Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2022 01
Exécuté par Francois (administrateur) sur W10-64BITS (SAMSUNG ELECTRONICS CO., LTD. 305E4A/305E5A/305E7A) (20-02-2022 15:17:06)
Exécuté depuis C:\Users\Francois\Desktop
Profils chargés: Francois
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.526 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Areson Technology -> ) C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\LibreOffice\program\soffice.exe ->) (The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.bin
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.55\msedgewebview2.exe <6>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Comodo Security Solutions -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
(The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ACU] => C:\Program Files (x86)\Qualcomm Atheros\ACU.exe [474848 2012-09-04] (Qualcomm Atheros -> Atheros Communications, Inc.) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242200 2016-11-11] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [vdcss] => "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe" -tray (Pas de fichier)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [uni mouse driver] => C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe [1634296 2015-04-13] (Areson Technology -> )
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [MicrosoftEdgeAutoLaunch_2E1C6BA3FEEFBA11E62557B7744DDD87] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44416 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\PDF Architect 8 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.11.0.7.dll [960120 2021-11-13] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2021-12-31] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\PEPrinterMonitor.dll [285232 2021-04-06] (Wondershare Technology Co.,Ltd -> Wondershare Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\Francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LibreOffice 6.1.lnk [2019-03-31]
ShortcutTarget: LibreOffice 6.1.lnk -> C:\Program Files\LibreOffice\program\quickstart.exe (The Document Foundation -> The Document Foundation)
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {077874EF-5EF4-4D52-B2AA-C5C307BDE881} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {131C3EBF-DC71-46D6-BCCD-9BD5CAB45D1C} - \WPD\SqmUpload_S-1-5-21-3371830166-12627610-194444450-1001 -> Pas de fichier <==== ATTENTION
Task: {1653958B-8F91-42EE-BDB7-00A48C523D33} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {19077F43-8081-4AD4-8AFA-557C1F59227C} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2982184 2016-02-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {1A07993A-F3B0-4D5D-BD0A-C4FF129C828F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {1BAD8F04-EB0F-40B3-ADAB-D752690640E8} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {2BD0C163-8785-4F9A-8B30-288700DD03E2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {363FCF92-0501-4F31-9F75-E515016AAB83} - System32\Tasks\SWUpdateAgent => C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe [2883192 2012-11-09] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {3A0BAD1D-6123-4A97-995D-55544557DB1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {3F3399BD-FB2E-47CE-852F-C923D359EE22} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {45025DAE-23A1-4495-AFD4-57DDECF0CBFF} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {45B63F5B-2641-46D8-952B-35577C633847} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe $(Arg0) (Pas de fichier)
Task: {470E1174-CDBD-4991-A2D9-E7F06C4CC4C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {4851F53E-9950-47B6-9C50-03CA1430EAFE} - System32\Tasks\S-1-5-21-3371830166-12627610-194444450-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Pas de fichier)
Task: {5049A492-D850-47CC-9480-E88A60BAF571} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {550AD4A5-A06C-481B-9CD4-ECE97459DBAC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {57D22317-2E8C-4E70-A4A5-9A26B0978397} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC)
Task: {5A3B9C44-32A6-40E4-A228-C6CD9C4FB940} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {5AE4A512-1B3D-4983-ACCF-3E687B69A632} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {5BA52A01-6AC9-4D8E-8126-12A36EAD7369} - System32\Tasks\Norton Product InstallerIdle => C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp\SymInstallStub.exe /partnerid=symantec /productlist=nss /staging=false /delay=0 /launchedby=4 (Pas de fichier) <==== ATTENTION
Task: {6154E715-20DF-4026-8FC6-04EFA5C599F2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {771A6F0F-49D9-4A9D-9E36-4253B58D1B1C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {7B476671-D753-41E7-986A-AF12FF315322} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification => C:\Program Files\PDF Architect 8\architect-launcher.exe [1782320 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {7DB99552-0847-481E-8463-C702D4A00968} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {82BEE430-BB0C-4AB1-B18D-0F81C88CBB7B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {887CD3F1-863F-4EE7-9EA7-48487681103A} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification Logon => C:\Program Files\PDF Architect 8\architect-launcher.exe [1782320 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {93539189-4DFD-4915-9469-705F936F9907} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [4018056 2017-08-09] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {99573C38-E2A6-4A82-9847-5B3024E2E41C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {9E26C17E-EF57-40E4-AA60-8F2E6E74F308} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {A9574B3B-E280-461F-AF82-CDB7003192A5} - System32\Tasks\pdfforge GmbH\PDF Architect 8\Update => C:\Program Files\PDF Architect 8\architect.exe [3451952 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {B7B308A7-02DD-4D99-A9DE-68831B283129} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe $UAC (Pas de fichier)
