Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par denis (administrateur) sur DESKTOP-FHVAPNR (Dell Inc. Studio 540) (05-09-2022 09:38:12)
Exécuté depuis C:\Users\denis\OneDrive\Bureau
Profils chargés: denis
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(C:\Users\denis\AppData\Local\Connective-SignID\signid-api.exe ->) (Trust1Team bvba -> ) C:\Users\denis\AppData\Local\Connective-SignID\signid-sandbox.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIPLE.EXE
(explorer.exe ->) (TomTom International B.V. -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\denis\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Trust1Team bvba -> ) C:\Users\denis\AppData\Local\Connective-SignID\signid-api.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\denis\AppData\Local\Microsoft\Teams\Update.exe [2443544 2020-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIPLE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [MicrosoftEdgeAutoLaunch_3209DC080F6E194BA57CAD0D06ACCA72] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [Connective-SignID API] => C:\Users\denis\AppData\Local\Connective-SignID\t1c-launch.exe [4669680 2022-02-09] (Trust1Team bvba -> )
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {850207d2-94a2-11ec-b0e6-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {ac31fa72-f12f-11eb-b0d4-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {ac31fce5-f12f-11eb-b0d4-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON XP-630 Series 64MonitorBE: C:\Windows\system32\E_YLMBPLE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1BE8B26D-7602-4326-8FDD-7A5CB8339574} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {1E17422D-6D22-4CCC-85DD-8EEA8E961B9E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {24A336E1-4679-4077-82C1-B8B1C4A42DC8} - System32\Tasks\CCleanerSkipUAC - denis => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {37FBAE86-72EE-45A7-AF63-51BA7F4985C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-27] (Google LLC -> Google LLC)
Task: {3B99EF15-D8ED-4313-9E9B-BE29DED48E4E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BFFCC56-4FBD-4AFB-B7F6-542EDBB98907} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6570472 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {725D2305-B9DB-4442-814C-C148B7EEBA78} - System32\Tasks\EPSON XP-630 Series Update {2BC9C321-1F9B-4B10-AB60-D30C10747D85} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {7E125C14-FAA0-4E62-A950-3C82D03C18CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-27] (Google LLC -> Google LLC)
Task: {8DF4A0CC-9BB1-4AFF-B034-348F44E0EADC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B1E0188C-CF5C-4958-937B-AD4EE6209E9C} - System32\Tasks\PC Cleaner automatic scan and notifications => C:\Program Files (x86)\PC Cleaner\PCCNotifications.exe (Pas de fichier) <==== ATTENTION
Task: {B26BE3F8-486F-402B-A13B-2C959BF2DF03} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116632 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC279FD6-DB79-4F54-B4CE-34DF77A75A88} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116632 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7079AD8-05B0-4B50-B1CD-DE7438F451A3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C83A077C-2456-462D-ACCC-340EFA250836} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6570472 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD8352FF-070A-4BDD-A35C-CF99BD91F1CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDC61826-C8E6-4E75-85B5-E63BBA98C9EF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {E13C3A72-E8BF-4608-BAF8-C5C45EB985DE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E776C66F-5643-46E5-9AC5-F28AA5C14325} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => C:\Program Files (x86)\PC HelpSoft Driver Updater\HDMTray.exe (Pas de fichier) <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-630 Series Update {2BC9C321-1F9B-4B10-AB60-D30C10747D85}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE:/EXE:{2BC9C321-1F9B-4B10-AB60-D30C10747D85} /F:UpdateWORKGROUP\DESKTOP-FHVAPNR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{29189e8e-0956-4eb0-8ce9-56f0f04008d6}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\denis\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-05]
Edge Notifications: Default -> hxxps://www.7sur7.be; hxxps://www.stores-discount.com; hxxps://www.tomtom.com
Edge HomePage: Default -> about:blank
Edge StartupUrls: Default -> "hxxps://www.7sur7.be/"
