Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.04.2024
Exécuté par domvi (administrateur) sur DESKTOP-GNJQA87 (FUJITSU LIFEBOOK T902) (15-04-2024 20:53:39)
Exécuté depuis C:\Users\domvi\Downloads\FRST64(5).exe
Profils chargés: domvi
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <18>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2022-09-27] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16183056 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS_SWVOL] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files (x86)\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [447808 2021-08-19] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
HKLM-x32\...\Run: [FUJ02B1_Apps] => C:\Program Files (x86)\Fujitsu\FUJ02B1\CheckBatteryPack.exe [376128 2018-09-06] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [MicrosoftEdgeAutoLaunch_7836733F498812A6F01A29A207916941] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2023-03-05]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {76649D9B-8AEB-4279-8D8F-D0069B7A5F93} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {61D1FF34-84B0-4F3A-B6FA-B267CA4E51E9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {14D17389-EFF2-4BBD-A534-D1203CCA02A6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2c9a03e8-534f-473a-a1f6-8ed33c2ff808" --version "6.22.10977" --silent
Task: {6E192CFE-E261-49E5-90B7-F72A1B395B5A} - System32\Tasks\CCleanerSkipUAC - domvi => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {75E724CB-0EF0-48B1-9EF6-B216964EF069} - System32\Tasks\CorelUpdateHelperTask-743EB5DB6D4F93EC7ED91A93341269C9 => C:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {E1E6BA56-9D22-42E0-A77D-956D3325FF78} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {92DCCB56-E938-41C7-855E-CAD4C8762944} - System32\Tasks\DriverFix => "C:\Program Files (x86)\DriverFix\DriverFix.exe" -auto (Pas de fichier) <==== ATTENTION
Task: {D99F1B51-5D62-473A-9CAB-2533FCC8EA1E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {E9B9AA5A-F650-47E9-9A8E-E83D430FC9D6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F288E714-CBF2-4342-9CB5-C2045AE13658} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7B8BE0B-7302-4F7A-B1DF-0C8AD3B8FF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7F0F457-0AAA-4535-93B9-95369BC533FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6BF7188-6DD1-4CEB-9E51-BBF3F2FDC717} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {40905C35-2921-45E0-891A-FA9A5BE1E69D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F345F24C-4CD5-4FBD-B05C-BA3218EC0923} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1109CA2D-5142-4293-BE02-C298DEC28718} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {FE1E70AB-A045-48E3-8D58-67ACD1838AB4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1845954419-3934238829-1240228078-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8B0150E4-06C7-4CCB-AF90-668D105DF70C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {2953C437-E2B5-4DCD-93D4-DC9441D5A31A} - System32\Tasks\WinZip - Outil de déduplication - Documents - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {1FB5691C-3DAD-49F1-9BCA-32EC23BA6130} - System32\Tasks\WinZip - Outil de déduplication - Images - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {4B3B1841-705E-493F-8C43-54CDBD5FAC7E} - System32\Tasks\WinZip - Outil de déduplication - Téléchargements - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {819619F9-9F86-4C4A-A086-5047FF9749BF} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {0659E5A5-33B7-4854-B10B-6D66AA76AE50} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {E94E3CC5-D28C-4414-A43A-E78B5195D49B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {81B6EDF5-B9A6-4850-A8B8-DDEF8DDC57B8} - System32\Tasks\WinZip Updater - domvi => C:\Program Files\WinZip\WzUpdater.exe [441936 2022-08-19] (Corel Corporation -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}: [DhcpDomain] home
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\75966496D22556075616475627: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\75966496D22556075616475627: [DhcpDomain] WiFi-Repeater
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\960586F6E6560246F6D696E696175756: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\D4654363135333435323: [DhcpNameServer] 208.67.222.222 129.219.13.81
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\D4654363135333435323: [DhcpDomain] local
Edge:
=======
Edge Profile: C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-14]