Task: {B7B40907-038B-405F-922B-C6266E73A3A2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {BA150796-B57B-487D-B09B-A6A160C6BB65} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {BE4F99FE-CDB9-402F-B9A8-17F81E0AF044} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3371830166-12627610-194444450-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4157816 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8ABC884-48D0-4BE9-B714-D40750F5E239} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {CAEA14E9-A9CE-4BF6-9BDF-F839B58F6484} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D7746526-A19B-4BB8-A276-AF4CDE2C2566} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {DBDE8933-F28D-4502-9645-D014B15E0AD9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {E7255A5A-D2CB-46EB-86E4-A886C75254DF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4157816 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Norton Product InstallerIdle.job => C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp\SymInstallStub.exeK/partnerid=symantec /productlist=nss /staging=false /delay=0 /launchedby=4 C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{6706c5bd-d268-4d83-9a93-7871ad9e7f3f}: [DhcpNameServer] 62.197.111.140 109.88.203.3
Edge:
=======
DownloadDir: C:\Users\Francois\Downloads
Edge Notifications: HKU\S-1-5-21-3371830166-12627610-194444450-1001 -> hxxps://www.youtube.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2022-01-23]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Francois\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-20]
Edge DownloadDir: Default -> C:\Users\Francois\Downloads
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.youtube.com
Edge HomePage: Default -> hxxp://fr.yahoo.com?fr=fp-comodo&type=138430100005_12.2.2.8012_i_hp
Edge StartupUrls: Default -> "hxxp://www.google.be/","hxxp://be.msn.com/defaultf.aspx?pc=UP97&ocid=UP97DHP","hxxp://www.msn.com/?pc=AV01","hxxps://google.com/"
Edge Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\Francois\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2021-12-12]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: o4uyq5tj.default-1489789784158-1643493777513
FF ProfilePath: C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 [2022-02-19]
FF Homepage: Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 -> hxxps://www.google.fr/advanced_search
FF Session Restore: Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 -> est activé.
FF Extension: (eID Belgique) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\belgiumeid@eid.belgium.be.xpi [2022-01-29]
FF Extension: (Fairytale Of Nature) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2022-02-19]
FF Extension: (Lilac Prediction by MaDonna) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{71fd5149-d328-4af2-acd5-78a59e48ff55}.xpi [2022-02-19]
FF Extension: (Printania) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{e29fff07-5ec5-4417-9933-2a72f5569d91}.xpi [2022-01-29]
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default [2022-02-20]
CHR Notifications: Default -> hxxps://onedrive.live.com; hxxps://www.facebook.com; hxxps://www.herodote.net; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.be/","hxxp://be.msn.com/defaultf.aspx?pc=UP97&ocid=UP97DHP","hxxp://www.msn.com/?pc=AV01","www.google.com"
CHR Extension: (Slides) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-12]
CHR Extension: (Docs) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-12]
CHR Extension: (Google Drive) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-01]
CHR Extension: (eID Chrome Extension) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2021-12-12]
CHR Extension: (YouTube) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-12]
CHR Extension: (Calculator) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\decmldkknaaemlafplkkdmmmelbdnlja [2019-05-12]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2021-11-07]
CHR Extension: (Convertio) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-09-12]
CHR Extension: (Microsoft Rewards) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2022-01-23]
CHR Extension: (Sheets) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-12]
CHR Extension: (Protection Web Avira) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-02-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-20]
CHR Extension: (PDF Mage) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\gknphemhpcknkhegndlihchfonpdcben [2022-01-23]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-02-20]
CHR Extension: (Connective signing extension) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-01-01]
CHR Extension: (Google Maps) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-05-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-01]
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-07-11]
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-31]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [503512 2012-09-04] (Qualcomm Atheros -> Atheros) [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-31] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-31] (AVAST Software s.r.o. -> AVAST Software)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2973616 2022-01-31] (Comodo Security Solutions -> Comodo)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.027.0206.0002\FileSyncHelper.exe [3378552 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2363000 2021-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 GUBootService; C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe [873344 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
S4 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [65408 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-23] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.027.0206.0002\OneDriveUpdaterService.exe [3850608 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
S4 PDF Architect 8; C:\Program Files\PDF Architect 8\activation-service.exe [3328560 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Creator; C:\Program Files\PDF Architect 8\creator-ws.exe [627760 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Update Service; C:\Program Files\PDF Architect 8\update-service.exe [381488 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2021-12-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2021-01-09] () [Fichier non signé]
S4 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3289448 2016-05-11] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-09-04] (Qualcomm Atheros -> Atheros) [Fichier non signé]