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3784612590-1928540805-691411632-1001: connective.be/BrowserPlugin -> C:\Users\denis\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default [2022-09-05]
CHR Notifications: Default -> hxxps://2.sabs-push.xyz; hxxps://assiste.com; hxxps://flymedia.cam; hxxps://gazette-foe.forum-box.com; hxxps://gladvideo.website; hxxps://mail.captaintortue.com; hxxps://n17.biz; hxxps://prof-datingday.com; hxxps://totalnicestories.com; hxxps://txxx.com; hxxps://veuxtube.com; hxxps://www.aufeminin.com; hxxps://www.cinenews.be; hxxps://www.cnetfrance.fr; hxxps://www.manomano.fr; hxxps://www.tnaflix.com
CHR StartupUrls: Default -> "hxxps://www.google.be/webhp?hl=fr"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?FORM=U523DF&PC=U523&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?FORM=U523DF&PC=U523&query={searchTerms}
CHR Extension: (FoE - Assistant) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2022-08-30]
CHR Extension: (Microsoft Rewards) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2022-08-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-25]
CHR Extension: (Zoom) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmbjbjdpkobdjplfobhljndfdfdipjhg [2022-06-29]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-04]
CHR Extension: (Je NE suis PAS un robot) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaaddglnfdmndlnomgigbmojbipbjfld [2021-10-28]
CHR Extension: (Connective signing extension) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-07-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2022-07-19]
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-04]
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-04]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA Profile: C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-09-04]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-02-13]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-05-08]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-05-08]
BRA Extension: (Brave NTP sponsored images) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\gigpfioocjkgbjgoonldcifaeajkbdln [2021-05-08]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-02-13]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-05-08]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-05-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-11-08] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKsl3041c050; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9C4D8CCE-B6E5-4276-9A52-9F74ADEF094F}\MpKslDrv.sys [141576 2022-09-05] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 09:22 - 2022-09-05 09:38 - 000000000 ____D C:\FRST
2022-09-05 09:21 - 2022-09-05 09:21 - 002371072 _____ (Farbar) C:\Users\denis\Downloads\FRST64.exe
2022-09-05 09:12 - 2022-09-05 09:18 - 000000000 ____D C:\Users\denis\AppData\Roaming\ZHP
2022-09-05 09:12 - 2022-09-05 09:12 - 000000000 ____D C:\Users\denis\AppData\Local\ZHP
2022-09-05 09:09 - 2022-09-05 09:09 - 002074112 _____ (Farbar) C:\Users\denis\Downloads\FRST.exe
2022-09-04 12:04 - 2022-09-04 12:04 - 000000000 ____D C:\Users\denis\AppData\Local\mbam
2022-09-04 12:03 - 2022-09-04 12:03 - 002556344 _____ (Malwarebytes) C:\Users\denis\Downloads\MBSetup.exe
2022-09-04 12:03 - 2022-09-04 12:03 - 000000000 ____D C:\Program Files\Malwarebytes
2022-09-01 23:04 - 2022-09-01 23:04 - 000102640 _____ C:\Users\denis\Downloads\Luminus_007633009931.pdf
2022-08-23 11:37 - 2022-08-23 11:37 - 000065944 _____ (Avast Software) C:\Windows\system32\Drivers\aswa848f539325c943d.tmp
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2022-08-23 11:36 - 2022-08-23 11:36 - 000000000 ____D C:\Program Files\Common Files\Piriform
2022-08-17 10:06 - 2022-08-17 10:06 - 000096684 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-06-30.pdf
2022-08-17 10:01 - 2022-08-17 10:01 - 000096634 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-07-31.pdf
2022-08-10 11:03 - 2022-08-10 11:03 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-10 11:03 - 2022-08-10 11:03 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-10 11:03 - 2022-08-10 11:03 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-10 11:03 - 2022-08-10 11:03 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-10 11:03 - 2022-08-10 11:03 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-10 10:54 - 2022-08-10 10:54 - 000000000 ___HD C:\$WinREAgent
2022-08-03 11:16 - 2022-08-03 11:16 - 000198428 _____ C:\Users\denis\Downloads\2022-08-03-11-16-35-walloniebelgiquetourisme-be-fr-becibleexportpdfnids8256.pdf
