Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09.01.2024
Exécuté par didier (administrateur) sur DESKTOP-JSRUVIV (ASUSTeK COMPUTER INC. X751LB) (10-01-2024 18:13:32)
Exécuté depuis C:\Users\didier\Desktop\FRST64.exe
Profils chargés: didier
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(explorer.exe ->) (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP) C:\Program Files (x86)\Notifications de Généatique\Notifications de Généatique.exe
(explorer.exe ->) (Learnpulse -> Learnpulse) C:\Users\didier\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\Integrator.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\MemfilesService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Konstantin Polyakov IP -> Chemtable Software) C:\Program Files\Autorun Organizer\StartupCheckingService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(svchost.exe ->) (Konstantin Polyakov -> Chemtable Software) C:\Program Files\Autorun Organizer\AutorunOrganizer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1767760 2016-06-15] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [uupdate] => C:\ProgramData\wDcLibs\uhelper.exe [512280 2019-11-28] (Shenzhen Yi Xing Investment Co., Ltd. -> ) <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2591152 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27139896 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116058488 2022-03-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Screenpresso] => C:\Users\didier\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20209672 2023-11-22] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Opera Browser Assistant] => C:\Users\didier\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4042960 2021-06-02] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Time-Lapse Tool Update Checker] => C:\Users\didier\AppData\Local\Programs\AVWare\Time-Lapse Tool\TimeLapseTool.exe [12196272 2021-09-03] (AVWare (Andrey Vladimirovich Ivanov IP) -> AVWare)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\didier\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Pas de fichier)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [com.messenger] => C:\Users\didier\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Pas de fichier)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [MicrosoftEdgeAutoLaunch_2F8B4AA487B076AB91B5EE7868B0406D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11556768 2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF-XChange5: C:\Windows\system32\pxc50pm.dll [57056 2016-01-18] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\creamodele.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\Custom\Protectis.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\InstalledSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb [2013-12-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.217\Installer\chrmstp.exe [2024-01-10] (Google LLC -> Google LLC)
Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe [2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Généatique.lnk [2022-11-10]
ShortcutTarget: Notifications de Généatique.lnk -> C:\Program Files (x86)\Notifications de Généatique\Notifications de Généatique.exe (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-04-22]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2F73BBB2-892D-4903-A65C-1933DFE022E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {EA3BADAB-A58D-4FC2-8A2C-8EF9A78E3A43} - System32\Tasks\Autorun Organizer => C:\Program Files\Autorun Organizer\AutorunOrganizer.exe [22476944 2021-06-01] (Konstantin Polyakov -> Chemtable Software)
Task: {091520CF-73D5-4DF1-A639-A818A8DBA282} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {54DDDAEF-CF3A-4336-A284-9E4D2CBE1C96} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "dd036c41-b3b9-4daf-88ee-39983cf6496a" --version "6.19.10858" --silent
Task: {68963C5A-A6A7-4716-94F2-E5A04D72886A} - System32\Tasks\CCleanerSkipUAC - didier => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E20E1C71-C67A-47E0-ACB0-BDD8F7095DE9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5550856 2023-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {4309397E-11B8-4A07-A6FB-522400E1D88A} - System32\Tasks\DelayedItemsByChemtableSoftware\CCleaner Smart Cleaning => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A7FA8F40-D316-46BF-BC4B-0E7EC7E4747D} - System32\Tasks\DelayedItemsByChemtableSoftware\HP Digital Imaging Monitor => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328 2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {B971851B-3AE1-41B1-B0E6-5DDB8CD858E9} - System32\Tasks\DelayedItemsByChemtableSoftware\Opera Browser Assistant => C:\Users\didier\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4042960 2021-06-02] (Opera Software AS -> Opera Software)
Task: {2BFD325F-7254-4D2B-85EF-7CFBF1479370} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem122.0.6234.0{0EBE0A92-0C0B-4314-A7FE-98921B1E6B88} => C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
Task: {18A7422B-55ED-46CD-9076-B5D691FE459A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D7CF1C0-6DA1-4E7C-9D76-C3E34CB79439} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21915840 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E02989E-275A-4CF1-8B2D-BF2BD723B016} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21915840 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {607866DA-51E2-4D42-A897-0343F4B668A4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {610D2075-2836-410C-A5A1-57E7F541263E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6140B5CB-A935-44DB-B109-BF8F93A929EF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE0F7F09-190E-4E53-B057-2FE6BDA21897} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB9E099C-EA80-4880-91B7-EEC42FDC472F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {309196A7-3663-4149-9D91-DB7BA8CF7A52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C2D6CF7B-11D6-4005-84FD-AE63CB23EEBE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {43BD1841-0732-4A54-B055-FBAC85526D0B} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [493568 2023-11-01] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {E3A234AE-D0FA-4D73-9113-47B1ADB3B29B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {D386D8BD-19FE-482A-876B-3F6865759233} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-847626205-4240953274-1740506819-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {506A8D65-0611-4EFD-807D-3509DF98FD02} - System32\Tasks\Opera scheduled Autoupdate 1618560262 => C:\Users\didier\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-05] (Opera Norway AS -> Opera Software)
