Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Exécuté par nicolehenri (administrateur) sur DESKTOP-LGDTLBP (LENOVO 7827AB2) (10-02-2022 18:05:24)
Exécuté depuis C:\Users\nicol\OneDrive\Desktop
Profils chargés: nicolehenri
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1466 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\Addins\Transfer\ElevationService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <23>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\nicol\OneDrive\Desktop\ZHPSuite.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\WsidService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [146600 2015-07-28] (Synaptics Incorporated -> Synaptics)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12632168 2011-07-19] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe (Pas de fichier)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AirBackupHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe (Pas de fichier)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-11-20] (Lavasoft Software Canada Inc. -> Lavasoft)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1915712 2020-09-09] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [utweb] => C:\Users\nicol\AppData\Roaming\uTorrent Web\utweb.exe [5944864 2021-11-30] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-10] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-11-20]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {233555A4-19C1-439C-B98B-56ED3D2EF4EC} - System32\Tasks\CCleanerSkipUAC - nicolehenri => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {320A122C-9EBC-4C0A-B6B3-CC14FC75D46F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3345DD56-6311-42F8-B154-00A15C9B9850} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3838176D-065F-48BD-9B67-7D0720182E9B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
Task: {602EB704-A486-4537-9F01-F0B010F4F77B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {87762E44-5642-418D-81B5-AE71B07C2199} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {A42DD500-A08E-4B7F-BCDF-B4C872AD388F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {ACE848F8-E803-4619-8DA6-C1940E3F9D66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C19949BA-DB7F-4F2C-B486-51331BE3A08A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {CA88DEE1-5D5B-4D1C-AD3E-D20289910FB9} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
Task: {D85F2B31-1AAB-4CEF-9891-E540328DA4BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DD274B4B-74CA-43E1-B128-7A79A6A3AD38} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E8FAC5A9-3BCB-4DE1-992F-2893CBA69B6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {E967E2D6-121B-40A9-9061-31250C6A7265} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fb1f8592-5061-4407-ab4a-0494011e912f}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-07]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 3bq0qpda.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\3bq0qpda.default [2021-11-20]
FF Homepage: Mozilla\Firefox\Profiles\3bq0qpda.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release [2022-02-10]
FF Homepage: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF NewTab: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF Session Restore: Mozilla\Firefox\Profiles\f0are5tr.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mail.google.com; hxxps://www.gametwist.com; hxxps://calendar.google.com; hxxps://www.youtube.com; hxxps://fr.aliexpress.com
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\firefox@ghostery.com.xpi [2021-10-21]
FF Extension: (LastPass: Free Password Manager) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\support@lastpass.com.xpi [2022-01-31]
FF Extension: (uBlock Origin) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-01-13]
FF Extension: (Ouvre Gmail dans un nouvel onglet) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{07abc6fc-2c64-4c13-b9aa-73325b0b1163}.xpi [2021-10-21]
FF Extension: (Boomerang for Gmail) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi [2022-02-02] [UpdateUrl:hxxps://www.boomeranggmail.com/firefox/updates.json]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-23]
FF Extension: (Wind Blocker) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{f86474db-5ef3-482a-b4d9-d8a33ea752e4}.xpi [2021-10-21]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default [2022-02-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-29]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-11-20] (Lavasoft Software Canada Inc. -> )
R2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [1051648 2021-12-09] (wondershare) [Fichier non signé]