2022-08-01 15:54 - 2022-08-23 11:36 - 000000000 ____D C:\ProgramData\Piriform
2022-08-01 14:10 - 2022-08-01 14:10 - 000202354 _____ C:\Users\denis\Downloads\0030850367 812220740046 (1).pdf
2022-07-30 09:08 - 2022-07-30 09:08 - 000188020 _____ C:\Users\denis\Downloads\022849.pdf
2022-07-13 12:48 - 2022-07-13 12:48 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-07-13 12:48 - 2022-07-13 12:48 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-07-13 12:48 - 2022-07-13 12:48 - 000270848 _____ C:\Windows\system32\EsclScan.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000057344 _____ C:\Windows\system32\APMonUI.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2022-07-13 12:47 - 2022-07-13 12:47 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-07-13 12:47 - 2022-07-13 12:47 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll
2022-07-13 12:47 - 2022-07-13 12:47 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll
2022-07-08 13:04 - 2022-07-08 13:04 - 031573589 _____ C:\Users\denis\Downloads\Kit Marketing collection.zip
2022-07-07 14:07 - 2022-07-07 14:07 - 000202354 _____ C:\Users\denis\Downloads\0030850367 812220740046.pdf
2022-06-23 06:48 - 2022-06-23 06:48 - 000000000 ____D C:\Users\denis\.ms-ad
2022-06-21 14:34 - 2022-06-21 14:34 - 000299050 _____ C:\Users\denis\Downloads\Facture216002453160.pdf
2022-06-20 09:53 - 2022-06-20 09:53 - 000096634 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-05-31.pdf
2022-06-17 20:25 - 2022-06-17 20:25 - 000102165 _____ C:\Users\denis\Downloads\Luminus_005806823300.pdf
2022-06-17 20:24 - 2022-06-17 20:24 - 000165478 _____ C:\Users\denis\Downloads\Luminus_002009770010_Detail.pdf
2022-06-17 20:23 - 2022-06-17 20:23 - 000095083 _____ C:\Users\denis\Downloads\Luminus_009592965960.pdf
2022-06-15 19:14 - 2022-06-15 19:14 - 000479744 _____ C:\Windows\system32\AssignedAccessCsp.dll
2022-06-15 19:14 - 2022-06-15 19:14 - 000104448 _____ C:\Windows\system32\nettraceex.dll
2022-06-15 19:14 - 2022-06-15 19:14 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll
2022-06-15 19:13 - 2022-06-15 19:13 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-06-15 19:13 - 2022-06-15 19:13 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll
2022-06-10 09:37 - 2022-06-10 09:37 - 000040646 _____ C:\Users\denis\Downloads\0030850367 -1.pdf
2022-06-09 14:21 - 2022-06-09 14:21 - 000106209 _____ C:\Users\denis\Downloads\0030850367 812270250766.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 09:37 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-05 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-05 08:59 - 2021-01-27 23:34 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-05 08:54 - 2021-02-04 10:57 - 000000000 ____D C:\Program Files\CCleaner
2022-09-05 08:54 - 2021-01-27 19:54 - 000000000 ___RD C:\Users\denis\OneDrive
2022-09-05 07:52 - 2021-02-03 12:48 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-05 07:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-09-04 21:07 - 2020-11-19 01:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 21:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 21:07 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-04 12:12 - 2021-01-27 19:53 - 000000000 ___RD C:\Users\denis\3D Objects
2022-09-01 08:51 - 2021-12-11 23:25 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3784612590-1928540805-691411632-1001
2022-09-01 08:51 - 2021-01-27 19:54 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3784612590-1928540805-691411632-1001
2022-09-01 08:51 - 2021-01-27 19:25 - 000002417 _____ C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-30 20:54 - 2021-01-27 23:34 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 20:54 - 2021-01-27 23:34 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-27 23:02 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-08-25 08:44 - 2021-02-04 16:56 - 000000000 ____D C:\Users\denis\AppData\Local\CrashDumps
2022-08-25 08:43 - 2021-08-06 16:23 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-23 11:37 - 2021-08-18 15:41 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-23 10:48 - 2021-02-04 10:57 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-08-23 08:04 - 2021-01-27 23:34 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-23 08:03 - 2020-11-19 01:46 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 08:03 - 2020-11-19 01:46 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-14 09:05 - 2021-01-28 14:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-08-12 07:35 - 2021-01-27 19:09 - 001689004 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-12 07:35 - 2019-12-07 16:50 - 000758090 _____ C:\Windows\system32\perfh00C.dat