Edge Extension: (Google Docs hors connexion) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-10]
Edge Extension: (Edge relevant text changes) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-04]
FireFox:
========
FF DefaultProfile: mj3pqdl6.default
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\mj3pqdl6.default [2022-09-21]
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release [2024-04-15]
FF Homepage: Mozilla\Firefox\Profiles\97cqx4vs.default-release -> hxxps://www.google.com/webhp?hl=fr&sa=X&ved=0ahUKEwjT8_Ou4db8AhWXUqQEHTFkATwQPAgT
FF Extension: (FileCR Assistant) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\extension1@filecr.com.xpi [2023-05-24]
FF Extension: (Dashlane) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\jetpack-extension@dashlane.com.xpi [2024-04-13]
FF Extension: (I don't care about cookies) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-06]
FF Extension: (Fakespot Fake Amazon Reviews and eBay Sellers) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{44df5123-f715-9146-bfaa-c6e8d4461d44}.xpi [2024-02-06]
FF Extension: (Infinity Blocker) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{7f7ac8a6-57ec-4d91-99dc-8674cf1e367b}.xpi [2024-01-10]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-04-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2022-10-08] (Apple Inc. -> Apple Inc.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé]
R2 NativePushService; C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 FUJ02B1; C:\Windows\system32\DRIVERS\FUJ02B1.sys [68536 2018-09-06] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 fuj02e3; C:\Windows\system32\DRIVERS\fuj02e3.sys [182216 2021-08-19] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 RSP2STOR; C:\Windows\System32\drivers\RtsP2Stor.sys [347224 2022-09-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 WacHIDRouterISDU; C:\Windows\System32\drivers\WacHIDRouterISDU.sys [124664 2022-01-27] (Wacom Co., Ltd. -> Wacom Technology, Corp.)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Users\domvi\AppData\Local\Temp\7z01825D94\WinRing0x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-15 20:53 - 2024-04-15 20:53 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(5).exe
2024-04-15 20:48 - 2024-04-15 20:48 - 000031827 _____ C:\Users\domvi\Downloads\Shortcut.txt
2024-04-15 20:41 - 2024-04-15 20:41 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(4).exe
2024-04-15 20:39 - 2024-04-15 20:39 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(3).exe
2024-04-15 20:37 - 2024-04-15 20:37 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(2).exe
2024-04-12 22:33 - 2024-04-12 22:33 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-12 22:32 - 2024-04-12 22:32 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-12 22:26 - 2024-04-12 22:26 - 000000000 ___HD C:\$WinREAgent
2024-04-09 17:13 - 2024-04-09 17:13 - 001177729 ____R C:\Users\domvi\Downloads\productUserGuide.pdf
2024-04-04 18:56 - 2024-04-04 18:56 - 001244295 _____ C:\Users\domvi\Desktop\CARRELAGE.htm
2024-04-04 12:08 - 2024-04-08 19:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-21 21:47 - 2024-03-21 21:47 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab(2).exe
2024-03-21 21:41 - 2024-03-21 21:41 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab(1).exe
2024-03-21 21:31 - 2024-03-21 22:11 - 081592320 _____ C:\Users\domvi\Downloads\PhotoDirector_15.2.0.1427.0925_dc4da0d87_24_Essential_PTD240202-01.tmp
2024-03-21 21:31 - 2024-03-21 21:32 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab.exe
2024-03-21 21:30 - 2024-03-21 21:30 - 001174760 _____ (CyberLink) C:\Users\domvi\Downloads\CyberLink_PhotoDirector_Downloader(3).exe
2024-03-18 19:30 - 2024-03-18 19:30 - 000000000 ____D C:\ProgramData\Norton
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-15 20:54 - 2023-11-17 08:30 - 000021003 _____ C:\Users\domvi\Downloads\FRST.txt
2024-04-15 20:53 - 2023-11-17 08:30 - 000000000 ____D C:\FRST
2024-04-15 20:50 - 2022-09-21 15:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-15 20:48 - 2023-11-17 08:33 - 000048526 _____ C:\Users\domvi\Downloads\Addition.txt
2024-04-15 20:48 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-04-15 20:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-15 20:31 - 2022-09-21 16:50 - 000000000 ____D C:\Users\domvi\AppData\Roaming\WTablet
2024-04-15 20:31 - 2022-09-21 15:18 - 000000000 __SHD C:\Users\domvi\IntelGraphicsProfiles
2024-04-15 11:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-04-14 22:41 - 2022-09-21 17:17 - 000000000 ____D C:\Program Files\CCleaner