Task: {368ABF18-955B-4743-869A-97F04977216A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A0CB2DB6-13A6-4FC1-9284-BD71120095C5} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4E921BC9-9CEB-4982-B22C-C559BD66C566} - System32\Tasks\Sump Task (One-Time) => "C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe" /sup2 (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{020875b1-c4e3-4c45-b575-3619c4e19cd3}: [DhcpNameServer] 192.168.54.11
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\6425545424F485F5059454252554F57324: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\6425545424F485F5E414458414C49454F57535: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\94F445330323130387A62727: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C414D4149435F4E4D2537484A7: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C496675626F687D244448344: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C496675626F687D244448344: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-10]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-12-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
Edge Extension: (Edge relevant text changes) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: 0lfsektm.default
FF ProfilePath: C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0lfsektm.default [2022-04-05]
FF user.js: detected! => C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0lfsektm.default\user.js [2022-04-05]
FF ProfilePath: C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0bg2lm6z.default-release [2024-01-10]
FF user.js: detected! => C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0bg2lm6z.default-release\user.js [2022-04-05]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-04-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-04-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @samsungsmartcam.com/npwViewer -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin-x32: @samsungsmartcam.com/npwViewer_turn -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib_turn.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: samsungtechwin.com/SmartCamFinder -> C:\Program Files (x86)\Samsung\SmartCam\npSmartCamFinder.dll [2018-02-05] (Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: @samsungsmartcam.com/npwViewer -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: @samsungsmartcam.com/npwViewer_turn -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib_turn.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: samsungtechwin.com/SmartCamFinder -> C:\Program Files (x86)\Samsung\SmartCam\npSmartCamFinder.dll [2018-02-05] (Samsung Techwin) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default [2024-01-10]
CHR Extension: (Google Traduction) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22]
CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-12-15]
CHR Extension: (the web) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-09]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2024-01-02]
CHR Extension: (Mino (anciennement Minty): Coupon automatique) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefnkplkicihcoenmljhbihhaaagjhpp [2023-12-26]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-12-19]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2024-01-02]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2024-01-10]
CHR Extension: (FranceVerif - Sécurité en ligne) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkejggchhilmabpicojddgaahkkgoln [2024-01-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-14]
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-01-10]
CHR Extension: (AdGuard AdBlocker) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-11-24]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06]
CHR Extension: (Tampermonkey) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-11-26]
CHR Extension: (wanteeed) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-12-09]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-07-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-29]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-12-07]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mfidniedemcgceagapgdekdbmanojomk [2022-12-13]
CHR Extension: (FranceVerif) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mhkejggchhilmabpicojddgaahkkgoln [2022-11-26]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-11-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-24]
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\System Profile [2024-01-10]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-847626205-4240953274-1740506819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 Chemtable Startup Checking; C:\Program Files\Autorun Organizer\StartupCheckingService.exe [11893552 2020-12-09] (Konstantin Polyakov IP -> Chemtable Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9201848 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\FileSyncHelper.exe [3509792 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService122.0.6234.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService122.0.6234.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [888216 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
R2 GUMemfilesService; C:\Program Files (x86)\Glary Utilities\MemfilesService.exe [317336 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities\GUPMService.exe [76696 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\OneDriveUpdaterService.exe [3846064 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [60440 2015-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [110544 2018-03-06] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink Corp. -> CyberLink)
S3 clwvd7; C:\WINDOWS\System32\drivers\clwvd7.sys [49944 2016-06-02] (CyberLink Corp. -> CyberLink Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2022-03-09] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [145480 2022-08-13] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 GUBootStartup; C:\WINDOWS\system32\drivers\GUBootStartup.sys [28936 2023-11-27] (Glarysoft LTD -> Glarysoft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-03-09] (Martin Malik - REALiX -> REALiX(tm))
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-04-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 StillCam; C:\WINDOWS\system32\DRIVERS\serscan.sys [13312 2020-11-19] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-10 18:13 - 2024-01-10 18:16 - 000033542 _____ C:\Users\didier\Desktop\FRST.txt
2024-01-10 18:11 - 2024-01-10 18:15 - 000000000 ____D C:\FRST
2024-01-10 18:09 - 2024-01-10 18:09 - 002388992 _____ (Farbar) C:\Users\didier\Desktop\FRST64.exe
2024-01-10 17:34 - 2024-01-10 17:34 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-01-10 17:25 - 2024-01-10 17:25 - 000000085 _____ C:\WINDOWS\wininit.ini