2022-08-12 07:35 - 2019-12-07 16:50 - 000143130 _____ C:\Windows\system32\perfc00C.dat
2022-08-12 07:31 - 2021-01-27 19:01 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-12 07:31 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-11 22:48 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-08-11 22:47 - 2020-11-19 00:44 - 000439128 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-11 22:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-11 22:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-11 21:15 - 2021-02-01 09:36 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-08-11 21:14 - 2021-11-25 00:21 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-10 11:07 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-10 11:03 - 2020-11-19 01:46 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-08-10 10:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-10 10:48 - 2021-01-28 11:03 - 000000000 ____D C:\Windows\system32\MRT
2022-08-10 10:46 - 2021-01-28 11:03 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-08 10:00 - 2021-01-27 19:53 - 000000000 ____D C:\Users\denis\AppData\Local\Packages
==================== SigCheckExt =========================
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2021-01-29 21:53 - 2016-09-29 10:44 - 001298584 _____ C:\Windows\ddmmain.exe
2021-08-06 16:23 - 2008-08-18 19:18 - 000077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2021-07-30 23:38 - 2021-11-08 03:20 - 002149184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01009.dll
2022-09-05 09:09 - 2022-09-05 09:09 - 002074112 _____ (Farbar) C:\Users\denis\Downloads\FRST.exe
2022-09-05 09:21 - 2022-09-05 09:21 - 002371072 _____ (Farbar) C:\Users\denis\Downloads\FRST64.exe
Exécuté par denis (administrateur) sur DESKTOP-FHVAPNR (Dell Inc. Studio 540) (05-09-2022 09:38:12)
Exécuté depuis C:\Users\denis\OneDrive\Bureau
Profils chargés: denis
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(C:\Users\denis\AppData\Local\Connective-SignID\signid-api.exe ->) (Trust1Team bvba -> ) C:\Users\denis\AppData\Local\Connective-SignID\signid-sandbox.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIPLE.EXE
(explorer.exe ->) (TomTom International B.V. -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\denis\AppData\Local\Microsoft\OneDrive\22.166.0807.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Trust1Team bvba -> ) C:\Users\denis\AppData\Local\Connective-SignID\signid-api.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\denis\AppData\Local\Microsoft\Teams\Update.exe [2443544 2020-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIPLE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [MicrosoftEdgeAutoLaunch_3209DC080F6E194BA57CAD0D06ACCA72] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\Run: [Connective-SignID API] => C:\Users\denis\AppData\Local\Connective-SignID\t1c-launch.exe [4669680 2022-02-09] (Trust1Team bvba -> )
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {850207d2-94a2-11ec-b0e6-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {ac31fa72-f12f-11eb-b0d4-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3784612590-1928540805-691411632-1001\...\MountPoints2: {ac31fce5-f12f-11eb-b0d4-0021705b55bc} - "H:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\EPSON XP-630 Series 64MonitorBE: C:\Windows\system32\E_YLMBPLE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1BE8B26D-7602-4326-8FDD-7A5CB8339574} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {1E17422D-6D22-4CCC-85DD-8EEA8E961B9E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {24A336E1-4679-4077-82C1-B8B1C4A42DC8} - System32\Tasks\CCleanerSkipUAC - denis => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {37FBAE86-72EE-45A7-AF63-51BA7F4985C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-27] (Google LLC -> Google LLC)
Task: {3B99EF15-D8ED-4313-9E9B-BE29DED48E4E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BFFCC56-4FBD-4AFB-B7F6-542EDBB98907} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6570472 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {725D2305-B9DB-4442-814C-C148B7EEBA78} - System32\Tasks\EPSON XP-630 Series Update {2BC9C321-1F9B-4B10-AB60-D30C10747D85} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {7E125C14-FAA0-4E62-A950-3C82D03C18CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-27] (Google LLC -> Google LLC)
