Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Exécuté par paul (administrateur) sur PAUL-HP (HP HP ProBook 470 G3) (18-01-2022 19:10:53)
Exécuté depuis C:\Users\paul\Desktop
Profils chargés: paul
Plate-forme: Microsoft Windows 7 Professionnel Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Recovery\ElevationService.exe
() [Fichier non signé] C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Windows\CxSvc\CxMonSvc.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(Conexant Systems, Inc. -> Conexant) C:\Windows\System32\MicTray64.exe
(Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUSrv2.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\ScanToPCActivationApp.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\HPNetworkCommunicatorCom.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(Hewlett-Packard -> HP) C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avp.exe.76742e2a-1352-4c24-b584-404468348f54_2553_4126.removeOnNextReboot.34902215-5c0f-4c2d-8646-002f6205edf5.locked
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\temporaryFolder\updates\bin\kav21\mr3\21.3.10.391_kis_c\avpui.exe.76742e2a-1352-4c24-b584-404468348f54_2553_4126.removeOnNextReboot.4ec055d3-03cd-4cc6-bf02-5201705a2846.locked
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\lpksetup.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Intel(R) WiDi Receiver Updater] => C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe [89600 2015-10-27] () [Fichier non signé]
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-08-18] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-09] (Hewlett-Packard -> Hewlett-Packard Company)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Discover HP Touchpoint Manager] => C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe [426208 2015-10-23] (Hewlett-Packard -> HP)
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\Run: [HP OfficeJet Pro 6970 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\Run: [HP OfficeJet Pro 8720 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31046640 2020-09-21] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: G - »ªÎªÊÖ»úÖúÊÖ°²×°Ïòµ¼.exe
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: {07aed13d-2730-11e8-82b2-705a0f24022a} - »ªÎªÊÖ»úÖúÊÖ°²×°Ïòµ¼.exe
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: {07aed156-2730-11e8-82b2-705a0f24022a} - »ªÎªÊÖ»úÖúÊÖ°²×°Ïòµ¼.exe
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: {8336b7df-19fe-11e9-9a9e-705a0f24022a} - »ªÎªÊÖ»úÖúÊÖ°²×°Ïòµ¼.exe
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: {849c2e56-ffbc-11e6-a3c7-00dbdf4908b7} - H:\SETUP.EXE
HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\...\MountPoints2: {8bdae0a7-3618-11e9-8228-705a0f24022a} - »ªÎªÊÖ»úÖúÊÖ°²×°Ïòµ¼.exe
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP 0C54 Status Monitor: C:\windows\system32\hpinksts0C54LM.dll [393320 2017-05-26] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP 7B12 Status Monitor: C:\windows\system32\hpinksts7B12LM.dll [393320 2017-05-30] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP OfficeJet Pro 6970): C:\windows\system32\HPDiscoPM0C54.dll [841352 2018-04-06] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP OfficeJet Pro 8720): C:\windows\system32\HPDiscoPM7B12.dll [841352 2018-04-06] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\windows\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-06] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {020D8B57-BA0D-478C-94A7-4124D322E051} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2758232 2017-05-14] (Conexant Systems, Inc. -> Conexant)
Task: {097A4C01-A6CA-4959-88A7-72D0A54C4917} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {12EF97F1-70DB-47A6-9FC2-095742A2D1D9} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-18] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {15454F17-2AF5-4B8F-8057-899DE1FCF5D5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Pas de fichier)
Task: {53D0DF70-9049-460A-94FA-7BC0DC54DA35} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe HandleServiceControlManagerEvent 7000 (Pas de fichier)
Task: {5B967E45-CB94-4FC3-A7C6-D872C9027B74} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe /SetSchedule true (Pas de fichier)
Task: {5D62DBEC-8A28-4280-8FE7-2B1244CF1E7B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [664920 2020-06-29] (HP Inc. -> HP Inc.)