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [438592 2020-09-09] (Digital Wave Ltd -> Digital Wave Ltd)
R2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Transfer\ElevationService.exe [913408 2021-12-14] () [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-11-20] (Lavasoft Software Canada Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-12-09] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-11-20] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ecnssndis; C:\WINDOWS\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB -> Ericsson AB)
S3 ecnssndisfltr; C:\WINDOWS\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB -> Ericsson AB)
S3 l36wgps; C:\WINDOWS\System32\drivers\l36wgps64.sys [101416 2011-07-01] (Ericsson AB -> Ericsson AB)
S3 Mbm3CBus; C:\WINDOWS\System32\drivers\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation -> MCCI Corporation)
S3 Mbm3DevMt; C:\WINDOWS\System32\drivers\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation -> MCCI Corporation)
S3 qcfilterlno2k; C:\WINDOWS\System32\drivers\qcfilterlno2k.sys [6400 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbserlno2k; C:\WINDOWS\System32\drivers\qcusbserlno2k.sys [231040 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R2 rimmptsk; C:\WINDOWS\System32\drivers\rimmpx64.sys [67072 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimspci; C:\WINDOWS\System32\drivers\rimspe64.sys [61952 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimsptsk; C:\WINDOWS\System32\drivers\rimspx64.sys [54784 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rismxdp; C:\WINDOWS\System32\drivers\rixdpx64.sys [57856 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rixdpcie; C:\WINDOWS\System32\drivers\rixdpe64.sys [55808 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [87168 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 18:03 - 2022-02-10 18:08 - 000000000 ____D C:\FRST
2022-02-10 17:11 - 2022-02-10 17:54 - 000000000 ____D C:\Users\nicol\AppData\Roaming\ZHP
2022-02-10 17:11 - 2022-02-10 17:11 - 000000000 ____D C:\Users\nicol\AppData\Local\ZHP
2022-02-10 11:11 - 2022-02-10 11:11 - 000000000 ___HD C:\$WinREAgent
2022-02-10 08:03 - 2022-02-10 08:03 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2022-02-09 18:40 - 2022-02-09 18:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-09 08:31 - 2022-02-10 09:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-07 19:07 - 2022-02-07 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-02-07 19:05 - 2022-02-07 19:05 - 000000000 ____D C:\WINDOWS\PCHEALTH
2022-02-07 19:01 - 2022-02-07 19:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2022-02-07 18:59 - 2022-02-07 18:59 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-07 18:58 - 2022-02-07 19:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\WINDOWS\SHELLNEW
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\Users\nicol\AppData\Local\Microsoft Help
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2022-01-30 18:43 - 2022-02-06 18:43 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Usenet.nl
2022-01-30 18:43 - 2022-02-06 18:42 - 000000000 ____D C:\Users\nicol\OneDrive\Documents\Usenet.nl
2022-01-30 18:43 - 2022-01-30 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Usenet.nl
2022-01-30 18:43 - 2022-01-30 18:43 - 000000000 ____D C:\Program Files (x86)\Usenet.nl
2022-01-30 18:10 - 2022-01-30 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2022-01-30 18:09 - 2022-01-30 18:10 - 000000000 ____D C:\Program Files (x86)\7-Zip
2022-01-30 18:03 - 2022-01-30 18:03 - 000000000 ____D C:\Users\nicol\AppData\Roaming\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\Program Files\WinRAR
2022-01-30 12:50 - 2022-01-30 12:50 - 000000000 ____D C:\Users\nicol\AppData\Roaming\PowerArchiver 2021 (64-bit) (Non enregistrée)
2022-01-30 12:47 - 2022-01-30 12:47 - 000001852 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\PowerArchiver 2021.lnk
2022-01-30 12:47 - 2022-01-30 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerArchiver
2022-01-30 12:46 - 2022-01-30 12:47 - 000000000 ____D C:\Program Files\PowerArchiver
2022-01-23 10:47 - 2022-01-23 10:47 - 000000000 ____D C:\Users\nicol\AppData\Local\O&O_Software_GmbH
2022-01-22 19:49 - 2022-01-22 19:49 - 000000000 ____D C:\Users\nicol\AppData\Roaming\LibreOffice
2022-01-21 12:45 - 2022-01-21 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.2
2022-01-21 12:36 - 2022-01-21 12:42 - 000000000 ____D C:\Program Files\LibreOffice