2024-01-10 14:27 - 2024-01-10 14:27 - 003611856 _____ (RCS LT) C:\Users\didier\Downloads\CCSetup.exe
2024-01-10 12:14 - 2024-01-10 12:15 - 000000000 ____D C:\ProgramData\MB2Migration
2024-01-10 12:14 - 2024-01-10 12:14 - 000000000 ____D C:\ProgramData\MB3Migration
2024-01-10 12:14 - 2024-01-10 12:14 - 000000000 ____D C:\ProgramData\MB3CoreBackup
2024-01-10 09:50 - 2024-01-10 09:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2024-01-10 09:48 - 2024-01-10 09:48 - 007195168 _____ (EnigmaSoft Limited) C:\Users\didier\Downloads\SpyHunter-Installer.exe
2024-01-10 09:40 - 2024-01-10 09:40 - 000000000 ____D C:\Users\didier\Documents\FeedbackHub
2024-01-10 09:15 - 2024-01-10 17:33 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2024-01-10 09:15 - 2024-01-10 17:25 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2024-01-10 09:13 - 2024-01-10 09:13 - 065427184 _____ (Safer-Networking Ltd. ) C:\Users\didier\Downloads\spybotsd-2.9.82.0.exe
2024-01-10 08:04 - 2024-01-10 08:08 - 000000000 ___HD C:\$WinREAgent
2024-01-10 08:00 - 2024-01-10 08:00 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-10 08:00 - 2024-01-10 08:00 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-10 07:55 - 2024-01-10 07:55 - 001376304 _____ (Google LLC) C:\Users\didier\Downloads\ChromeSetup.exe
2024-01-09 11:02 - 2024-01-09 11:56 - 000000000 ____D C:\Users\didier\Desktop\Galland
2024-01-09 09:09 - 2024-01-09 09:09 - 000000000 ____D C:\WINDOWS\InternalKernelGrid4
2024-01-08 14:35 - 2024-01-08 14:35 - 000004240 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1618560262
2024-01-08 14:35 - 2024-01-08 14:35 - 000001457 _____ C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-01-05 09:04 - 2024-01-05 09:07 - 000000000 ____D C:\WINDOWS\NvOptimizerLog
2024-01-05 09:04 - 2024-01-05 09:04 - 000003582 _____ C:\WINDOWS\system32\Tasks\NvOptimizerTaskUpdater_V2
2024-01-05 09:04 - 2024-01-05 09:04 - 000000271 _____ C:\WINDOWS\system32\NvWinSearchOptimizer.ps1
2024-01-05 09:04 - 2024-01-05 09:04 - 000000000 ____D C:\Users\didier\AppData\Local\vlc-updater
2024-01-05 09:04 - 2024-01-05 09:04 - 000000000 ____D C:\Users\didier\AppData\Local\TaskUpdater
2024-01-05 07:59 - 2024-01-05 07:59 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-05 07:56 - 2024-01-05 07:56 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-05 07:56 - 2024-01-05 07:56 - 000002063 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-01-05 07:26 - 2024-01-05 07:26 - 000000000 ____D C:\Users\didier\AppData\Local\Power2Go10
2024-01-05 07:25 - 2024-01-05 07:25 - 000000000 ____D C:\Users\Public\Documents\CyberLink
2024-01-04 23:39 - 2024-01-05 07:26 - 000000000 ____D C:\Users\didier\Documents\YouCam
2024-01-04 23:38 - 2016-06-02 04:48 - 000049944 _____ (CyberLink Corporation) C:\WINDOWS\system32\Drivers\clwvd7.sys
2024-01-04 23:28 - 2024-01-04 23:29 - 000000000 ____D C:\ProgramData\PDVD
2024-01-04 23:24 - 2014-11-05 10:21 - 000103176 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualBus01.sys
2024-01-04 23:20 - 2024-01-05 07:54 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2024-01-04 23:20 - 2013-09-24 16:12 - 000025864 _____ (Cyberlink Co.,Ltd.) C:\WINDOWS\system32\Drivers\CLBStor.sys
2024-01-04 23:18 - 2024-01-05 07:54 - 000000000 ____D C:\Program Files (x86)\CyberLink
2024-01-04 23:16 - 2024-01-05 07:53 - 000000000 ____D C:\ProgramData\Temp
2024-01-04 20:33 - 2024-01-04 20:33 - 000000000 ____D C:\Users\didier\Documents\Audacity
2024-01-04 20:32 - 2024-01-04 20:35 - 000000000 ____D C:\Users\didier\AppData\Roaming\audacity
2024-01-04 20:32 - 2024-01-04 20:32 - 000000867 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2024-01-04 20:32 - 2024-01-04 20:32 - 000000000 ____D C:\Users\didier\AppData\Local\audacity
2024-01-04 20:32 - 2024-01-04 20:32 - 000000000 ____D C:\Program Files\Audacity
2024-01-04 18:17 - 2024-01-04 18:24 - 000000000 ____D C:\Users\didier\AppData\Roaming\Movavi Photo Editor 24
2024-01-04 18:17 - 2024-01-04 18:17 - 000012707 _____ C:\ProgramData\imlmdpgi.ywe
2024-01-04 17:32 - 2024-01-05 07:47 - 000000000 ____D C:\Users\didier\AppData\Roaming\CyberLink
2024-01-04 17:32 - 2024-01-04 17:32 - 000000000 ____D C:\Users\didier\Documents\CyberLink
2024-01-04 17:31 - 2024-01-05 07:52 - 000000000 ____D C:\Users\didier\AppData\Local\Cyberlink
2024-01-04 17:29 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\SUPPORTDIR
2024-01-04 17:29 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\install_clap
2024-01-04 17:28 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\CLSK
2024-01-04 17:22 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\CyberLink
2024-01-02 18:18 - 2024-01-02 18:18 - 000001535 _____ C:\Users\didier\Documents\hosts.txt
2024-01-02 11:33 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Roaming\ufcphsom
2024-01-02 11:08 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Local\HitPaw Software
2024-01-02 11:08 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Local\cache
2024-01-02 11:08 - 2024-01-02 11:08 - 000000000 ____D C:\Users\didier\AppData\Roaming\TSHelpService
2024-01-02 10:56 - 2024-01-02 18:26 - 000000000 ____D C:\Program Files (x86)\HitPaw
2023-12-19 14:23 - 2023-12-19 14:23 - 000002603 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities.lnk
2023-12-19 14:23 - 2023-12-19 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
2023-12-19 14:18 - 2023-12-19 14:18 - 000000000 ____D C:\Users\didier\AppData\Local\Ashampoo
2023-12-19 14:06 - 2023-12-19 15:18 - 000000000 ____D C:\ProgramData\GlarySoft
2023-12-19 14:06 - 2023-12-19 14:41 - 000000000 ____D C:\Program Files (x86)\Glary Utilities
2023-12-19 14:05 - 2023-12-19 14:05 - 000001345 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2020.lnk
2023-12-19 14:05 - 2023-12-19 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2023-12-19 14:04 - 2023-12-19 15:15 - 000000000 ____D C:\Users\didier\AppData\Roaming\GlarySoft
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\Users\didier\AppData\Roaming\DiskDefrag
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\ProgramData\Ashampoo
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2023-12-19 13:52 - 2023-12-19 13:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\DelayedItemsByChemtableSoftware
2023-12-19 13:43 - 2023-12-19 13:43 - 000003916 _____ C:\WINDOWS\system32\Tasks\Autorun Organizer
2023-12-19 13:43 - 2023-12-19 13:43 - 000000000 ____D C:\Users\didier\AppData\Roaming\ChemTable Software
2023-12-19 13:43 - 2023-12-19 13:43 - 000000000 ____D C:\Users\didier\AppData\Local\ChemTable Software
2023-12-19 13:42 - 2023-12-19 13:42 - 000000974 _____ C:\Users\Public\Desktop\Autorun Organizer.lnk
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Organizer
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\ProgramData\Chemtable Software