Task: {69E10DCA-EEE8-46F3-942E-72AEA8F3230C} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-18] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {7DD902F7-B9F3-4605-B826-077CDDBA299F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {A03721AC-B3DB-4FA2-8C7B-342D9A7EF1FE} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {A6BE8AA8-E5B7-4671-897C-463EA09259B6} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [430120 2015-12-21] (Hewlett-Packard -> HP)
Task: {A736956F-4A00-4A32-A865-FE8AD7A6E485} - System32\Tasks\Microsoft\Windows\Conexant\SA3 => C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SACpl.exe [1832280 2016-10-06] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {AF1FFBDA-8B7A-4BDF-BA6C-56F95E9BC167} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe (Pas de fichier)
Task: {B5895644-E44B-451F-B03B-B40C431EBEEA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [106376 2016-07-04] (Hewlett-Packard Company -> HP Inc.)
Task: {B9A0D062-70BA-42B4-A17B-22302F5B54E0} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-09-21] (Garmin International, Inc. -> )
Task: {C31467C3-BA2E-4A19-BBC8-5E463DC55E4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.)
Task: {D833C082-9A41-4B3B-81D5-E525AE065DDC} - System32\Tasks\HPCustPartic.exe_{AC480745-60BB-42EB-BC23-8C362A781A0B} => C:\Program Files\HP\HP OfficeJet Pro 6970\Bin\HPCustPartic.exe /installoptin 1541423896 /installreport yes (Pas de fichier)
Task: {DBC1784D-B7B5-4885-B381-E0C28F20E4EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Pas de fichier)
Task: {EE063710-57D2-40E4-999E-A5F174C91431} - System32\Tasks\Avira_Security_Update => C:\windows\system32\net.exe [55808 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Task: {F9740B72-D6A0-4626-8610-88683D04934E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-27] (Google Inc -> Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{822F983F-5850-44AA-8B1D-E6E2445C9E6F}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{C0E74D91-6D7C-426C-9FFA-5E081AC2C128}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\paul\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-16]
Edge HKU\S-1-5-21-1989137017-2473267434-3677606053-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF ProfilePath: C:\Users\paul\AppData\Roaming\Mozilla\Firefox\Profiles\NfQ4VOlh.default [2022-01-18]
FF Extension: (Avira Browser Safety) - C:\Users\paul\AppData\Roaming\Mozilla\Firefox\Profiles\NfQ4VOlh.default\Extensions\abs@avira.com [2016-09-12] []
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome
FF Extension: (HP Client Security Manager) - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2016-03-22] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Chrome:
=======
CHR Profile: C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default [2022-01-18]
CHR Extension: (Google Traduction) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-18]
CHR Extension: (Slides) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Docs) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-27]
CHR Extension: (Adobe Acrobat) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-16]
CHR Extension: (Sheets) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-16]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-01-16]
CHR Extension: (HP Client Security Manager) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2016-09-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-10]
CHR Extension: (Gmail) - C:\Users\paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-31]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2015-09-28]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-01-10] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2022-01-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S4 clr_optimization_v2.0.50727_64; C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [158912 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