2024-04-14 22:40 - 2022-09-21 15:22 - 000000000 ____D C:\Windows\system32\MRT
2024-04-14 14:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-14 14:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-04-14 14:04 - 2022-09-21 14:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-13 22:39 - 2022-09-21 14:32 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-13 22:39 - 2019-12-07 16:50 - 000756530 _____ C:\Windows\system32\perfh00C.dat
2024-04-13 22:39 - 2019-12-07 16:50 - 000142300 _____ C:\Windows\system32\perfc00C.dat
2024-04-13 22:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-13 22:35 - 2022-09-21 15:16 - 000000000 ____D C:\Users\domvi\AppData\Local\Packages
2024-04-13 22:35 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-13 22:34 - 2022-09-21 14:28 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-13 22:34 - 2022-09-21 14:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-12 23:19 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-04-12 23:15 - 2022-09-21 14:28 - 000446816 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 23:14 - 2023-12-16 00:52 - 000000000 ____D C:\Windows\InboxApps
2024-04-12 23:14 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-12 22:35 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-04-12 22:32 - 2022-09-21 14:32 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-12 20:13 - 2022-09-21 15:22 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 18:19 - 2022-09-21 14:28 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-08 20:58 - 2022-09-21 14:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-08 19:50 - 2022-09-21 15:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-05 10:35 - 2022-09-21 14:28 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 10:35 - 2022-09-21 14:28 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-04 17:10 - 2022-09-21 15:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-03 21:48 - 2022-09-21 17:18 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-04-03 14:26 - 2022-09-22 15:48 - 000000000 ____D C:\Users\domvi\AppData\Roaming\Microsoft\Word
2024-04-03 14:10 - 2022-09-21 17:18 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-03-21 20:28 - 2022-09-28 23:34 - 000000000 ____D C:\Users\domvi\AppData\Local\CrashDumps
2024-03-20 19:25 - 2023-10-08 17:08 - 000000000 ____D C:\Program Files\RUXIM
2024-03-18 19:30 - 2022-09-21 17:18 - 000003382 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
==================== Fichiers à la racine de certains dossiers ========
2024-01-08 14:38 - 2024-01-08 14:38 - 000003442 _____ () C:\Users\domvi\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2016-02-19 11:32 - 2016-02-19 11:32 - 000002560 _____ (Intel(R) Corporation) C:\Windows\SysWOW64\IusEventLog.dll
2023-01-27 11:15 - 2023-01-27 11:15 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(1).exe
2023-03-27 20:41 - 2023-03-27 20:41 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(2).exe
2023-08-02 15:41 - 2023-08-02 15:41 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(3).exe
2022-12-31 17:59 - 2022-12-31 17:59 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501.exe
2023-11-17 08:37 - 2023-11-17 08:37 - 002383872 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(1).exe
2024-04-15 20:37 - 2024-04-15 20:37 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(2).exe
2024-04-15 20:39 - 2024-04-15 20:39 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(3).exe
2024-04-15 20:41 - 2024-04-15 20:41 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(4).exe
2024-04-15 20:53 - 2024-04-15 20:53 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(5).exe
2023-11-17 08:29 - 2023-11-17 08:29 - 002383872 _____ (Farbar) C:\Users\domvi\Downloads\FRST64.exe
2023-02-11 09:52 - 2023-02-11 09:52 - 045709948 _____ (IPTV Smarters Player) C:\Users\domvi\Downloads\IPTV-Smarters-Player-Setup-3.0.0.exe
2023-06-18 09:11 - 2023-06-18 09:11 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4(1).exe
2023-06-18 09:15 - 2023-06-18 09:15 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4(2).exe
2023-06-18 09:10 - 2023-06-18 09:10 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4.exe
2023-01-27 16:28 - 2023-01-27 16:28 - 025458324 _____ C:\Users\domvi\Downloads\librecad_2-2-0_fr_429945.exe
2024-01-12 22:46 - 2024-01-12 22:46 - 005202180 _____ C:\Users\domvi\Downloads\pf7-setup-fr-7.2.1(1).exe
2023-01-27 13:02 - 2023-01-27 13:02 - 005202180 _____ C:\Users\domvi\Downloads\pf7-setup-fr-7.2.1.exe