S2 csssrv; "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe" -service [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [30720 2021-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-06] (Microsoft Windows -> Microsoft Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-18] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-20] (Malwarebytes Inc -> Malwarebytes)
R3 RadioHIDMini; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-08-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-19] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S3 WSIMD; C:\WINDOWS\system32\DRIVERS\wsimdx.sys [75776 2009-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 MpKsl6c96cb6c; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C2B218DB-07AD-4B21-8B77-6FC1043529D2}\MpKslDrv.sys [X]
S1 webshieldfilter; system32\drivers\webshieldfilter.sys [X] <==== ATTENTION
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-20 15:17 - 2022-02-20 15:19 - 000036579 _____ C:\Users\Francois\Desktop\FRST.txt
2022-02-20 15:15 - 2022-02-20 15:15 - 002312192 _____ (Farbar) C:\Users\Francois\Desktop\FRST64.exe
2022-02-20 13:59 - 2022-02-20 13:59 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-20 13:58 - 2022-02-20 13:58 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-20 13:58 - 2022-02-20 13:58 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-20 10:28 - 2022-02-20 10:28 - 000000000 ___HD C:\$WinREAgent
2022-02-19 21:29 - 2022-02-19 20:54 - 000437842 __RSH C:\bootmgr
2022-02-19 21:29 - 2021-06-05 13:05 - 000000001 ___SH C:\BOOTNXT
2022-02-19 20:55 - 2022-02-19 20:55 - 000015060 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-19 20:52 - 2022-02-19 20:52 - 000210432 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-02-19 20:24 - 2022-02-19 22:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-19 20:22 - 2022-02-19 21:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-19 20:12 - 2022-02-13 00:56 - 000014360 ____T C:\Users\Francois\OneDrive\Documents\VOO-Problème carte numérique.pdf
2022-02-19 19:35 - 2022-02-19 19:35 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-19 19:35 - 2022-02-19 19:35 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-13 00:07 - 2022-02-13 00:07 - 000061779 _____ C:\Users\Francois\OneDrive\Documents\VOO-Problème carte numérique_2.pdf
2022-02-13 00:06 - 2022-02-13 00:13 - 000014360 _____ C:\Users\Francois\Downloads\VOO-Problème carte numérique.pdf
2022-02-06 23:08 - 2022-02-06 23:08 - 000000000 ____D C:\Users\Francois\AppData\Local\messenger-updater
2022-02-06 19:12 - 2022-01-20 15:50 - 000172840 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020409766_10052422 (1).pdf
2022-02-06 19:12 - 2022-01-20 15:48 - 000172840 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020409766_10052422.pdf
2022-02-06 19:12 - 2021-07-18 14:14 - 000173080 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020407631_23946813.pdf
2022-02-06 18:01 - 2022-02-06 18:00 - 003100280 _____ C:\Users\Francois\Downloads\merged.pdf
2022-02-06 17:42 - 2022-02-06 17:42 - 000001711 _____ C:\Users\Public\Desktop\PDF24.lnk
2022-02-06 17:42 - 2022-02-06 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2022-02-06 17:41 - 2022-02-06 17:42 - 000000000 ____D C:\Program Files\PDF24
2022-01-29 23:02 - 2022-02-19 21:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-29 23:02 - 2022-02-19 20:24 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-01-29 23:02 - 2022-02-19 20:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-01-29 23:02 - 2022-01-29 23:02 - 000000999 _____ C:\Users\Public\Desktop\Firefox.lnk
2022-01-29 22:33 - 2022-01-29 22:33 - 000000000 ___HD C:\$SysReset
2022-01-29 21:50 - 2022-01-29 21:50 - 000000000 _____ C:\WINDOWS\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2022-01-29 21:13 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2022-01-29 21:13 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2022-01-29 21:12 - 2022-01-29 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2022-01-29 21:11 - 2022-01-29 21:11 - 000000000 ____D C:\Users\Francois\AppData\Local\Comodo
2022-01-29 21:10 - 2022-02-12 21:51 - 000000000 ____D C:\Program Files (x86)\Comodo
2022-01-29 21:07 - 2022-01-29 22:09 - 000000000 ____D C:\ProgramData\Comodo
2022-01-29 20:36 - 2022-01-29 20:37 - 000000000 ____D C:\AdwCleaner
2022-01-29 20:36 - 2022-01-29 20:36 - 008540344 _____ (Malwarebytes) C:\Users\Francois\Desktop\adwcleaner_8.3.1.exe
2022-01-29 19:42 - 2022-01-29 19:42 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2022-01-29 19:13 - 2022-01-29 19:13 - 000000000 ____D C:\@RestoreQuarantine
2022-01-29 17:50 - 2022-01-29 19:41 - 000000000 ____D C:\Users\Francois\AppData\Local\UnHackMe
2022-01-29 17:49 - 2022-01-29 17:49 - 000000000 ____D C:\Program Files (x86)\Greatis
2022-01-29 17:32 - 2022-01-29 17:32 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-01-23 17:11 - 2022-01-09 20:10 - 018640376 _____ C:\Users\Francois\OneDrive\Documents\gu5setup.exe
2022-01-23 17:11 - 2021-11-06 22:57 - 000641194 _____ C:\Users\Francois\OneDrive\Documents\2021-11-06_22-57-39_winscan_to_pdf..jpeg
2022-01-23 14:29 - 2022-02-20 15:18 - 000000000 ____D C:\FRST
2022-01-23 14:19 - 2022-01-23 14:17 - 000192736 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-20 14:25 - 2019-05-12 21:41 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-20 14:04 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-20 13:57 - 2021-11-14 02:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-20 13:57 - 2021-04-26 19:35 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-20 12:55 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-20 10:56 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-20 10:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-20 10:24 - 2016-11-15 16:43 - 000000000 ____D C:\Users\Francois\AppData\LocalLow\Mozilla
2022-02-20 01:35 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-19 23:15 - 2021-11-14 01:26 - 000000000 ____D C:\Users\Francois
2022-02-19 22:58 - 2016-11-26 22:21 - 000000000 ____D C:\Users\Francois\AppData\Local\CrashDumps