S4 DpHost; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [502232 2015-09-28] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 ElevationService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\Addins\Recovery\ElevationService.exe [913408 2021-06-04] () [Fichier non signé]
R2 HP Hotkey Service; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [781864 2015-12-21] (Hewlett-Packard -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29760 2016-07-04] (Hewlett-Packard Company -> HP Inc.)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [149608 2015-06-06] (Intel Corporation - pGFX -> Intel Corporation)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-18] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [395744 2015-01-14] (Intel(R) Wireless Display -> Intel)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [375440 2021-12-02] (AO Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2022-01-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 UIUService2; C:\windows\SysWOW64\UIUSrv2.exe [108544 2017-07-27] (Conexant Systems, Inc.) [Fichier non signé]
R2 valWBFPolicyService; C:\windows\system32\valWBFPolicyService.exe [76296 2015-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-12-04] (Microsoft Windows -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-07-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 DFWSIDService; C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidService.exe [X]
S3 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 btmaudio; C:\windows\System32\drivers\btmaud.sys [87864 2014-11-05] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmaux; C:\windows\System32\DRIVERS\btmaux.sys [141800 2015-04-01] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [1448248 2015-01-13] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
S3 btmlehid; C:\windows\system32\drivers\btmlehid.sys [83768 2014-11-05] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R0 cm_km; C:\windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S1 klbackupdisk; C:\windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S1 klbackupflt; C:\windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klflt; C:\windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\windows\System32\DRIVERS\klgse.sys [657176 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\windows\System32\DRIVERS\klhk.sys [1400584 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klkbdflt; C:\windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klmouflt; C:\windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\windows\System32\DRIVERS\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
U0 klupd_klif_arkmon; C:\windows\System32\Drivers\klupd_klif_arkmon.sys [256280 2022-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_arkmon_2EA98FCA; C:\ProgramData\Kaspersky Lab\AVP21.3\Temp\2EA98FCAA437EFF640B2F29A7F3E76CF\klupd_klif_arkmon.sys [256280 2022-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_klark; C:\windows\System32\Drivers\klupd_klif_klark.sys [284432 2022-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U0 klupd_klif_klbg; C:\windows\System32\Drivers\klupd_klif_klbg.sys [106224 2022-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
U3 klupd_klif_mark; C:\windows\System32\Drivers\klupd_klif_mark.sys [217352 2022-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 phantomtap; C:\windows\System32\DRIVERS\phantomtap.sys [35664 2019-11-04] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [2596448 2015-10-26] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R3 usb3Hub; C:\windows\System32\DRIVERS\usb3Hub.sys [212056 2015-01-14] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 hidemi; \SystemRoot\system32\drivers\hidemi.sys [X]