2022-01-18 11:17 - 2022-02-09 18:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-01-15 11:55 - 2022-01-15 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2022-01-15 11:53 - 2022-01-15 11:55 - 000000000 ____D C:\Program Files\iTunes
2022-01-14 11:27 - 2022-01-14 11:27 - 000000000 ____D C:\Users\nicol\AppData\Local\Aiseesoft Studio
2022-01-14 11:25 - 2022-01-14 11:25 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2022-01-14 10:44 - 2022-01-14 10:44 - 000000000 ____D C:\Users\nicol\AppData\Local\Apple Inc
2022-01-14 10:43 - 2022-01-14 10:43 - 000000000 ____D C:\Users\nicol\AppData\Local\Apple Computer
2022-01-14 10:31 - 2022-01-14 10:31 - 000000000 ____D C:\ProgramData\Apple Computer
2022-01-14 09:36 - 2022-01-14 09:36 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 09:36 - 2022-01-14 09:36 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 09:36 - 2022-01-14 09:36 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-10 18:05 - 2021-12-14 10:18 - 000000000 ____D C:\Users\Administrateur.DESKTOP-LGDTLBP
2022-02-10 17:50 - 2021-10-21 18:37 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-10 17:48 - 2021-12-14 10:29 - 000000000 ____D C:\Program Files\CCleaner
2022-02-10 17:12 - 2021-10-21 07:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-10 17:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-10 16:59 - 2021-10-21 18:40 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-10 16:46 - 2021-10-21 11:43 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{49167EEA-6E7E-44EF-910C-D50E429F6C92}
2022-02-10 16:41 - 2021-10-21 09:13 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2022-02-10 16:35 - 2021-10-21 07:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-10 14:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-10 12:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-10 09:14 - 2021-10-21 09:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-10 09:14 - 2021-10-21 07:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-10 09:14 - 2021-10-21 07:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-10 09:13 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-10 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-10 08:46 - 2021-10-21 16:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 08:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-10 08:31 - 2021-10-21 16:36 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-09 18:39 - 2021-10-21 09:13 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-07 19:27 - 2021-10-21 07:50 - 000560984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-06 19:46 - 2021-12-29 18:16 - 000000000 ____D C:\Users\nicol\AppData\Roaming\uTorrent Web
2022-02-06 17:48 - 2021-12-14 10:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-06 11:55 - 2021-11-23 19:00 - 000000000 ____D C:\Users\nicol\AppData\Local\CrashDumps
2022-02-06 11:18 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-06 11:02 - 2021-11-21 18:45 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\IGDump
2022-02-06 07:10 - 2021-10-21 07:54 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-02 16:41 - 2021-12-21 17:24 - 000001345 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-02-02 16:41 - 2021-12-21 17:24 - 000000000 ___RD C:\Users\nicol\AppData\Local\PCHealthCheck
2022-01-30 19:10 - 2021-10-21 08:57 - 000000000 ____D C:\Users\nicol
2022-01-28 08:57 - 2021-10-21 07:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 08:57 - 2021-10-21 07:53 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-27 08:49 - 2021-12-12 20:38 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3363349640-3431665104-818008575-1001
2022-01-27 08:49 - 2021-10-21 09:11 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3363349640-3431665104-818008575-1001
2022-01-27 08:49 - 2021-10-21 08:57 - 000002417 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-21 17:45 - 2021-10-21 18:38 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 17:45 - 2021-10-21 18:38 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-16 19:17 - 2021-10-21 08:10 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-16 19:17 - 2019-12-07 15:50 - 000792972 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-16 19:17 - 2019-12-07 15:50 - 000150102 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-16 19:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-14 11:06 - 2021-12-18 11:31 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Apple Computer
2022-01-14 10:33 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par nicolehenri (administrateur) sur DESKTOP-LGDTLBP (LENOVO 7827AB2) (10-02-2022 18:05:24)
Exécuté depuis C:\Users\nicol\OneDrive\Desktop
Profils chargés: nicolehenri