2022-02-19 22:39 - 2018-03-18 23:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-19 21:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-19 21:34 - 2021-11-14 02:15 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-19 21:34 - 2021-06-05 19:15 - 000807760 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-19 21:34 - 2021-06-05 19:15 - 000156382 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-19 21:34 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-19 21:30 - 2021-11-14 02:06 - 000675352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-19 21:26 - 2021-08-21 16:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-02-19 21:23 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-19 21:22 - 2021-06-05 19:23 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-19 20:50 - 2021-11-14 02:15 - 003101696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-19 20:37 - 2021-04-01 13:58 - 000000000 ____D C:\Users\Francois\AppData\LocalLow\IGDump
2022-02-19 20:04 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-19 19:52 - 2016-07-11 18:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-19 19:43 - 2016-07-11 18:44 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-19 19:39 - 2020-03-29 20:51 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-19 19:39 - 2020-02-02 20:16 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 19:35 - 2021-12-12 17:54 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3371830166-12627610-194444450-1001
2022-02-19 19:12 - 2021-11-14 02:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-13 00:47 - 2021-11-21 22:34 - 000000000 _____ C:\Users\Francois\OneDrive\Documents\Nuance Image Printer Writer Port
2022-02-13 00:27 - 2016-07-13 11:28 - 000000000 ____D C:\Users\Francois\AppData\Local\Comms
2022-02-06 22:35 - 2021-07-24 16:27 - 000000000 ____D C:\Users\Francois\AppData\Roaming\vlc
2022-02-06 21:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-06 21:03 - 2020-10-10 17:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-06 20:08 - 2017-04-17 20:19 - 000000000 ____D C:\Users\Francois\AppData\Local\ElevatedDiagnostics
2022-02-06 19:53 - 2016-07-13 08:15 - 000000000 ___RD C:\Users\Francois\OneDrive
2022-02-06 19:33 - 2022-01-15 19:21 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-06 19:32 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-01-29 21:49 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-29 19:42 - 2016-08-27 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-01-23 22:43 - 2020-01-26 22:27 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-01-23 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\registration
2022-01-23 18:13 - 2018-07-27 19:57 - 000000000 ____D C:\ProgramData\Packages
2022-01-23 18:13 - 2017-10-21 06:30 - 000000000 ____D C:\Users\Francois\AppData\Local\Packages
2022-01-23 16:21 - 2021-03-20 19:01 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-23 16:21 - 2020-10-10 17:06 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-23 16:18 - 2018-07-07 16:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-23 16:18 - 2018-03-31 18:38 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-23 14:20 - 2021-11-14 02:53 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-23 14:20 - 2021-11-14 02:53 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-23 14:19 - 2017-07-23 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-23 14:19 - 2017-07-23 20:14 - 000000000 ____D C:\Program Files\Java
2022-01-23 14:17 - 2021-11-21 17:34 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7d8f62fb9b22d
2022-01-23 14:17 - 2021-11-14 02:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
==================== Fichiers à la racine de certains dossiers ========
2019-11-10 15:25 - 2020-07-11 20:24 - 000000000 ____D () C:\ProgramData\PDF Creator.exe
2021-01-30 20:51 - 2021-04-04 20:59 - 000017473 _____ () C:\Users\Francois\AppData\Roaming\.BEID_0.log
2020-02-09 22:36 - 2020-02-09 22:36 - 000282898 _____ () C:\Users\Francois\AppData\Roaming\9ec_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-12-07 23:40 - 2019-12-07 23:40 - 000003584 _____ () C:\Users\Francois\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-11-10 21:56 - 2019-11-10 21:56 - 000000410 _____ () C:\Users\Francois\AppData\Local\oobelibMkey.log
2016-07-11 20:18 - 2016-07-11 20:18 - 000000017 _____ () C:\Users\Francois\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Francois (administrateur) sur W10-64BITS (SAMSUNG ELECTRONICS CO., LTD. 305E4A/305E5A/305E7A) (20-02-2022 15:17:06)
Exécuté depuis C:\Users\Francois\Desktop
Profils chargés: Francois
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.526 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Areson Technology -> ) C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\LibreOffice\program\soffice.exe ->) (The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.bin
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.55\msedgewebview2.exe <6>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Comodo Security Solutions -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
(The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ACU] => C:\Program Files (x86)\Qualcomm Atheros\ACU.exe [474848 2012-09-04] (Qualcomm Atheros -> Atheros Communications, Inc.) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242200 2016-11-11] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [vdcss] => "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe" -tray (Pas de fichier)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [uni mouse driver] => C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe [1634296 2015-04-13] (Areson Technology -> )
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2616696 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [MicrosoftEdgeAutoLaunch_2E1C6BA3FEEFBA11E62557B7744DDD87] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44416 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-3371830166-12627610-194444450-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\PDF Architect 8 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\brand_solution_name_pdfpmon_v.6.11.0.7.dll [960120 2021-11-13] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2021-12-31] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\PEPrinterMonitor.dll [285232 2021-04-06] (Wondershare Technology Co.,Ltd -> Wondershare Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\Francois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LibreOffice 6.1.lnk [2019-03-31]
ShortcutTarget: LibreOffice 6.1.lnk -> C:\Program Files\LibreOffice\program\quickstart.exe (The Document Foundation -> The Document Foundation)