R4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
S3 mchpemi; \SystemRoot\system32\drivers\mchpemi.sys [X]
S3 MpKsle6e239b3; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7CAF3259-E4FE-48CD-A9F8-FE0E92D469F8}\MpKslDrv.sys [X]
S2 npf; \??\C:\windows\system32\drivers\npf.sys [X]
S3 SmbDrv; \SystemRoot\system32\drivers\Smb_driver_AMDASF.sys [X]
S3 SmbDrvI; \SystemRoot\system32\drivers\Smb_driver_Intel.sys [X]
S3 SynRMIHID; \SystemRoot\system32\drivers\SynRMIHID.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-18 19:10 - 2022-01-18 19:13 - 000031393 _____ C:\Users\paul\Desktop\FRST.txt
2022-01-18 19:08 - 2022-01-18 19:08 - 000454772 _____ C:\Users\paul\Desktop\ZHPDiag.html
2022-01-18 19:08 - 2022-01-18 19:08 - 000377468 _____ C:\Users\paul\Desktop\ZHPDiag.txt
2022-01-18 18:51 - 2022-01-18 18:51 - 000008537 _____ C:\Users\paul\Desktop\ZHPCleaner (S).html
2022-01-18 18:51 - 2022-01-18 18:51 - 000002331 _____ C:\Users\paul\Desktop\ZHPCleaner (S).txt
2022-01-18 18:39 - 2022-01-18 18:39 - 003292824 _____ (Nicolas Coolman) C:\Users\paul\Desktop\ZHPCleaner.exe
2022-01-18 18:24 - 2022-01-18 18:24 - 000284432 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klupd_klif_klark.sys
2022-01-18 18:16 - 2022-01-18 18:16 - 000001161 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2022-01-18 18:15 - 2022-01-18 18:15 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab
2022-01-18 18:15 - 2022-01-18 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2022-01-18 18:14 - 2022-01-18 18:14 - 000256280 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klupd_klif_arkmon.sys
2022-01-18 18:14 - 2022-01-18 18:14 - 000217352 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klupd_klif_mark.sys
2022-01-18 18:14 - 2022-01-18 18:14 - 000106224 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klupd_klif_klbg.sys
2022-01-18 18:13 - 2022-01-18 18:13 - 000002110 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk
2022-01-18 18:13 - 2022-01-18 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud
2022-01-18 18:13 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\windows\system32\klfphc.dll
2022-01-18 18:12 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klif.sys
2022-01-18 18:12 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\windows\system32\Drivers\klflt.sys
2022-01-18 18:10 - 2022-01-18 18:10 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2022-01-18 17:23 - 2022-01-18 18:14 - 000000000 ____D C:\Program Files\Common Files\AV
2022-01-18 17:23 - 2022-01-18 17:23 - 000001095 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk
2022-01-18 17:23 - 2022-01-18 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN
2022-01-18 17:20 - 2022-01-18 18:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-01-18 17:20 - 2022-01-18 18:15 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2022-01-18 17:02 - 2022-01-18 17:03 - 000236676 _____ C:\windows\ntbtlog.txt
2022-01-18 16:14 - 2022-01-18 16:14 - 000000000 ____D C:\Users\paul\AppData\Local\CrashDumps
2022-01-18 16:11 - 2022-01-18 16:11 - 002769744 _____ (Kaspersky) C:\Users\paul\Downloads\ks4.021.3.10.391fr_24936.exe
2022-01-18 13:45 - 2022-01-18 19:12 - 000000000 ____D C:\FRST
2022-01-18 13:41 - 2022-01-18 13:41 - 002311680 _____ (Farbar) C:\Users\paul\Desktop\FRST64.exe
2022-01-18 13:27 - 2022-01-18 18:39 - 000000000 ____D C:\Users\paul\AppData\Local\ZHP
2022-01-18 13:27 - 2022-01-18 13:27 - 003479192 _____ (Nicolas Coolman) C:\Users\paul\Desktop\ZHPSuite.exe
2022-01-17 20:11 - 2022-01-17 20:11 - 000575824 _____ C:\Users\paul\Documents\reprolongation arrêt de travail.pdf