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\Program Files\Autorun Organizer
2023-12-16 09:57 - 2023-12-16 09:57 - 000001724 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2023-12-16 09:57 - 2023-12-16 09:57 - 000000000 ____D C:\Users\didier\AppData\Roaming\HPPSDr
2023-12-16 09:57 - 2023-12-16 09:57 - 000000000 ____D C:\HP
2023-12-14 18:09 - 2023-12-14 18:09 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-14 13:08 - 2023-12-14 13:08 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 20:44 - 2024-01-07 10:19 - 000004218 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-13 20:44 - 2023-12-14 18:12 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-13 20:44 - 2023-12-13 20:45 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-10 17:38 - 2021-04-15 10:03 - 000000000 ____D C:\Program Files\CCleaner
2024-01-10 17:36 - 2022-11-10 10:25 - 000000000 ____D C:\Users\didier\AppData\Roaming\NotificationsGeneatique
2024-01-10 17:36 - 2021-11-10 08:19 - 000000000 ____D C:\Users\didier\AppData\Local\CrashDumps
2024-01-10 17:36 - 2021-04-13 17:49 - 012274007 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2024-01-10 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-10 17:34 - 2021-04-13 18:21 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-10 17:34 - 2021-04-13 17:42 - 000000000 __SHD C:\Users\didier\IntelGraphicsProfiles
2024-01-10 17:33 - 2021-04-17 08:16 - 000008192 ___SH C:\DumpStack.log.tmp
2024-01-10 17:33 - 2020-11-19 00:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-10 17:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-01-10 17:33 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-01-10 17:25 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-01-10 16:44 - 2021-04-23 08:28 - 000099829 _____ C:\Users\didier\Desktop\Demandes d'actes par mail.xlsx
2024-01-10 16:21 - 2020-11-18 23:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-10 15:13 - 2021-04-13 17:41 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-10 15:13 - 2019-12-07 15:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2024-01-10 15:13 - 2019-12-07 15:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2024-01-10 15:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-01-10 14:41 - 2021-04-15 13:06 - 000000000 ____D C:\Users\didier\AppData\Roaming\Microsoft\Excel
2024-01-10 14:28 - 2021-09-12 17:14 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-01-10 12:19 - 2023-04-23 13:03 - 000000000 ____D C:\Users\didier\AppData\Local\Malwarebytes
2024-01-10 12:11 - 2021-04-15 19:41 - 000000000 ____D C:\Users\didier\AppData\Local\JDownloader 2.0
2024-01-10 12:08 - 2021-12-15 14:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-10 12:07 - 2023-12-01 18:23 - 000000000 ____D C:\ProgramData\Lavasoft
2024-01-10 12:07 - 2022-03-09 16:55 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-01-10 10:29 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-10 10:20 - 2021-04-15 13:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-10 10:06 - 2021-04-15 13:33 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-01-10 09:03 - 2021-04-13 17:42 - 000000000 ____D C:\Users\didier\AppData\Local\Packages
2024-01-10 09:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-10 07:56 - 2021-04-15 09:33 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-09 22:38 - 2022-03-09 17:12 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2024-01-09 22:29 - 2020-11-18 23:28 - 000511904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-09 20:21 - 2021-04-15 09:48 - 000000000 ____D C:\Users\didier\AppData\Roaming\vlc
2024-01-09 18:44 - 2021-04-15 13:04 - 000000000 ____D C:\Users\didier\AppData\Roaming\Microsoft\Word
2024-01-08 14:49 - 2021-04-13 18:44 - 000000000 ____D C:\ProgramData\Package Cache
2024-01-08 07:59 - 2023-11-30 18:33 - 000000972 _____ C:\Users\didier\Desktop\Acrylic Wi-Fi Home.lnk
2024-01-08 07:59 - 2023-03-20 20:45 - 000002251 _____ C:\Users\didier\Desktop\WhatsApp.lnk
2024-01-08 07:59 - 2022-11-30 11:30 - 000001146 _____ C:\Users\didier\Desktop\Format Factory.lnk
2024-01-08 07:59 - 2022-11-10 10:22 - 000001090 _____ C:\Users\didier\Desktop\Protectis - Sauvegarde en ligne.lnk
2024-01-08 07:59 - 2022-05-16 12:59 - 000002007 _____ C:\Users\didier\Desktop\DVD-Cloner Gold.lnk
2024-01-08 07:59 - 2022-02-27 10:30 - 000002292 _____ C:\Users\didier\Desktop\La France à la Loupe 2.lnk
2024-01-08 07:59 - 2021-10-22 16:54 - 000002379 _____ C:\Users\didier\Desktop\Messenger.lnk
2024-01-08 07:59 - 2021-10-16 15:06 - 000001599 _____ C:\Users\didier\Desktop\Time-Lapse Tool.lnk
2024-01-08 07:59 - 2021-04-16 09:04 - 000001414 _____ C:\Users\didier\Desktop\Navigateur Opera.lnk
2024-01-08 07:59 - 2021-04-15 19:47 - 000002181 _____ C:\Users\didier\Desktop\JDownloader 2.lnk
2024-01-08 07:59 - 2021-04-15 10:02 - 000001167 _____ C:\Users\didier\Desktop\PhotoFiltre Studio X.lnk
2024-01-07 10:45 - 2021-08-31 23:01 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-07 10:45 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-05 11:00 - 2021-04-16 19:31 - 000000000 ____D C:\Users\didier\AppData\LocalLow\Adobe
2024-01-04 18:17 - 2022-07-18 11:20 - 000000000 ____D C:\Users\didier\AppData\Local\Movavi
2024-01-04 17:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-20 14:41 - 2021-04-23 08:28 - 000012670 _____ C:\Users\didier\Desktop\Nouveau Budget 2022.xlsx
2023-12-19 14:37 - 2021-04-17 09:24 - 000000000 ____D C:\Users\didier\AppData\Local\D3DSCache
2023-12-19 13:44 - 2021-04-17 08:33 - 000000000 ____D C:\Users\didier
2023-12-16 09:58 - 2021-04-22 07:41 - 000000000 ____D C:\ProgramData\HP
2023-12-16 09:57 - 2021-04-22 07:42 - 000000000 ____D C:\Program Files (x86)\HP
2023-12-15 22:45 - 2019-12-17 18:24 - 000000000 ____D C:\Temp
2023-12-15 08:52 - 2023-11-30 22:17 - 000012760 _____ C:\Users\didier\Desktop\Tension.xlsx
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-14 18:09 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-14 13:08 - 2020-11-19 00:31 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-14 10:22 - 2015-10-30 08:24 - 000000202 _____ C:\WINDOWS\win.ini
2023-12-12 08:33 - 2023-12-01 18:30 - 000000000 ____D C:\Users\didier\AppData\Roaming\ZHP
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par didier (administrateur) sur DESKTOP-JSRUVIV (ASUSTeK COMPUTER INC. X751LB) (10-01-2024 18:13:32)
Exécuté depuis C:\Users\didier\Desktop\FRST64.exe
Profils chargés: didier
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(explorer.exe ->) (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP) C:\Program Files (x86)\Notifications de Généatique\Notifications de Généatique.exe