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {077874EF-5EF4-4D52-B2AA-C5C307BDE881} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {131C3EBF-DC71-46D6-BCCD-9BD5CAB45D1C} - \WPD\SqmUpload_S-1-5-21-3371830166-12627610-194444450-1001 -> Pas de fichier <==== ATTENTION
Task: {1653958B-8F91-42EE-BDB7-00A48C523D33} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {19077F43-8081-4AD4-8AFA-557C1F59227C} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2982184 2016-02-23] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {1A07993A-F3B0-4D5D-BD0A-C4FF129C828F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {1BAD8F04-EB0F-40B3-ADAB-D752690640E8} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {2BD0C163-8785-4F9A-8B30-288700DD03E2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {363FCF92-0501-4F31-9F75-E515016AAB83} - System32\Tasks\SWUpdateAgent => C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe [2883192 2012-11-09] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {3A0BAD1D-6123-4A97-995D-55544557DB1F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {3F3399BD-FB2E-47CE-852F-C923D359EE22} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {45025DAE-23A1-4495-AFD4-57DDECF0CBFF} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {45B63F5B-2641-46D8-952B-35577C633847} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe $(Arg0) (Pas de fichier)
Task: {470E1174-CDBD-4991-A2D9-E7F06C4CC4C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {4851F53E-9950-47B6-9C50-03CA1430EAFE} - System32\Tasks\S-1-5-21-3371830166-12627610-194444450-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Pas de fichier)
Task: {5049A492-D850-47CC-9480-E88A60BAF571} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {550AD4A5-A06C-481B-9CD4-ECE97459DBAC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {57D22317-2E8C-4E70-A4A5-9A26B0978397} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC)
Task: {5A3B9C44-32A6-40E4-A228-C6CD9C4FB940} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {5AE4A512-1B3D-4983-ACCF-3E687B69A632} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {5BA52A01-6AC9-4D8E-8126-12A36EAD7369} - System32\Tasks\Norton Product InstallerIdle => C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp\SymInstallStub.exe /partnerid=symantec /productlist=nss /staging=false /delay=0 /launchedby=4 (Pas de fichier) <==== ATTENTION
Task: {6154E715-20DF-4026-8FC6-04EFA5C599F2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {771A6F0F-49D9-4A9D-9E36-4253B58D1B1C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {7B476671-D753-41E7-986A-AF12FF315322} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification => C:\Program Files\PDF Architect 8\architect-launcher.exe [1782320 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {7DB99552-0847-481E-8463-C702D4A00968} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {82BEE430-BB0C-4AB1-B18D-0F81C88CBB7B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-05-12] (Google Inc -> Google LLC)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {887CD3F1-863F-4EE7-9EA7-48487681103A} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification Logon => C:\Program Files\PDF Architect 8\architect-launcher.exe [1782320 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {93539189-4DFD-4915-9469-705F936F9907} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [4018056 2017-08-09] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {99573C38-E2A6-4A82-9847-5B3024E2E41C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {9E26C17E-EF57-40E4-AA60-8F2E6E74F308} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {A9574B3B-E280-461F-AF82-CDB7003192A5} - System32\Tasks\pdfforge GmbH\PDF Architect 8\Update => C:\Program Files\PDF Architect 8\architect.exe [3451952 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
Task: {B7B308A7-02DD-4D99-A9DE-68831B283129} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe $UAC (Pas de fichier)
Task: {B7B40907-038B-405F-922B-C6266E73A3A2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {BA150796-B57B-487D-B09B-A6A160C6BB65} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {BE4F99FE-CDB9-402F-B9A8-17F81E0AF044} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3371830166-12627610-194444450-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4157816 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8ABC884-48D0-4BE9-B714-D40750F5E239} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {CAEA14E9-A9CE-4BF6-9BDF-F839B58F6484} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D7746526-A19B-4BB8-A276-AF4CDE2C2566} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {DBDE8933-F28D-4502-9645-D014B15E0AD9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {E7255A5A-D2CB-46EB-86E4-A886C75254DF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4157816 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Norton Product InstallerIdle.job => C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp\SymInstallStub.exeK/partnerid=symantec /productlist=nss /staging=false /delay=0 /launchedby=4 C:\Users\Francois\AppData\Local\Temp\7zS2A39.tmp
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{6706c5bd-d268-4d83-9a93-7871ad9e7f3f}: [DhcpNameServer] 62.197.111.140 109.88.203.3
Edge:
=======
DownloadDir: C:\Users\Francois\Downloads
Edge Notifications: HKU\S-1-5-21-3371830166-12627610-194444450-1001 -> hxxps://www.youtube.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2022-01-23]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Francois\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-20]
Edge DownloadDir: Default -> C:\Users\Francois\Downloads
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.youtube.com
Edge HomePage: Default -> hxxp://fr.yahoo.com?fr=fp-comodo&type=138430100005_12.2.2.8012_i_hp
Edge StartupUrls: Default -> "hxxp://www.google.be/","hxxp://be.msn.com/defaultf.aspx?pc=UP97&ocid=UP97DHP","hxxp://www.msn.com/?pc=AV01","hxxps://google.com/"
Edge Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\Francois\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2021-12-12]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: o4uyq5tj.default-1489789784158-1643493777513
FF ProfilePath: C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 [2022-02-19]
FF Homepage: Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 -> hxxps://www.google.fr/advanced_search
FF Session Restore: Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513 -> est activé.