2022-01-17 15:47 - 2022-01-17 15:47 - 000000000 ____D C:\Users\paul\Downloads\WindowsDefenderRemoveScript
2022-01-17 15:46 - 2022-01-17 15:46 - 000020693 _____ C:\Users\paul\Downloads\WindowsDefenderRemoveScript.zip
2022-01-17 15:07 - 2022-01-17 15:07 - 000999437 _____ C:\Users\paul\Downloads\PowerRun.zip
2022-01-17 15:07 - 2022-01-17 15:07 - 000000000 ____D C:\Users\paul\Downloads\PowerRun
2022-01-16 16:00 - 2022-01-16 16:00 - 005170176 _____ C:\Users\paul\Downloads\WindowsDefender-1593.msi
2022-01-16 15:51 - 2022-01-16 15:54 - 000001718 _____ C:\Users\paul\Desktop\kprm-20220116155128.txt
2022-01-16 15:51 - 2022-01-16 15:51 - 000000000 ____D C:\KPRM
2022-01-16 15:27 - 2022-01-16 15:27 - 002910904 _____ (Malwarebytes) C:\Users\paul\Desktop\MBSetup (1).exe
2022-01-16 15:23 - 2022-01-16 15:24 - 000282720 _____ C:\windows\Minidump\011622-20155-01.dmp
2022-01-16 15:20 - 2022-01-16 15:21 - 000282720 _____ C:\windows\Minidump\011622-19718-01.dmp
2022-01-16 15:17 - 2022-01-16 15:18 - 002910904 _____ (Malwarebytes) C:\Users\paul\Downloads\MBSetup.exe
2022-01-16 12:53 - 2022-01-18 19:08 - 000000000 ____D C:\Users\paul\AppData\Roaming\ZHP
2022-01-16 12:20 - 2022-01-16 12:21 - 000000000 ____D C:\Users\paul\Documents\Côme - Milo
2022-01-16 12:19 - 2022-01-16 12:19 - 000001841 _____ C:\Users\paul\Desktop\Micoh - Raccourci.lnk
2022-01-16 12:16 - 2022-01-16 12:16 - 000002078 _____ C:\Users\paul\Desktop\photomontage - vidéo - Raccourci.lnk
2022-01-16 12:16 - 2022-01-16 12:16 - 000001898 _____ C:\Users\paul\Desktop\Sou des écoles - Raccourci.lnk
2022-01-16 12:09 - 2022-01-16 12:11 - 000000000 ____D C:\Users\paul\Documents\Services véto
2022-01-14 16:08 - 2022-01-14 16:09 - 004747232 _____ (Crystal Dew World ) C:\Users\paul\Downloads\CrystalDiskInfo8_13_3.exe
2022-01-13 19:10 - 2022-01-13 19:10 - 000017926 _____ C:\Users\paul\Downloads\LISTE FRUITS ET LEGUMES.xlsx
2022-01-13 19:10 - 2022-01-13 19:10 - 000017926 _____ C:\Users\paul\Downloads\LISTE FRUITS ET LEGUMES (1).xlsx
2022-01-10 20:36 - 2022-01-10 20:36 - 000000000 ____D C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PMU Poker
2022-01-10 13:17 - 2022-01-10 13:17 - 001288533 _____ C:\Users\paul\Downloads\5202605325.pdf
2022-01-10 12:03 - 2022-01-10 12:03 - 000401608 _____ C:\Users\paul\Documents\vente au déballage brioches.pdf
2022-01-10 11:33 - 2022-01-10 11:33 - 000581371 _____ C:\Users\paul\Documents\prolongation arrêt de travail.pdf
2022-01-05 19:25 - 2022-01-05 19:25 - 000025377 _____ C:\Users\paul\Downloads\2021_12_BP_decembre.pdf
2022-01-05 11:08 - 2022-01-05 11:11 - 000072486 _____ C:\Users\paul\Downloads\Relevé d'informations berlingo.pdf
2022-01-05 11:08 - 2022-01-05 11:09 - 000072377 _____ C:\Users\paul\Downloads\Relevé d'informations koleos.pdf
2022-01-03 11:31 - 2022-01-03 11:31 - 000606145 _____ C:\Users\paul\Documents\arrêt de travail (2).pdf
2021-12-30 17:20 - 2021-12-30 17:20 - 000072397 _____ C:\Users\paul\Downloads\amstrust_20210914004614140GNXXSDCFAEAU14064784 (1).pdf
2021-12-29 18:22 - 2021-12-29 18:22 - 000765444 _____ C:\Users\paul\Downloads\saeco-xelsis-sm758000-pianozwart.pdf
2021-12-23 19:11 - 2021-12-23 19:11 - 000319268 _____ C:\Users\paul\Downloads\ETICKETS.PDF
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-18 18:52 - 2016-09-27 21:26 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-18 18:20 - 2009-07-14 05:45 - 000035056 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-01-18 18:20 - 2009-07-14 05:45 - 000035056 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-01-18 18:13 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2022-01-18 18:09 - 2016-06-21 08:14 - 000000180 _____ C:\windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-01-18 18:09 - 2016-06-21 08:14 - 000000000 __SHD C:\Users\paul\IntelGraphicsProfiles