2024-01-12 18:16 - 2024-01-12 18:16 - 031493123 _____ (PhotoFiltre ) C:\Users\domvi\Downloads\photofiltre-windows-11.5.1-32707(1).exe
2024-01-12 18:15 - 2024-01-12 18:15 - 031493123 _____ (PhotoFiltre ) C:\Users\domvi\Downloads\photofiltre-windows-11.5.1-32707.exe
2023-11-05 14:29 - 2023-11-05 14:30 - 034246882 _____ (M@cro-video Technologies Co. ) C:\Users\domvi\Downloads\V380 PC client v380 org(1).exe
2022-12-03 20:07 - 2022-12-03 20:07 - 034246882 _____ (M@cro-video Technologies Co. ) C:\Users\domvi\Downloads\V380 PC client v380 org.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par domvi (administrateur) sur DESKTOP-GNJQA87 (FUJITSU LIFEBOOK T902) (15-04-2024 20:53:39)
Exécuté depuis C:\Users\domvi\Downloads\FRST64(5).exe
Profils chargés: domvi
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <18>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2022-09-27] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16183056 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS_SWVOL] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files (x86)\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [447808 2021-08-19] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
HKLM-x32\...\Run: [FUJ02B1_Apps] => C:\Program Files (x86)\Fujitsu\FUJ02B1\CheckBatteryPack.exe [376128 2018-09-06] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [MicrosoftEdgeAutoLaunch_7836733F498812A6F01A29A207916941] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2023-03-05]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {76649D9B-8AEB-4279-8D8F-D0069B7A5F93} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {61D1FF34-84B0-4F3A-B6FA-B267CA4E51E9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {14D17389-EFF2-4BBD-A534-D1203CCA02A6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2c9a03e8-534f-473a-a1f6-8ed33c2ff808" --version "6.22.10977" --silent
Task: {6E192CFE-E261-49E5-90B7-F72A1B395B5A} - System32\Tasks\CCleanerSkipUAC - domvi => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {75E724CB-0EF0-48B1-9EF6-B216964EF069} - System32\Tasks\CorelUpdateHelperTask-743EB5DB6D4F93EC7ED91A93341269C9 => C:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {E1E6BA56-9D22-42E0-A77D-956D3325FF78} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.EXE [3827728 2022-10-21] (Corel Corporation -> Corel Corporation)
Task: {92DCCB56-E938-41C7-855E-CAD4C8762944} - System32\Tasks\DriverFix => "C:\Program Files (x86)\DriverFix\DriverFix.exe" -auto (Pas de fichier) <==== ATTENTION
Task: {D99F1B51-5D62-473A-9CAB-2533FCC8EA1E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {E9B9AA5A-F650-47E9-9A8E-E83D430FC9D6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F288E714-CBF2-4342-9CB5-C2045AE13658} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7B8BE0B-7302-4F7A-B1DF-0C8AD3B8FF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7F0F457-0AAA-4535-93B9-95369BC533FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6BF7188-6DD1-4CEB-9E51-BBF3F2FDC717} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {40905C35-2921-45E0-891A-FA9A5BE1E69D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F345F24C-4CD5-4FBD-B05C-BA3218EC0923} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1109CA2D-5142-4293-BE02-C298DEC28718} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {FE1E70AB-A045-48E3-8D58-67ACD1838AB4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1845954419-3934238829-1240228078-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8B0150E4-06C7-4CCB-AF90-668D105DF70C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {2953C437-E2B5-4DCD-93D4-DC9441D5A31A} - System32\Tasks\WinZip - Outil de déduplication - Documents - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {1FB5691C-3DAD-49F1-9BCA-32EC23BA6130} - System32\Tasks\WinZip - Outil de déduplication - Images - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {4B3B1841-705E-493F-8C43-54CDBD5FAC7E} - System32\Tasks\WinZip - Outil de déduplication - Téléchargements - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {819619F9-9F86-4C4A-A086-5047FF9749BF} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {0659E5A5-33B7-4854-B10B-6D66AA76AE50} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {E94E3CC5-D28C-4414-A43A-E78B5195D49B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {81B6EDF5-B9A6-4850-A8B8-DDEF8DDC57B8} - System32\Tasks\WinZip Updater - domvi => C:\Program Files\WinZip\WzUpdater.exe [441936 2022-08-19] (Corel Corporation -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}: [DhcpDomain] home