Task: {8DF4A0CC-9BB1-4AFF-B034-348F44E0EADC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B1E0188C-CF5C-4958-937B-AD4EE6209E9C} - System32\Tasks\PC Cleaner automatic scan and notifications => C:\Program Files (x86)\PC Cleaner\PCCNotifications.exe (Pas de fichier) <==== ATTENTION
Task: {B26BE3F8-486F-402B-A13B-2C959BF2DF03} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116632 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC279FD6-DB79-4F54-B4CE-34DF77A75A88} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116632 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7079AD8-05B0-4B50-B1CD-DE7438F451A3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {C83A077C-2456-462D-ACCC-340EFA250836} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6570472 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD8352FF-070A-4BDD-A35C-CF99BD91F1CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DDC61826-C8E6-4E75-85B5-E63BBA98C9EF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {E13C3A72-E8BF-4608-BAF8-C5C45EB985DE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E776C66F-5643-46E5-9AC5-F28AA5C14325} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => C:\Program Files (x86)\PC HelpSoft Driver Updater\HDMTray.exe (Pas de fichier) <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-630 Series Update {2BC9C321-1F9B-4B10-AB60-D30C10747D85}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPLE.EXE:/EXE:{2BC9C321-1F9B-4B10-AB60-D30C10747D85} /F:UpdateWORKGROUP\DESKTOP-FHVAPNR$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{29189e8e-0956-4eb0-8ce9-56f0f04008d6}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\denis\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-05]
Edge Notifications: Default -> hxxps://www.7sur7.be; hxxps://www.stores-discount.com; hxxps://www.tomtom.com
Edge HomePage: Default -> about:blank
Edge StartupUrls: Default -> "hxxps://www.7sur7.be/"
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3784612590-1928540805-691411632-1001: connective.be/BrowserPlugin -> C:\Users\denis\AppData\Local\Connective\SigningFirefoxPlugin\npapi-plugin.dll [2021-07-05] (Connective n.v.) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default [2022-09-05]
CHR Notifications: Default -> hxxps://2.sabs-push.xyz; hxxps://assiste.com; hxxps://flymedia.cam; hxxps://gazette-foe.forum-box.com; hxxps://gladvideo.website; hxxps://mail.captaintortue.com; hxxps://n17.biz; hxxps://prof-datingday.com; hxxps://totalnicestories.com; hxxps://txxx.com; hxxps://veuxtube.com; hxxps://www.aufeminin.com; hxxps://www.cinenews.be; hxxps://www.cnetfrance.fr; hxxps://www.manomano.fr; hxxps://www.tnaflix.com
CHR StartupUrls: Default -> "hxxps://www.google.be/webhp?hl=fr"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?FORM=U523DF&PC=U523&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?FORM=U523DF&PC=U523&query={searchTerms}
CHR Extension: (FoE - Assistant) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2022-08-30]
CHR Extension: (Microsoft Rewards) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2022-08-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-25]
CHR Extension: (Zoom) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmbjbjdpkobdjplfobhljndfdfdipjhg [2022-06-29]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-04]
CHR Extension: (Je NE suis PAS un robot) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaaddglnfdmndlnomgigbmojbipbjfld [2021-10-28]
CHR Extension: (Connective signing extension) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-07-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2022-07-19]
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-04]
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-04]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA Profile: C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-09-04]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-02-13]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-05-08]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-05-08]
BRA Extension: (Brave NTP sponsored images) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\gigpfioocjkgbjgoonldcifaeajkbdln [2021-05-08]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-02-13]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-05-08]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\denis\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-05-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-11-08] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_cc1a5d7d67a7b51d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKsl3041c050; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9C4D8CCE-B6E5-4276-9A52-9F74ADEF094F}\MpKslDrv.sys [141576 2022-09-05] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 09:22 - 2022-09-05 09:38 - 000000000 ____D C:\FRST