2022-01-18 18:08 - 2016-03-22 17:28 - 000000000 ____D C:\ProgramData\Synaptics
2022-01-18 18:08 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2022-01-18 17:41 - 2009-07-14 06:08 - 000032482 _____ C:\windows\Tasks\SCHEDLGU.TXT
2022-01-18 16:09 - 2015-12-08 20:45 - 000001912 _____ C:\windows\epplauncher.mif
2022-01-18 15:49 - 2018-10-20 20:40 - 000000000 ____D C:\Users\paul\AppData\Roaming\cef3-cache-3359
2022-01-18 15:49 - 2017-07-22 20:05 - 000000000 ____D C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2022-01-18 15:28 - 2017-09-21 22:05 - 000000000 ____D C:\Users\paul\AppData\Local\Apowersoft
2022-01-17 15:26 - 2020-10-09 14:16 - 000000000 ____D C:\Program Files (x86)\ZoomRooms
2022-01-17 15:24 - 2016-03-22 16:42 - 000749850 _____ C:\windows\system32\perfh00C.dat
2022-01-17 15:24 - 2016-03-22 16:42 - 000150598 _____ C:\windows\system32\perfc00C.dat
2022-01-17 15:24 - 2009-07-14 06:13 - 001674586 _____ C:\windows\system32\PerfStringBackup.INI
2022-01-17 14:58 - 2015-12-08 20:44 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2022-01-17 14:51 - 2016-06-21 08:15 - 000003928 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{3D348C08-C439-409E-B859-7BCEE452ACAF}
2022-01-16 15:23 - 2017-09-22 02:13 - 623549023 _____ C:\windows\MEMORY.DMP
2022-01-16 15:23 - 2017-09-22 02:13 - 000000000 ____D C:\windows\Minidump
2022-01-16 15:22 - 2020-10-09 14:16 - 000000716 __RSH C:\ProgramData\ntuser.pol
2022-01-16 15:18 - 2015-12-04 02:48 - 000000000 _RSHD C:\hp
2022-01-16 12:30 - 2021-07-28 10:24 - 000000000 ____D C:\Program Files (x86)\iMobie
2022-01-16 12:26 - 2019-09-23 15:44 - 000001041 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2022-01-16 12:26 - 2019-09-23 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-01-16 12:15 - 2021-10-20 13:32 - 000000000 ____D C:\Users\paul\Documents\Maison Maillat
2022-01-16 12:13 - 2016-07-07 15:18 - 000000000 ____D C:\Users\paul\Documents\AJ2
2022-01-16 12:11 - 2021-07-30 14:34 - 000000000 ____D C:\Users\paul\Documents\photomontage - vidéo
2022-01-16 12:10 - 2019-02-20 08:36 - 000000000 ____D C:\Users\paul\Documents\photo Nad
2022-01-16 12:05 - 2017-06-09 15:20 - 000000000 ____D C:\Users\paul\Documents\Micoh
2022-01-16 10:38 - 2016-06-21 10:32 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2022-01-16 10:37 - 2017-04-12 16:38 - 000002066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-10 20:36 - 2019-11-20 20:22 - 000001411 _____ C:\Users\paul\Desktop\PMU Poker.lnk
2022-01-10 20:36 - 2018-02-14 21:58 - 000001435 _____ C:\Users\paul\AppData\Roaming\Microsoft\Windows\Start Menu\PMU Poker.lnk
2021-12-28 19:40 - 2020-12-14 18:57 - 000000000 ____D C:\Users\paul\AppData\Local\babl-0.1
2021-12-23 21:17 - 2021-10-27 18:08 - 000000000 ____D C:\Users\paul\AppData\Roaming\Unibet Poker
2021-12-23 21:17 - 2021-10-27 17:34 - 000000867 _____ C:\Users\Public\Desktop\Unibet Poker.lnk
2021-12-23 21:17 - 2021-10-27 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unibet Poker
2021-12-23 21:17 - 2021-10-27 17:33 - 000000000 ____D C:\Program Files\Unibet Poker
==================== Fichiers à la racine de certains dossiers ========
2020-04-03 18:50 - 2020-04-04 10:13 - 001388448 _____ () C:\Users\Public\VOIP.dat
2020-04-03 12:12 - 2020-04-03 12:14 - 000007680 _____ () C:\Users\paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-12-12 10:48 - 2021-12-12 10:48 - 000000874 _____ () C:\Users\paul\AppData\Local\recently-used.xbel
2017-01-08 00:39 - 2017-01-08 08:28 - 000000000 _____ () C:\Users\paul\AppData\Local\{DC05C4E9-FEBB-406E-BD30-E0028928BDEA}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2022-01-17 14:47
==================== Fin de FRST.txt ========================