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1466 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\Addins\Transfer\ElevationService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <23>
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\nicol\OneDrive\Desktop\ZHPSuite.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\WsidService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [146600 2015-07-28] (Synaptics Incorporated -> Synaptics)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12632168 2011-07-19] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe (Pas de fichier)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AirBackupHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AirBackupHelper.exe (Pas de fichier)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-11-20] (Lavasoft Software Canada Inc. -> Lavasoft)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1915712 2020-09-09] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-3363349640-3431665104-818008575-1001\...\Run: [utweb] => C:\Users\nicol\AppData\Roaming\uTorrent Web\utweb.exe [5944864 2021-11-30] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-10] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-11-20]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {233555A4-19C1-439C-B98B-56ED3D2EF4EC} - System32\Tasks\CCleanerSkipUAC - nicolehenri => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {320A122C-9EBC-4C0A-B6B3-CC14FC75D46F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3345DD56-6311-42F8-B154-00A15C9B9850} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3838176D-065F-48BD-9B67-7D0720182E9B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
Task: {602EB704-A486-4537-9F01-F0B010F4F77B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {87762E44-5642-418D-81B5-AE71B07C2199} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {A42DD500-A08E-4B7F-BCDF-B4C872AD388F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {ACE848F8-E803-4619-8DA6-C1940E3F9D66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C19949BA-DB7F-4F2C-B486-51331BE3A08A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {CA88DEE1-5D5B-4D1C-AD3E-D20289910FB9} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
Task: {D85F2B31-1AAB-4CEF-9891-E540328DA4BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DD274B4B-74CA-43E1-B128-7A79A6A3AD38} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E8FAC5A9-3BCB-4DE1-992F-2893CBA69B6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-21] (Google LLC -> Google LLC)
Task: {E967E2D6-121B-40A9-9061-31250C6A7265} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-20] (Corel Corporation -> Corel Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fb1f8592-5061-4407-ab4a-0494011e912f}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-07]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 3bq0qpda.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\3bq0qpda.default [2021-11-20]
FF Homepage: Mozilla\Firefox\Profiles\3bq0qpda.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release [2022-02-10]
FF Homepage: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF NewTab: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2021-11-20 05:52:32&bName=
FF Session Restore: Mozilla\Firefox\Profiles\f0are5tr.default-release -> est activé.
FF Notifications: Mozilla\Firefox\Profiles\f0are5tr.default-release -> hxxps://mail.google.com; hxxps://www.gametwist.com; hxxps://calendar.google.com; hxxps://www.youtube.com; hxxps://fr.aliexpress.com
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\firefox@ghostery.com.xpi [2021-10-21]
FF Extension: (LastPass: Free Password Manager) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\support@lastpass.com.xpi [2022-01-31]
FF Extension: (uBlock Origin) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-01-13]
FF Extension: (Ouvre Gmail dans un nouvel onglet) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{07abc6fc-2c64-4c13-b9aa-73325b0b1163}.xpi [2021-10-21]
FF Extension: (Boomerang for Gmail) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi [2022-02-02] [UpdateUrl:hxxps://www.boomeranggmail.com/firefox/updates.json]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-23]
FF Extension: (Wind Blocker) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\f0are5tr.default-release\Extensions\{f86474db-5ef3-482a-b4d9-d8a33ea752e4}.xpi [2021-10-21]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default [2022-02-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-29]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-11-20] (Lavasoft Software Canada Inc. -> )