FF Extension: (eID Belgique) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\belgiumeid@eid.belgium.be.xpi [2022-01-29]
FF Extension: (Fairytale Of Nature) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2022-02-19]
FF Extension: (Lilac Prediction by MaDonna) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{71fd5149-d328-4af2-acd5-78a59e48ff55}.xpi [2022-02-19]
FF Extension: (Printania) - C:\Users\Francois\AppData\Roaming\Mozilla\Firefox\Profiles\o4uyq5tj.default-1489789784158-1643493777513\Extensions\{e29fff07-5ec5-4417-9933-2a72f5569d91}.xpi [2022-01-29]
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default [2022-02-20]
CHR Notifications: Default -> hxxps://onedrive.live.com; hxxps://www.facebook.com; hxxps://www.herodote.net; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.be/","hxxp://be.msn.com/defaultf.aspx?pc=UP97&ocid=UP97DHP","hxxp://www.msn.com/?pc=AV01","www.google.com"
CHR Extension: (Slides) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-12]
CHR Extension: (Docs) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-12]
CHR Extension: (Google Drive) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-01]
CHR Extension: (eID Chrome Extension) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2021-12-12]
CHR Extension: (YouTube) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-12]
CHR Extension: (Calculator) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\decmldkknaaemlafplkkdmmmelbdnlja [2019-05-12]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2021-11-07]
CHR Extension: (Convertio) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-09-12]
CHR Extension: (Microsoft Rewards) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2022-01-23]
CHR Extension: (Sheets) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-05-12]
CHR Extension: (Protection Web Avira) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-02-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-20]
CHR Extension: (PDF Mage) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\gknphemhpcknkhegndlihchfonpdcben [2022-01-23]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-02-20]
CHR Extension: (Connective signing extension) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-01-01]
CHR Extension: (Google Maps) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-05-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-01]
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-07-11]
CHR Profile: C:\Users\Francois\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-31]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACS; C:\WINDOWS\SysWOW64\acs.exe [503512 2012-09-04] (Qualcomm Atheros -> Atheros) [Fichier non signé]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-31] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-31] (AVAST Software s.r.o. -> AVAST Software)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2973616 2022-01-31] (Comodo Security Solutions -> Comodo)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.027.0206.0002\FileSyncHelper.exe [3378552 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2363000 2021-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 GUBootService; C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe [873344 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
S4 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [65408 2021-11-15] (Glarysoft LTD -> Glarysoft Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-23] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.027.0206.0002\OneDriveUpdaterService.exe [3850608 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
S4 PDF Architect 8; C:\Program Files\PDF Architect 8\activation-service.exe [3328560 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Creator; C:\Program Files\PDF Architect 8\creator-ws.exe [627760 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 8 Update Service; C:\Program Files\PDF Architect 8\update-service.exe [381488 2021-11-10] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078536 2021-12-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2021-01-09] () [Fichier non signé]
S4 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3289448 2016-05-11] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-09-04] (Qualcomm Atheros -> Atheros) [Fichier non signé]
S2 csssrv; "C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe" -service [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [30720 2021-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-06] (Microsoft Windows -> Microsoft Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-18] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-20] (Malwarebytes Inc -> Malwarebytes)
R3 RadioHIDMini; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-08-16] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-19] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S3 WSIMD; C:\WINDOWS\system32\DRIVERS\wsimdx.sys [75776 2009-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 MpKsl6c96cb6c; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C2B218DB-07AD-4B21-8B77-6FC1043529D2}\MpKslDrv.sys [X]