(explorer.exe ->) (Learnpulse -> Learnpulse) C:\Users\didier\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\Integrator.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities\MemfilesService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Konstantin Polyakov IP -> Chemtable Software) C:\Program Files\Autorun Organizer\StartupCheckingService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(svchost.exe ->) (Konstantin Polyakov -> Chemtable Software) C:\Program Files\Autorun Organizer\AutorunOrganizer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart [1767760 2016-06-15] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [uupdate] => C:\ProgramData\wDcLibs\uhelper.exe [512280 2019-11-28] (Shenzhen Yi Xing Investment Co., Ltd. -> ) <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2591152 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27139896 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116058488 2022-03-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Screenpresso] => C:\Users\didier\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20209672 2023-11-22] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Opera Browser Assistant] => C:\Users\didier\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4042960 2021-06-02] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Time-Lapse Tool Update Checker] => C:\Users\didier\AppData\Local\Programs\AVWare\Time-Lapse Tool\TimeLapseTool.exe [12196272 2021-09-03] (AVWare (Andrey Vladimirovich Ivanov IP) -> AVWare)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\didier\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Pas de fichier)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [com.messenger] => C:\Users\didier\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Pas de fichier)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [MicrosoftEdgeAutoLaunch_2F8B4AA487B076AB91B5EE7868B0406D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-847626205-4240953274-1740506819-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11556768 2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF-XChange5: C:\Windows\system32\pxc50pm.dll [57056 2016-01-18] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\creamodele.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\Custom\Protectis.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\InstalledSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb [2013-12-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.217\Installer\chrmstp.exe [2024-01-10] (Google LLC -> Google LLC)
Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe [2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Généatique.lnk [2022-11-10]
ShortcutTarget: Notifications de Généatique.lnk -> C:\Program Files (x86)\Notifications de Généatique\Notifications de Généatique.exe (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-04-22]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2F73BBB2-892D-4903-A65C-1933DFE022E7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {EA3BADAB-A58D-4FC2-8A2C-8EF9A78E3A43} - System32\Tasks\Autorun Organizer => C:\Program Files\Autorun Organizer\AutorunOrganizer.exe [22476944 2021-06-01] (Konstantin Polyakov -> Chemtable Software)
Task: {091520CF-73D5-4DF1-A639-A818A8DBA282} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {54DDDAEF-CF3A-4336-A284-9E4D2CBE1C96} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "dd036c41-b3b9-4daf-88ee-39983cf6496a" --version "6.19.10858" --silent
Task: {68963C5A-A6A7-4716-94F2-E5A04D72886A} - System32\Tasks\CCleanerSkipUAC - didier => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E20E1C71-C67A-47E0-ACB0-BDD8F7095DE9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5550856 2023-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {4309397E-11B8-4A07-A6FB-522400E1D88A} - System32\Tasks\DelayedItemsByChemtableSoftware\CCleaner Smart Cleaning => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A7FA8F40-D316-46BF-BC4B-0E7EC7E4747D} - System32\Tasks\DelayedItemsByChemtableSoftware\HP Digital Imaging Monitor => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328 2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {B971851B-3AE1-41B1-B0E6-5DDB8CD858E9} - System32\Tasks\DelayedItemsByChemtableSoftware\Opera Browser Assistant => C:\Users\didier\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4042960 2021-06-02] (Opera Software AS -> Opera Software)
Task: {2BFD325F-7254-4D2B-85EF-7CFBF1479370} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem122.0.6234.0{0EBE0A92-0C0B-4314-A7FE-98921B1E6B88} => C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
Task: {18A7422B-55ED-46CD-9076-B5D691FE459A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D7CF1C0-6DA1-4E7C-9D76-C3E34CB79439} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21915840 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E02989E-275A-4CF1-8B2D-BF2BD723B016} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21915840 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {607866DA-51E2-4D42-A897-0343F4B668A4} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {610D2075-2836-410C-A5A1-57E7F541263E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6140B5CB-A935-44DB-B109-BF8F93A929EF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE0F7F09-190E-4E53-B057-2FE6BDA21897} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB9E099C-EA80-4880-91B7-EEC42FDC472F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {309196A7-3663-4149-9D91-DB7BA8CF7A52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C2D6CF7B-11D6-4005-84FD-AE63CB23EEBE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {43BD1841-0732-4A54-B055-FBAC85526D0B} - System32\Tasks\NvOptimizerTaskUpdater_V2 => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [493568 2023-11-01] (Microsoft Windows -> Microsoft Corporation) -> -File C:/Windows/System32/NvWinSearchOptimizer.ps1 <==== ATTENTION
Task: {E3A234AE-D0FA-4D73-9113-47B1ADB3B29B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {D386D8BD-19FE-482A-876B-3F6865759233} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-847626205-4240953274-1740506819-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {506A8D65-0611-4EFD-807D-3509DF98FD02} - System32\Tasks\Opera scheduled Autoupdate 1618560262 => C:\Users\didier\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-05] (Opera Norway AS -> Opera Software)
Task: {368ABF18-955B-4743-869A-97F04977216A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A0CB2DB6-13A6-4FC1-9284-BD71120095C5} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2022-04-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4E921BC9-9CEB-4982-B22C-C559BD66C566} - System32\Tasks\Sump Task (One-Time) => "C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe" /sup2 (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{020875b1-c4e3-4c45-b575-3619c4e19cd3}: [DhcpNameServer] 192.168.54.11