R2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [1051648 2021-12-09] (wondershare) [Fichier non signé]
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [438592 2020-09-09] (Digital Wave Ltd -> Digital Wave Ltd)
R2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Transfer\ElevationService.exe [913408 2021-12-14] () [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-11-20] (Lavasoft Software Canada Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-12-09] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-11-20] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ecnssndis; C:\WINDOWS\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB -> Ericsson AB)
S3 ecnssndisfltr; C:\WINDOWS\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB -> Ericsson AB)
S3 l36wgps; C:\WINDOWS\System32\drivers\l36wgps64.sys [101416 2011-07-01] (Ericsson AB -> Ericsson AB)
S3 Mbm3CBus; C:\WINDOWS\System32\drivers\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation -> MCCI Corporation)
S3 Mbm3DevMt; C:\WINDOWS\System32\drivers\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation -> MCCI Corporation)
S3 qcfilterlno2k; C:\WINDOWS\System32\drivers\qcfilterlno2k.sys [6400 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbserlno2k; C:\WINDOWS\System32\drivers\qcusbserlno2k.sys [231040 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R2 rimmptsk; C:\WINDOWS\System32\drivers\rimmpx64.sys [67072 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimspci; C:\WINDOWS\System32\drivers\rimspe64.sys [61952 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimsptsk; C:\WINDOWS\System32\drivers\rimspx64.sys [54784 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rismxdp; C:\WINDOWS\System32\drivers\rixdpx64.sys [57856 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rixdpcie; C:\WINDOWS\System32\drivers\rixdpe64.sys [55808 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [87168 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 18:03 - 2022-02-10 18:08 - 000000000 ____D C:\FRST
2022-02-10 17:11 - 2022-02-10 17:54 - 000000000 ____D C:\Users\nicol\AppData\Roaming\ZHP
2022-02-10 17:11 - 2022-02-10 17:11 - 000000000 ____D C:\Users\nicol\AppData\Local\ZHP
2022-02-10 11:11 - 2022-02-10 11:11 - 000000000 ___HD C:\$WinREAgent
2022-02-10 08:03 - 2022-02-10 08:03 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2022-02-09 18:40 - 2022-02-09 18:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-09 08:31 - 2022-02-10 09:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-07 19:07 - 2022-02-07 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-02-07 19:05 - 2022-02-07 19:05 - 000000000 ____D C:\WINDOWS\PCHEALTH
2022-02-07 19:01 - 2022-02-07 19:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2022-02-07 18:59 - 2022-02-07 18:59 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-07 18:58 - 2022-02-07 19:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\WINDOWS\SHELLNEW
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\Users\nicol\AppData\Local\Microsoft Help
2022-02-07 18:58 - 2022-02-07 18:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2022-01-30 18:43 - 2022-02-06 18:43 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Usenet.nl
2022-01-30 18:43 - 2022-02-06 18:42 - 000000000 ____D C:\Users\nicol\OneDrive\Documents\Usenet.nl
2022-01-30 18:43 - 2022-01-30 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Usenet.nl
2022-01-30 18:43 - 2022-01-30 18:43 - 000000000 ____D C:\Program Files (x86)\Usenet.nl
2022-01-30 18:10 - 2022-01-30 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2022-01-30 18:09 - 2022-01-30 18:10 - 000000000 ____D C:\Program Files (x86)\7-Zip
2022-01-30 18:03 - 2022-01-30 18:03 - 000000000 ____D C:\Users\nicol\AppData\Roaming\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-01-30 18:02 - 2022-01-30 18:02 - 000000000 ____D C:\Program Files\WinRAR
2022-01-30 12:50 - 2022-01-30 12:50 - 000000000 ____D C:\Users\nicol\AppData\Roaming\PowerArchiver 2021 (64-bit) (Non enregistrée)
2022-01-30 12:47 - 2022-01-30 12:47 - 000001852 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\PowerArchiver 2021.lnk
2022-01-30 12:47 - 2022-01-30 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerArchiver
2022-01-30 12:46 - 2022-01-30 12:47 - 000000000 ____D C:\Program Files\PowerArchiver
2022-01-23 10:47 - 2022-01-23 10:47 - 000000000 ____D C:\Users\nicol\AppData\Local\O&O_Software_GmbH
2022-01-22 19:49 - 2022-01-22 19:49 - 000000000 ____D C:\Users\nicol\AppData\Roaming\LibreOffice
2022-01-21 12:45 - 2022-01-21 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.2
2022-01-21 12:36 - 2022-01-21 12:42 - 000000000 ____D C:\Program Files\LibreOffice