2022-09-05 09:21 - 2022-09-05 09:21 - 002371072 _____ (Farbar) C:\Users\denis\Downloads\FRST64.exe
2022-09-05 09:12 - 2022-09-05 09:18 - 000000000 ____D C:\Users\denis\AppData\Roaming\ZHP
2022-09-05 09:12 - 2022-09-05 09:12 - 000000000 ____D C:\Users\denis\AppData\Local\ZHP
2022-09-05 09:09 - 2022-09-05 09:09 - 002074112 _____ (Farbar) C:\Users\denis\Downloads\FRST.exe
2022-09-04 12:04 - 2022-09-04 12:04 - 000000000 ____D C:\Users\denis\AppData\Local\mbam
2022-09-04 12:03 - 2022-09-04 12:03 - 002556344 _____ (Malwarebytes) C:\Users\denis\Downloads\MBSetup.exe
2022-09-04 12:03 - 2022-09-04 12:03 - 000000000 ____D C:\Program Files\Malwarebytes
2022-09-01 23:04 - 2022-09-01 23:04 - 000102640 _____ C:\Users\denis\Downloads\Luminus_007633009931.pdf
2022-08-23 11:37 - 2022-08-23 11:37 - 000065944 _____ (Avast Software) C:\Windows\system32\Drivers\aswa848f539325c943d.tmp
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2022-08-23 11:37 - 2022-08-23 11:37 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2022-08-23 11:36 - 2022-08-23 11:36 - 000000000 ____D C:\Program Files\Common Files\Piriform
2022-08-17 10:06 - 2022-08-17 10:06 - 000096684 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-06-30.pdf
2022-08-17 10:01 - 2022-08-17 10:01 - 000096634 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-07-31.pdf
2022-08-10 11:03 - 2022-08-10 11:03 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-10 11:03 - 2022-08-10 11:03 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-10 11:03 - 2022-08-10 11:03 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-10 11:03 - 2022-08-10 11:03 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 11:03 - 2022-08-10 11:03 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-10 11:03 - 2022-08-10 11:03 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-10 10:54 - 2022-08-10 10:54 - 000000000 ___HD C:\$WinREAgent
2022-08-03 11:16 - 2022-08-03 11:16 - 000198428 _____ C:\Users\denis\Downloads\2022-08-03-11-16-35-walloniebelgiquetourisme-be-fr-becibleexportpdfnids8256.pdf
2022-08-01 15:54 - 2022-08-23 11:36 - 000000000 ____D C:\ProgramData\Piriform
2022-08-01 14:10 - 2022-08-01 14:10 - 000202354 _____ C:\Users\denis\Downloads\0030850367 812220740046 (1).pdf
2022-07-30 09:08 - 2022-07-30 09:08 - 000188020 _____ C:\Users\denis\Downloads\022849.pdf
2022-07-13 12:48 - 2022-07-13 12:48 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-07-13 12:48 - 2022-07-13 12:48 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-07-13 12:48 - 2022-07-13 12:48 - 000270848 _____ C:\Windows\system32\EsclScan.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000057344 _____ C:\Windows\system32\APMonUI.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll
2022-07-13 12:48 - 2022-07-13 12:48 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2022-07-13 12:48 - 2022-07-13 12:48 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2022-07-13 12:47 - 2022-07-13 12:47 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-07-13 12:47 - 2022-07-13 12:47 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll
2022-07-13 12:47 - 2022-07-13 12:47 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll
2022-07-08 13:04 - 2022-07-08 13:04 - 031573589 _____ C:\Users\denis\Downloads\Kit Marketing collection.zip
2022-07-07 14:07 - 2022-07-07 14:07 - 000202354 _____ C:\Users\denis\Downloads\0030850367 812220740046.pdf
2022-06-23 06:48 - 2022-06-23 06:48 - 000000000 ____D C:\Users\denis\.ms-ad
2022-06-21 14:34 - 2022-06-21 14:34 - 000299050 _____ C:\Users\denis\Downloads\Facture216002453160.pdf
2022-06-20 09:53 - 2022-06-20 09:53 - 000096634 _____ C:\Users\denis\Downloads\Deside Renée Solange - 2022-05-31.pdf
2022-06-17 20:25 - 2022-06-17 20:25 - 000102165 _____ C:\Users\denis\Downloads\Luminus_005806823300.pdf
2022-06-17 20:24 - 2022-06-17 20:24 - 000165478 _____ C:\Users\denis\Downloads\Luminus_002009770010_Detail.pdf
2022-06-17 20:23 - 2022-06-17 20:23 - 000095083 _____ C:\Users\denis\Downloads\Luminus_009592965960.pdf
2022-06-15 19:14 - 2022-06-15 19:14 - 000479744 _____ C:\Windows\system32\AssignedAccessCsp.dll
2022-06-15 19:14 - 2022-06-15 19:14 - 000104448 _____ C:\Windows\system32\nettraceex.dll