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\6425545424F485F5059454252554F57324: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\6425545424F485F5E414458414C49454F57535: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\94F445330323130387A62727: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C414D4149435F4E4D2537484A7: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C496675626F687D244448344: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8752f33d-c817-4e55-89fd-86a57d7dcf1b}\C496675626F687D244448344: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-10]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-12-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28]
Edge Extension: (Edge relevant text changes) - C:\Users\didier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: 0lfsektm.default
FF ProfilePath: C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0lfsektm.default [2022-04-05]
FF user.js: detected! => C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0lfsektm.default\user.js [2022-04-05]
FF ProfilePath: C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0bg2lm6z.default-release [2024-01-10]
FF user.js: detected! => C:\Users\didier\AppData\Roaming\Mozilla\Firefox\Profiles\0bg2lm6z.default-release\user.js [2022-04-05]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-04-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-04-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @samsungsmartcam.com/npwViewer -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin-x32: @samsungsmartcam.com/npwViewer_turn -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib_turn.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: samsungtechwin.com/SmartCamFinder -> C:\Program Files (x86)\Samsung\SmartCam\npSmartCamFinder.dll [2018-02-05] (Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: @samsungsmartcam.com/npwViewer -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: @samsungsmartcam.com/npwViewer_turn -> C:\Program Files (x86)\Samsung\SmartCam\npwViewer_lib_turn.dll [2018-02-05] (Hanwha Techwin Co., Ltd. -> Samsung Techwin) [Fichier non signé]
FF Plugin HKU\S-1-5-21-847626205-4240953274-1740506819-1001: samsungtechwin.com/SmartCamFinder -> C:\Program Files (x86)\Samsung\SmartCam\npSmartCamFinder.dll [2018-02-05] (Samsung Techwin) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default [2024-01-10]
CHR Extension: (Google Traduction) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22]
CHR Extension: (Honey: Automatic Coupons & Rewards) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2023-12-15]
CHR Extension: (the web) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafkaabahcikblhbogbnbjodajmhbini [2024-01-09]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2024-01-02]
CHR Extension: (Mino (anciennement Minty): Coupon automatique) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\fefnkplkicihcoenmljhbihhaaagjhpp [2023-12-26]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-12-19]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2024-01-02]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2024-01-10]
CHR Extension: (FranceVerif - Sécurité en ligne) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkejggchhilmabpicojddgaahkkgoln [2024-01-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-14]
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4 [2024-01-10]
CHR Extension: (AdGuard AdBlocker) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-11-24]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-12-06]
CHR Extension: (Tampermonkey) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-11-26]
CHR Extension: (wanteeed) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\emnoomldgleagdjapdeckpmebokijail [2022-12-09]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-07-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-29]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-12-07]
CHR Extension: (Coupert - Codes Promo Automatiques & Cashback) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mfidniedemcgceagapgdekdbmanojomk [2022-12-13]
CHR Extension: (FranceVerif) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mhkejggchhilmabpicojddgaahkkgoln [2022-11-26]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-11-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didier\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-24]
CHR Profile: C:\Users\didier\AppData\Local\Google\Chrome\User Data\System Profile [2024-01-10]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-847626205-4240953274-1740506819-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 Chemtable Startup Checking; C:\Program Files\Autorun Organizer\StartupCheckingService.exe [11893552 2020-12-09] (Konstantin Polyakov IP -> Chemtable Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9201848 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\FileSyncHelper.exe [3509792 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService122.0.6234.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService122.0.6234.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6234.0\updater.exe [4639520 2024-01-08] (Google LLC -> Google LLC) <==== ATTENTION
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [888216 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
R2 GUMemfilesService; C:\Program Files (x86)\Glary Utilities\MemfilesService.exe [317336 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities\GUPMService.exe [76696 2023-11-20] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\OneDriveUpdaterService.exe [3846064 2023-11-21] (Microsoft Corporation -> Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [60440 2015-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [110544 2018-03-06] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink Corp. -> CyberLink)
S3 clwvd7; C:\WINDOWS\System32\drivers\clwvd7.sys [49944 2016-06-02] (CyberLink Corp. -> CyberLink Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2022-03-09] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [145480 2022-08-13] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 GUBootStartup; C:\WINDOWS\system32\drivers\GUBootStartup.sys [28936 2023-11-27] (Glarysoft LTD -> Glarysoft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-03-09] (Martin Malik - REALiX -> REALiX(tm))
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-04-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 StillCam; C:\WINDOWS\system32\DRIVERS\serscan.sys [13312 2020-11-19] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-10 18:13 - 2024-01-10 18:16 - 000033542 _____ C:\Users\didier\Desktop\FRST.txt
2024-01-10 18:11 - 2024-01-10 18:15 - 000000000 ____D C:\FRST