2022-01-18 11:17 - 2022-02-09 18:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-01-15 11:55 - 2022-01-15 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2022-01-15 11:53 - 2022-01-15 11:55 - 000000000 ____D C:\Program Files\iTunes
2022-01-14 11:27 - 2022-01-14 11:27 - 000000000 ____D C:\Users\nicol\AppData\Local\Aiseesoft Studio
2022-01-14 11:25 - 2022-01-14 11:25 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2022-01-14 10:44 - 2022-01-14 10:44 - 000000000 ____D C:\Users\nicol\AppData\Local\Apple Inc
2022-01-14 10:43 - 2022-01-14 10:43 - 000000000 ____D C:\Users\nicol\AppData\Local\Apple Computer
2022-01-14 10:31 - 2022-01-14 10:31 - 000000000 ____D C:\ProgramData\Apple Computer
2022-01-14 09:36 - 2022-01-14 09:36 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 09:36 - 2022-01-14 09:36 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 09:36 - 2022-01-14 09:36 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-10 18:05 - 2021-12-14 10:18 - 000000000 ____D C:\Users\Administrateur.DESKTOP-LGDTLBP
2022-02-10 17:50 - 2021-10-21 18:37 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-10 17:48 - 2021-12-14 10:29 - 000000000 ____D C:\Program Files\CCleaner
2022-02-10 17:12 - 2021-10-21 07:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-10 17:08 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-10 16:59 - 2021-10-21 18:40 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-10 16:46 - 2021-10-21 11:43 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{49167EEA-6E7E-44EF-910C-D50E429F6C92}
2022-02-10 16:41 - 2021-10-21 09:13 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2022-02-10 16:35 - 2021-10-21 07:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-10 14:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-10 12:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-10 09:14 - 2021-10-21 09:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-10 09:14 - 2021-10-21 07:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-10 09:14 - 2021-10-21 07:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-10 09:13 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-10 09:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-10 08:46 - 2021-10-21 16:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 08:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-10 08:31 - 2021-10-21 16:36 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-09 18:39 - 2021-10-21 09:13 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-07 19:27 - 2021-10-21 07:50 - 000560984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-06 19:46 - 2021-12-29 18:16 - 000000000 ____D C:\Users\nicol\AppData\Roaming\uTorrent Web
2022-02-06 17:48 - 2021-12-14 10:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-02-06 11:55 - 2021-11-23 19:00 - 000000000 ____D C:\Users\nicol\AppData\Local\CrashDumps
2022-02-06 11:18 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-06 11:02 - 2021-11-21 18:45 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\IGDump
2022-02-06 07:10 - 2021-10-21 07:54 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-02 16:41 - 2021-12-21 17:24 - 000001345 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-02-02 16:41 - 2021-12-21 17:24 - 000000000 ___RD C:\Users\nicol\AppData\Local\PCHealthCheck
2022-01-30 19:10 - 2021-10-21 08:57 - 000000000 ____D C:\Users\nicol
2022-01-28 08:57 - 2021-10-21 07:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 08:57 - 2021-10-21 07:53 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-27 08:49 - 2021-12-12 20:38 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3363349640-3431665104-818008575-1001
2022-01-27 08:49 - 2021-10-21 09:11 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3363349640-3431665104-818008575-1001
2022-01-27 08:49 - 2021-10-21 08:57 - 000002417 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-21 17:45 - 2021-10-21 18:38 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 17:45 - 2021-10-21 18:38 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-16 19:17 - 2021-10-21 08:10 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-16 19:17 - 2019-12-07 15:50 - 000792972 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-16 19:17 - 2019-12-07 15:50 - 000150102 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-16 19:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-14 11:06 - 2021-12-18 11:31 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Apple Computer
2022-01-14 10:33 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-14 10:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================