S1 webshieldfilter; system32\drivers\webshieldfilter.sys [X] <==== ATTENTION
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-20 15:17 - 2022-02-20 15:19 - 000036579 _____ C:\Users\Francois\Desktop\FRST.txt
2022-02-20 15:15 - 2022-02-20 15:15 - 002312192 _____ (Farbar) C:\Users\Francois\Desktop\FRST64.exe
2022-02-20 13:59 - 2022-02-20 13:59 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-20 13:58 - 2022-02-20 13:58 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-20 13:58 - 2022-02-20 13:58 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-20 10:28 - 2022-02-20 10:28 - 000000000 ___HD C:\$WinREAgent
2022-02-19 21:29 - 2022-02-19 20:54 - 000437842 __RSH C:\bootmgr
2022-02-19 21:29 - 2021-06-05 13:05 - 000000001 ___SH C:\BOOTNXT
2022-02-19 20:55 - 2022-02-19 20:55 - 000015060 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-19 20:52 - 2022-02-19 20:52 - 000210432 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2022-02-19 20:24 - 2022-02-19 22:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-19 20:22 - 2022-02-19 21:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-19 20:12 - 2022-02-13 00:56 - 000014360 ____T C:\Users\Francois\OneDrive\Documents\VOO-Problème carte numérique.pdf
2022-02-19 19:35 - 2022-02-19 19:35 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-19 19:35 - 2022-02-19 19:35 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-13 00:07 - 2022-02-13 00:07 - 000061779 _____ C:\Users\Francois\OneDrive\Documents\VOO-Problème carte numérique_2.pdf
2022-02-13 00:06 - 2022-02-13 00:13 - 000014360 _____ C:\Users\Francois\Downloads\VOO-Problème carte numérique.pdf
2022-02-06 23:08 - 2022-02-06 23:08 - 000000000 ____D C:\Users\Francois\AppData\Local\messenger-updater
2022-02-06 19:12 - 2022-01-20 15:50 - 000172840 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020409766_10052422 (1).pdf
2022-02-06 19:12 - 2022-01-20 15:48 - 000172840 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020409766_10052422.pdf
2022-02-06 19:12 - 2021-07-18 14:14 - 000173080 _____ C:\Users\Francois\OneDrive\Documents\AVIS_LOC_PROP_0020407631_23946813.pdf
2022-02-06 18:01 - 2022-02-06 18:00 - 003100280 _____ C:\Users\Francois\Downloads\merged.pdf
2022-02-06 17:42 - 2022-02-06 17:42 - 000001711 _____ C:\Users\Public\Desktop\PDF24.lnk
2022-02-06 17:42 - 2022-02-06 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2022-02-06 17:41 - 2022-02-06 17:42 - 000000000 ____D C:\Program Files\PDF24
2022-01-29 23:02 - 2022-02-19 21:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-29 23:02 - 2022-02-19 20:24 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-01-29 23:02 - 2022-02-19 20:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-01-29 23:02 - 2022-01-29 23:02 - 000000999 _____ C:\Users\Public\Desktop\Firefox.lnk
2022-01-29 22:33 - 2022-01-29 22:33 - 000000000 ___HD C:\$SysReset
2022-01-29 21:50 - 2022-01-29 21:50 - 000000000 _____ C:\WINDOWS\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
2022-01-29 21:13 - 2019-08-21 08:02 - 000454616 _____ (COMODO) C:\WINDOWS\system32\cssguard64.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000341224 _____ (COMODO) C:\WINDOWS\system32\cmdkbdcss64.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000337856 _____ (COMODO) C:\WINDOWS\SysWOW64\cssguard32.dll
2022-01-29 21:13 - 2019-08-21 08:02 - 000262376 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbdcss32.dll
2022-01-29 21:13 - 2018-02-28 08:11 - 000125000 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdcss.sys
2022-01-29 21:12 - 2022-01-29 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2022-01-29 21:11 - 2022-01-29 21:11 - 000000000 ____D C:\Users\Francois\AppData\Local\Comodo
2022-01-29 21:10 - 2022-02-12 21:51 - 000000000 ____D C:\Program Files (x86)\Comodo
2022-01-29 21:07 - 2022-01-29 22:09 - 000000000 ____D C:\ProgramData\Comodo
2022-01-29 20:36 - 2022-01-29 20:37 - 000000000 ____D C:\AdwCleaner
2022-01-29 20:36 - 2022-01-29 20:36 - 008540344 _____ (Malwarebytes) C:\Users\Francois\Desktop\adwcleaner_8.3.1.exe
2022-01-29 19:42 - 2022-01-29 19:42 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2022-01-29 19:13 - 2022-01-29 19:13 - 000000000 ____D C:\@RestoreQuarantine
2022-01-29 17:50 - 2022-01-29 19:41 - 000000000 ____D C:\Users\Francois\AppData\Local\UnHackMe
2022-01-29 17:49 - 2022-01-29 17:49 - 000000000 ____D C:\Program Files (x86)\Greatis
2022-01-29 17:32 - 2022-01-29 17:32 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-01-23 17:11 - 2022-01-09 20:10 - 018640376 _____ C:\Users\Francois\OneDrive\Documents\gu5setup.exe
2022-01-23 17:11 - 2021-11-06 22:57 - 000641194 _____ C:\Users\Francois\OneDrive\Documents\2021-11-06_22-57-39_winscan_to_pdf..jpeg
2022-01-23 14:29 - 2022-02-20 15:18 - 000000000 ____D C:\FRST
2022-01-23 14:19 - 2022-01-23 14:17 - 000192736 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-20 14:25 - 2019-05-12 21:41 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-20 14:04 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-20 13:57 - 2021-11-14 02:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-20 13:57 - 2021-04-26 19:35 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-20 12:55 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-20 10:56 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-20 10:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-20 10:24 - 2016-11-15 16:43 - 000000000 ____D C:\Users\Francois\AppData\LocalLow\Mozilla