2024-01-10 18:09 - 2024-01-10 18:09 - 002388992 _____ (Farbar) C:\Users\didier\Desktop\FRST64.exe
2024-01-10 17:34 - 2024-01-10 17:34 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-01-10 17:25 - 2024-01-10 17:25 - 000000085 _____ C:\WINDOWS\wininit.ini
2024-01-10 14:27 - 2024-01-10 14:27 - 003611856 _____ (RCS LT) C:\Users\didier\Downloads\CCSetup.exe
2024-01-10 12:14 - 2024-01-10 12:15 - 000000000 ____D C:\ProgramData\MB2Migration
2024-01-10 12:14 - 2024-01-10 12:14 - 000000000 ____D C:\ProgramData\MB3Migration
2024-01-10 12:14 - 2024-01-10 12:14 - 000000000 ____D C:\ProgramData\MB3CoreBackup
2024-01-10 09:50 - 2024-01-10 09:50 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2024-01-10 09:48 - 2024-01-10 09:48 - 007195168 _____ (EnigmaSoft Limited) C:\Users\didier\Downloads\SpyHunter-Installer.exe
2024-01-10 09:40 - 2024-01-10 09:40 - 000000000 ____D C:\Users\didier\Documents\FeedbackHub
2024-01-10 09:15 - 2024-01-10 17:33 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2024-01-10 09:15 - 2024-01-10 17:25 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2024-01-10 09:13 - 2024-01-10 09:13 - 065427184 _____ (Safer-Networking Ltd. ) C:\Users\didier\Downloads\spybotsd-2.9.82.0.exe
2024-01-10 08:04 - 2024-01-10 08:08 - 000000000 ___HD C:\$WinREAgent
2024-01-10 08:00 - 2024-01-10 08:00 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-01-10 08:00 - 2024-01-10 08:00 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-01-10 07:55 - 2024-01-10 07:55 - 001376304 _____ (Google LLC) C:\Users\didier\Downloads\ChromeSetup.exe
2024-01-09 11:02 - 2024-01-09 11:56 - 000000000 ____D C:\Users\didier\Desktop\Galland
2024-01-09 09:09 - 2024-01-09 09:09 - 000000000 ____D C:\WINDOWS\InternalKernelGrid4
2024-01-08 14:35 - 2024-01-08 14:35 - 000004240 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1618560262
2024-01-08 14:35 - 2024-01-08 14:35 - 000001457 _____ C:\Users\didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-01-05 09:04 - 2024-01-05 09:07 - 000000000 ____D C:\WINDOWS\NvOptimizerLog
2024-01-05 09:04 - 2024-01-05 09:04 - 000003582 _____ C:\WINDOWS\system32\Tasks\NvOptimizerTaskUpdater_V2
2024-01-05 09:04 - 2024-01-05 09:04 - 000000271 _____ C:\WINDOWS\system32\NvWinSearchOptimizer.ps1
2024-01-05 09:04 - 2024-01-05 09:04 - 000000000 ____D C:\Users\didier\AppData\Local\vlc-updater
2024-01-05 09:04 - 2024-01-05 09:04 - 000000000 ____D C:\Users\didier\AppData\Local\TaskUpdater
2024-01-05 07:59 - 2024-01-05 07:59 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-05 07:56 - 2024-01-05 07:56 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-05 07:56 - 2024-01-05 07:56 - 000002063 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-01-05 07:26 - 2024-01-05 07:26 - 000000000 ____D C:\Users\didier\AppData\Local\Power2Go10
2024-01-05 07:25 - 2024-01-05 07:25 - 000000000 ____D C:\Users\Public\Documents\CyberLink
2024-01-04 23:39 - 2024-01-05 07:26 - 000000000 ____D C:\Users\didier\Documents\YouCam
2024-01-04 23:38 - 2016-06-02 04:48 - 000049944 _____ (CyberLink Corporation) C:\WINDOWS\system32\Drivers\clwvd7.sys
2024-01-04 23:28 - 2024-01-04 23:29 - 000000000 ____D C:\ProgramData\PDVD
2024-01-04 23:24 - 2014-11-05 10:21 - 000103176 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualBus01.sys
2024-01-04 23:20 - 2024-01-05 07:54 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2024-01-04 23:20 - 2013-09-24 16:12 - 000025864 _____ (Cyberlink Co.,Ltd.) C:\WINDOWS\system32\Drivers\CLBStor.sys
2024-01-04 23:18 - 2024-01-05 07:54 - 000000000 ____D C:\Program Files (x86)\CyberLink
2024-01-04 23:16 - 2024-01-05 07:53 - 000000000 ____D C:\ProgramData\Temp
2024-01-04 20:33 - 2024-01-04 20:33 - 000000000 ____D C:\Users\didier\Documents\Audacity
2024-01-04 20:32 - 2024-01-04 20:35 - 000000000 ____D C:\Users\didier\AppData\Roaming\audacity
2024-01-04 20:32 - 2024-01-04 20:32 - 000000867 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2024-01-04 20:32 - 2024-01-04 20:32 - 000000000 ____D C:\Users\didier\AppData\Local\audacity
2024-01-04 20:32 - 2024-01-04 20:32 - 000000000 ____D C:\Program Files\Audacity
2024-01-04 18:17 - 2024-01-04 18:24 - 000000000 ____D C:\Users\didier\AppData\Roaming\Movavi Photo Editor 24
2024-01-04 18:17 - 2024-01-04 18:17 - 000012707 _____ C:\ProgramData\imlmdpgi.ywe
2024-01-04 17:32 - 2024-01-05 07:47 - 000000000 ____D C:\Users\didier\AppData\Roaming\CyberLink
2024-01-04 17:32 - 2024-01-04 17:32 - 000000000 ____D C:\Users\didier\Documents\CyberLink
2024-01-04 17:31 - 2024-01-05 07:52 - 000000000 ____D C:\Users\didier\AppData\Local\Cyberlink
2024-01-04 17:29 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\SUPPORTDIR
2024-01-04 17:29 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\install_clap
2024-01-04 17:28 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\CLSK
2024-01-04 17:22 - 2024-01-05 07:54 - 000000000 ____D C:\ProgramData\CyberLink
2024-01-02 18:18 - 2024-01-02 18:18 - 000001535 _____ C:\Users\didier\Documents\hosts.txt
2024-01-02 11:33 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Roaming\ufcphsom
2024-01-02 11:08 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Local\HitPaw Software
2024-01-02 11:08 - 2024-01-02 18:26 - 000000000 ____D C:\Users\didier\AppData\Local\cache
2024-01-02 11:08 - 2024-01-02 11:08 - 000000000 ____D C:\Users\didier\AppData\Roaming\TSHelpService
2024-01-02 10:56 - 2024-01-02 18:26 - 000000000 ____D C:\Program Files (x86)\HitPaw
2023-12-19 14:23 - 2023-12-19 14:23 - 000002603 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities.lnk
2023-12-19 14:23 - 2023-12-19 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities
2023-12-19 14:18 - 2023-12-19 14:18 - 000000000 ____D C:\Users\didier\AppData\Local\Ashampoo
2023-12-19 14:06 - 2023-12-19 15:18 - 000000000 ____D C:\ProgramData\GlarySoft
2023-12-19 14:06 - 2023-12-19 14:41 - 000000000 ____D C:\Program Files (x86)\Glary Utilities
2023-12-19 14:05 - 2023-12-19 14:05 - 000001345 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 2020.lnk
2023-12-19 14:05 - 2023-12-19 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2023-12-19 14:04 - 2023-12-19 15:15 - 000000000 ____D C:\Users\didier\AppData\Roaming\GlarySoft
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\Users\didier\AppData\Roaming\DiskDefrag
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\ProgramData\Ashampoo
2023-12-19 14:04 - 2023-12-19 14:04 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2023-12-19 13:52 - 2023-12-19 13:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\DelayedItemsByChemtableSoftware
2023-12-19 13:43 - 2023-12-19 13:43 - 000003916 _____ C:\WINDOWS\system32\Tasks\Autorun Organizer
2023-12-19 13:43 - 2023-12-19 13:43 - 000000000 ____D C:\Users\didier\AppData\Roaming\ChemTable Software
