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3094376551-586335632-2217792166-1001: @chbrowserupdate.com/Chromium Update;version=3 -> C:\Users\Laurent & Marie-Anne\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-06-04] (Chromium.) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3094376551-586335632-2217792166-1001: @chbrowserupdate.com/Chromium Update;version=9 -> C:\Users\Laurent & Marie-Anne\AppData\Local\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2020-06-04] (Chromium.) [Fichier non signé]
Chrome:
=======
CHR Profile: C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default [2021-08-19]
CHR Notifications: Default -> hxxps://www.marmiton.org
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-29]
CHR Extension: (Docs) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-29]
CHR Extension: (Google Drive) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (YouTube) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-29]
CHR Extension: (Sheets) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-26]
CHR Extension: (Gmail) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\Laurent & Marie-Anne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-19]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [347024 2017-06-01] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-09-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [22320 2018-03-09] (Acer Incorporated -> Acer Incorporated)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-08-19] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl065572e6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C100B01F-D3A8-485A-96DC-9EB039C8C349}\MpKslDrv.sys [130296 2021-09-23] (Microsoft Windows -> Microsoft Corporation)
S3 OV550I; C:\WINDOWS\System32\Drivers\ov550ivx.sys [196992 2008-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Omnivision Technologies, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [16688 2018-03-09] (Acer Incorporated -> Acer Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 12:05 - 2021-09-23 12:05 - 000025266 _____ C:\Users\Laurent & Marie-Anne\Desktop\FRST.txt
2021-09-23 12:05 - 2021-09-23 12:05 - 000000000 ____D C:\FRST
2021-09-23 12:03 - 2021-09-23 12:03 - 002304512 _____ (Farbar) C:\Users\Laurent & Marie-Anne\Desktop\FRST64.exe
2021-09-18 17:38 - 2021-09-18 17:38 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-18 17:38 - 2021-09-18 17:38 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-18 17:38 - 2021-09-18 17:38 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-18 17:38 - 2021-09-18 17:38 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-18 17:38 - 2021-09-18 17:38 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-18 17:38 - 2021-09-18 17:38 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-18 17:37 - 2021-09-18 17:37 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-18 17:37 - 2021-09-18 17:37 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-18 17:37 - 2021-09-18 17:37 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-18 17:37 - 2021-09-18 17:37 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-18 17:37 - 2021-09-18 17:37 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-18 17:37 - 2021-09-18 17:37 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-18 17:37 - 2021-09-18 17:37 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-18 17:37 - 2021-09-18 17:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-18 17:37 - 2021-09-18 17:37 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-18 17:28 - 2021-09-18 17:28 - 000000000 ___HD C:\$WinREAgent
2021-09-10 17:33 - 2021-09-10 17:33 - 000162867 _____ C:\Users\Laurent & Marie-Anne\Desktop\OSCDR SPORTS 2mes document.pdf
2021-09-10 09:38 - 2021-09-10 09:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-09-10 09:30 - 2021-09-11 17:47 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-09-09 15:14 - 2021-09-09 15:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 12:04 - 2018-08-22 16:05 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\LocalLow\Mozilla
2021-09-23 12:00 - 2020-06-25 18:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-23 12:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-23 11:23 - 2019-02-06 19:19 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-23 11:19 - 2018-10-29 12:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-23 11:16 - 2020-06-25 18:31 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-23 11:16 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-23 11:16 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-23 11:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-23 11:14 - 2020-06-25 18:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2021-09-23 11:12 - 2020-06-25 18:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-23 11:12 - 2020-06-25 18:26 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-23 11:12 - 2019-12-14 13:47 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-09-23 11:12 - 2018-08-22 00:48 - 000000000 __SHD C:\Users\Laurent & Marie-Anne\IntelGraphicsProfiles
2021-09-23 11:12 - 2018-06-28 02:19 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-23 00:14 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-09-22 23:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-22 23:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-20 09:35 - 2020-06-25 18:26 - 000520368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-20 09:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-20 09:34 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-20 09:30 - 2018-08-22 16:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-09-18 17:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-18 17:30 - 2020-09-04 17:32 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-18 17:27 - 2018-08-22 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-18 17:26 - 2018-08-22 16:57 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 18:36 - 2020-06-25 18:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-09-15 18:36 - 2018-08-22 17:27 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-09-13 20:58 - 2021-06-19 10:56 - 000000000 ____D C:\Program Files (x86)\SSC Service Utility
2021-09-11 17:47 - 2018-06-28 02:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-09-10 11:15 - 2021-02-22 18:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-10 09:38 - 2018-06-28 02:30 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-09-09 15:40 - 2020-09-18 21:19 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-09-09 15:09 - 2018-09-28 09:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-03 17:14 - 2018-09-20 14:34 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\Local\ElevatedDiagnostics
2021-09-01 07:49 - 2018-09-28 11:31 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-08-25 17:52 - 2018-08-22 00:48 - 000000000 ____D C:\Users\Laurent & Marie-Anne\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers ========
2020-06-12 18:24 - 2020-06-12 18:24 - 000000073 _____ () C:\Users\Laurent & Marie-Anne\AppData\Roaming\WB.CFG
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================