2022-06-15 19:14 - 2022-06-15 19:14 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll
2022-06-15 19:13 - 2022-06-15 19:13 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-06-15 19:13 - 2022-06-15 19:13 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll
2022-06-10 09:37 - 2022-06-10 09:37 - 000040646 _____ C:\Users\denis\Downloads\0030850367 -1.pdf
2022-06-09 14:21 - 2022-06-09 14:21 - 000106209 _____ C:\Users\denis\Downloads\0030850367 812270250766.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 09:37 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-05 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-05 08:59 - 2021-01-27 23:34 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-05 08:54 - 2021-02-04 10:57 - 000000000 ____D C:\Program Files\CCleaner
2022-09-05 08:54 - 2021-01-27 19:54 - 000000000 ___RD C:\Users\denis\OneDrive
2022-09-05 07:52 - 2021-02-03 12:48 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-05 07:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-09-04 21:07 - 2020-11-19 01:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 21:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 21:07 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-04 12:12 - 2021-01-27 19:53 - 000000000 ___RD C:\Users\denis\3D Objects
2022-09-01 08:51 - 2021-12-11 23:25 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3784612590-1928540805-691411632-1001
2022-09-01 08:51 - 2021-01-27 19:54 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3784612590-1928540805-691411632-1001
2022-09-01 08:51 - 2021-01-27 19:25 - 000002417 _____ C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-30 20:54 - 2021-01-27 23:34 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 20:54 - 2021-01-27 23:34 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-27 23:02 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-08-25 08:44 - 2021-02-04 16:56 - 000000000 ____D C:\Users\denis\AppData\Local\CrashDumps
2022-08-25 08:43 - 2021-08-06 16:23 - 000000000 ____D C:\ProgramData\Avast Software
2022-08-23 11:37 - 2021-08-18 15:41 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-23 10:48 - 2021-02-04 10:57 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-08-23 08:04 - 2021-01-27 23:34 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-23 08:03 - 2020-11-19 01:46 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 08:03 - 2020-11-19 01:46 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-14 09:05 - 2021-01-28 14:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-08-12 07:35 - 2021-01-27 19:09 - 001689004 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-12 07:35 - 2019-12-07 16:50 - 000758090 _____ C:\Windows\system32\perfh00C.dat
2022-08-12 07:35 - 2019-12-07 16:50 - 000143130 _____ C:\Windows\system32\perfc00C.dat
2022-08-12 07:31 - 2021-01-27 19:01 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-12 07:31 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-11 22:48 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2022-08-11 22:47 - 2020-11-19 00:44 - 000439128 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-11 22:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-11 22:46 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-11 22:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-11 21:15 - 2021-02-01 09:36 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-08-11 21:14 - 2021-11-25 00:21 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-10 11:07 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-10 11:03 - 2020-11-19 01:46 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-08-10 10:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-10 10:48 - 2021-01-28 11:03 - 000000000 ____D C:\Windows\system32\MRT
2022-08-10 10:46 - 2021-01-28 11:03 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-08 10:00 - 2021-01-27 19:53 - 000000000 ____D C:\Users\denis\AppData\Local\Packages
==================== SigCheckExt =========================
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
2021-01-29 21:53 - 2016-09-29 10:44 - 001298584 _____ C:\Windows\ddmmain.exe
2021-08-06 16:23 - 2008-08-18 19:18 - 000077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2021-07-30 23:38 - 2021-11-08 03:20 - 002149184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01009.dll
2022-09-05 09:09 - 2022-09-05 09:09 - 002074112 _____ (Farbar) C:\Users\denis\Downloads\FRST.exe
2022-09-05 09:21 - 2022-09-05 09:21 - 002371072 _____ (Farbar) C:\Users\denis\Downloads\FRST64.exe