2023-12-19 13:43 - 2023-12-19 13:43 - 000000000 ____D C:\Users\didier\AppData\Local\ChemTable Software
2023-12-19 13:42 - 2023-12-19 13:42 - 000000974 _____ C:\Users\Public\Desktop\Autorun Organizer.lnk
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Organizer
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\ProgramData\Chemtable Software
2023-12-19 13:42 - 2023-12-19 13:42 - 000000000 ____D C:\Program Files\Autorun Organizer
2023-12-16 09:57 - 2023-12-16 09:57 - 000001724 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2023-12-16 09:57 - 2023-12-16 09:57 - 000000000 ____D C:\Users\didier\AppData\Roaming\HPPSDr
2023-12-16 09:57 - 2023-12-16 09:57 - 000000000 ____D C:\HP
2023-12-14 18:09 - 2023-12-14 18:09 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-14 13:08 - 2023-12-14 13:08 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 20:44 - 2024-01-07 10:19 - 000004218 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-13 20:44 - 2023-12-14 18:12 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-13 20:44 - 2023-12-13 20:45 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-10 17:38 - 2021-04-15 10:03 - 000000000 ____D C:\Program Files\CCleaner
2024-01-10 17:36 - 2022-11-10 10:25 - 000000000 ____D C:\Users\didier\AppData\Roaming\NotificationsGeneatique
2024-01-10 17:36 - 2021-11-10 08:19 - 000000000 ____D C:\Users\didier\AppData\Local\CrashDumps
2024-01-10 17:36 - 2021-04-13 17:49 - 012274007 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2024-01-10 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-10 17:34 - 2021-04-13 18:21 - 000000000 ____D C:\ProgramData\NVIDIA
2024-01-10 17:34 - 2021-04-13 17:42 - 000000000 __SHD C:\Users\didier\IntelGraphicsProfiles
2024-01-10 17:33 - 2021-04-17 08:16 - 000008192 ___SH C:\DumpStack.log.tmp
2024-01-10 17:33 - 2020-11-19 00:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-10 17:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-01-10 17:33 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-01-10 17:25 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-01-10 16:44 - 2021-04-23 08:28 - 000099829 _____ C:\Users\didier\Desktop\Demandes d'actes par mail.xlsx
2024-01-10 16:21 - 2020-11-18 23:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-10 15:13 - 2021-04-13 17:41 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-10 15:13 - 2019-12-07 15:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2024-01-10 15:13 - 2019-12-07 15:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2024-01-10 15:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-01-10 14:41 - 2021-04-15 13:06 - 000000000 ____D C:\Users\didier\AppData\Roaming\Microsoft\Excel
2024-01-10 14:28 - 2021-09-12 17:14 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-01-10 12:19 - 2023-04-23 13:03 - 000000000 ____D C:\Users\didier\AppData\Local\Malwarebytes
2024-01-10 12:11 - 2021-04-15 19:41 - 000000000 ____D C:\Users\didier\AppData\Local\JDownloader 2.0
2024-01-10 12:08 - 2021-12-15 14:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-10 12:07 - 2023-12-01 18:23 - 000000000 ____D C:\ProgramData\Lavasoft
2024-01-10 12:07 - 2022-03-09 16:55 - 000000000 ____D C:\Program Files (x86)\ASUS
2024-01-10 10:29 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-10 10:20 - 2021-04-15 13:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-10 10:06 - 2021-04-15 13:33 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-01-10 09:03 - 2021-04-13 17:42 - 000000000 ____D C:\Users\didier\AppData\Local\Packages
2024-01-10 09:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-10 07:56 - 2021-04-15 09:33 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-09 22:38 - 2022-03-09 17:12 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2024-01-09 22:29 - 2020-11-18 23:28 - 000511904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-09 22:19 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-09 20:21 - 2021-04-15 09:48 - 000000000 ____D C:\Users\didier\AppData\Roaming\vlc
2024-01-09 18:44 - 2021-04-15 13:04 - 000000000 ____D C:\Users\didier\AppData\Roaming\Microsoft\Word
2024-01-08 14:49 - 2021-04-13 18:44 - 000000000 ____D C:\ProgramData\Package Cache
2024-01-08 07:59 - 2023-11-30 18:33 - 000000972 _____ C:\Users\didier\Desktop\Acrylic Wi-Fi Home.lnk
2024-01-08 07:59 - 2023-03-20 20:45 - 000002251 _____ C:\Users\didier\Desktop\WhatsApp.lnk
2024-01-08 07:59 - 2022-11-30 11:30 - 000001146 _____ C:\Users\didier\Desktop\Format Factory.lnk
2024-01-08 07:59 - 2022-11-10 10:22 - 000001090 _____ C:\Users\didier\Desktop\Protectis - Sauvegarde en ligne.lnk
2024-01-08 07:59 - 2022-05-16 12:59 - 000002007 _____ C:\Users\didier\Desktop\DVD-Cloner Gold.lnk
2024-01-08 07:59 - 2022-02-27 10:30 - 000002292 _____ C:\Users\didier\Desktop\La France à la Loupe 2.lnk
2024-01-08 07:59 - 2021-10-22 16:54 - 000002379 _____ C:\Users\didier\Desktop\Messenger.lnk
2024-01-08 07:59 - 2021-10-16 15:06 - 000001599 _____ C:\Users\didier\Desktop\Time-Lapse Tool.lnk
2024-01-08 07:59 - 2021-04-16 09:04 - 000001414 _____ C:\Users\didier\Desktop\Navigateur Opera.lnk
2024-01-08 07:59 - 2021-04-15 19:47 - 000002181 _____ C:\Users\didier\Desktop\JDownloader 2.lnk
2024-01-08 07:59 - 2021-04-15 10:02 - 000001167 _____ C:\Users\didier\Desktop\PhotoFiltre Studio X.lnk
2024-01-07 10:45 - 2021-08-31 23:01 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-07 10:45 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-05 11:00 - 2021-04-16 19:31 - 000000000 ____D C:\Users\didier\AppData\LocalLow\Adobe
2024-01-04 18:17 - 2022-07-18 11:20 - 000000000 ____D C:\Users\didier\AppData\Local\Movavi
2024-01-04 17:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-20 14:41 - 2021-04-23 08:28 - 000012670 _____ C:\Users\didier\Desktop\Nouveau Budget 2022.xlsx
2023-12-19 14:37 - 2021-04-17 09:24 - 000000000 ____D C:\Users\didier\AppData\Local\D3DSCache
2023-12-19 13:44 - 2021-04-17 08:33 - 000000000 ____D C:\Users\didier
2023-12-16 09:58 - 2021-04-22 07:41 - 000000000 ____D C:\ProgramData\HP
2023-12-16 09:57 - 2021-04-22 07:42 - 000000000 ____D C:\Program Files (x86)\HP
2023-12-15 22:45 - 2019-12-17 18:24 - 000000000 ____D C:\Temp
2023-12-15 08:52 - 2023-11-30 22:17 - 000012760 _____ C:\Users\didier\Desktop\Tension.xlsx
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-14 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-14 18:09 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-14 13:08 - 2020-11-19 00:31 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-14 10:22 - 2015-10-30 08:24 - 000000202 _____ C:\WINDOWS\win.ini
2023-12-12 08:33 - 2023-12-01 18:30 - 000000000 ____D C:\Users\didier\AppData\Roaming\ZHP
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================