2022-02-20 01:35 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-19 23:15 - 2021-11-14 01:26 - 000000000 ____D C:\Users\Francois
2022-02-19 22:58 - 2016-11-26 22:21 - 000000000 ____D C:\Users\Francois\AppData\Local\CrashDumps
2022-02-19 22:39 - 2018-03-18 23:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-19 21:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-19 21:34 - 2021-11-14 02:15 - 001800200 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-19 21:34 - 2021-06-05 19:15 - 000807760 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-19 21:34 - 2021-06-05 19:15 - 000156382 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-19 21:34 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-19 21:30 - 2021-11-14 02:06 - 000675352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-19 21:26 - 2021-08-21 16:22 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-02-19 21:23 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-19 21:22 - 2021-06-05 19:23 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\lxss
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-19 21:22 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-19 20:50 - 2021-11-14 02:15 - 003101696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-19 20:37 - 2021-04-01 13:58 - 000000000 ____D C:\Users\Francois\AppData\LocalLow\IGDump
2022-02-19 20:04 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-19 19:52 - 2016-07-11 18:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-19 19:43 - 2016-07-11 18:44 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-19 19:39 - 2020-03-29 20:51 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-19 19:39 - 2020-02-02 20:16 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 19:35 - 2021-12-12 17:54 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3371830166-12627610-194444450-1001
2022-02-19 19:12 - 2021-11-14 02:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-13 00:47 - 2021-11-21 22:34 - 000000000 _____ C:\Users\Francois\OneDrive\Documents\Nuance Image Printer Writer Port
2022-02-13 00:27 - 2016-07-13 11:28 - 000000000 ____D C:\Users\Francois\AppData\Local\Comms
2022-02-06 22:35 - 2021-07-24 16:27 - 000000000 ____D C:\Users\Francois\AppData\Roaming\vlc
2022-02-06 21:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-06 21:03 - 2020-10-10 17:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-06 20:08 - 2017-04-17 20:19 - 000000000 ____D C:\Users\Francois\AppData\Local\ElevatedDiagnostics
2022-02-06 19:53 - 2016-07-13 08:15 - 000000000 ___RD C:\Users\Francois\OneDrive
2022-02-06 19:33 - 2022-01-15 19:21 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-06 19:32 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-01-29 21:49 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-29 19:42 - 2016-08-27 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-01-23 22:43 - 2020-01-26 22:27 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-01-23 21:04 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\registration
2022-01-23 18:13 - 2018-07-27 19:57 - 000000000 ____D C:\ProgramData\Packages
2022-01-23 18:13 - 2017-10-21 06:30 - 000000000 ____D C:\Users\Francois\AppData\Local\Packages
2022-01-23 16:21 - 2021-03-20 19:01 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-23 16:21 - 2020-10-10 17:06 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-23 16:18 - 2018-07-07 16:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-23 16:18 - 2018-03-31 18:38 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-23 14:20 - 2021-11-14 02:53 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-23 14:20 - 2021-11-14 02:53 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-23 14:19 - 2017-07-23 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-23 14:19 - 2017-07-23 20:14 - 000000000 ____D C:\Program Files\Java
2022-01-23 14:17 - 2021-11-21 17:34 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7d8f62fb9b22d
2022-01-23 14:17 - 2021-11-14 02:53 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
==================== Fichiers à la racine de certains dossiers ========
2019-11-10 15:25 - 2020-07-11 20:24 - 000000000 ____D () C:\ProgramData\PDF Creator.exe
2021-01-30 20:51 - 2021-04-04 20:59 - 000017473 _____ () C:\Users\Francois\AppData\Roaming\.BEID_0.log
2020-02-09 22:36 - 2020-02-09 22:36 - 000282898 _____ () C:\Users\Francois\AppData\Roaming\9ec_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-12-07 23:40 - 2019-12-07 23:40 - 000003584 _____ () C:\Users\Francois\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-11-10 21:56 - 2019-11-10 21:56 - 000000410 _____ () C:\Users\Francois\AppData\Local\oobelibMkey.log
2016-07-11 20:18 - 2016-07-11 20:18 - 000000017 _____ () C:\Users\Francois\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================