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\75966496D22556075616475627: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\75966496D22556075616475627: [DhcpDomain] WiFi-Repeater
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\960586F6E6560246F6D696E696175756: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\D4654363135333435323: [DhcpNameServer] 208.67.222.222 129.219.13.81
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}\D4654363135333435323: [DhcpDomain] local
Edge:
=======
Edge Profile: C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-14]
Edge Extension: (Google Docs hors connexion) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-10]
Edge Extension: (Edge relevant text changes) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-04]
FireFox:
========
FF DefaultProfile: mj3pqdl6.default
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\mj3pqdl6.default [2022-09-21]
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release [2024-04-15]
FF Homepage: Mozilla\Firefox\Profiles\97cqx4vs.default-release -> hxxps://www.google.com/webhp?hl=fr&sa=X&ved=0ahUKEwjT8_Ou4db8AhWXUqQEHTFkATwQPAgT
FF Extension: (FileCR Assistant) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\extension1@filecr.com.xpi [2023-05-24]
FF Extension: (Dashlane) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\jetpack-extension@dashlane.com.xpi [2024-04-13]
FF Extension: (I don't care about cookies) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-06]
FF Extension: (Fakespot Fake Amazon Reviews and eBay Sellers) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{44df5123-f715-9146-bfaa-c6e8d4461d44}.xpi [2024-02-06]
FF Extension: (Infinity Blocker) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{7f7ac8a6-57ec-4d91-99dc-8674cf1e367b}.xpi [2024-01-10]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-04-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2022-10-08] (Apple Inc. -> Apple Inc.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé]
R2 NativePushService; C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 FUJ02B1; C:\Windows\system32\DRIVERS\FUJ02B1.sys [68536 2018-09-06] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 fuj02e3; C:\Windows\system32\DRIVERS\fuj02e3.sys [182216 2021-08-19] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 RSP2STOR; C:\Windows\System32\drivers\RtsP2Stor.sys [347224 2022-09-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 WacHIDRouterISDU; C:\Windows\System32\drivers\WacHIDRouterISDU.sys [124664 2022-01-27] (Wacom Co., Ltd. -> Wacom Technology, Corp.)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Users\domvi\AppData\Local\Temp\7z01825D94\WinRing0x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-15 20:53 - 2024-04-15 20:53 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(5).exe
2024-04-15 20:48 - 2024-04-15 20:48 - 000031827 _____ C:\Users\domvi\Downloads\Shortcut.txt
2024-04-15 20:41 - 2024-04-15 20:41 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(4).exe
2024-04-15 20:39 - 2024-04-15 20:39 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(3).exe
2024-04-15 20:37 - 2024-04-15 20:37 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(2).exe
2024-04-12 22:33 - 2024-04-12 22:33 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-12 22:32 - 2024-04-12 22:32 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-12 22:26 - 2024-04-12 22:26 - 000000000 ___HD C:\$WinREAgent
2024-04-09 17:13 - 2024-04-09 17:13 - 001177729 ____R C:\Users\domvi\Downloads\productUserGuide.pdf
2024-04-04 18:56 - 2024-04-04 18:56 - 001244295 _____ C:\Users\domvi\Desktop\CARRELAGE.htm
2024-04-04 12:08 - 2024-04-08 19:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-03-21 21:47 - 2024-03-21 21:47 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab(2).exe
2024-03-21 21:41 - 2024-03-21 21:41 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab(1).exe
2024-03-21 21:31 - 2024-03-21 22:11 - 081592320 _____ C:\Users\domvi\Downloads\PhotoDirector_15.2.0.1427.0925_dc4da0d87_24_Essential_PTD240202-01.tmp
2024-03-21 21:31 - 2024-03-21 21:32 - 002067832 _____ (PicWish) C:\Users\domvi\Downloads\picwish-setup-saas-ab.exe
2024-03-21 21:30 - 2024-03-21 21:30 - 001174760 _____ (CyberLink) C:\Users\domvi\Downloads\CyberLink_PhotoDirector_Downloader(3).exe
2024-03-18 19:30 - 2024-03-18 19:30 - 000000000 ____D C:\ProgramData\Norton
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-15 20:54 - 2023-11-17 08:30 - 000021003 _____ C:\Users\domvi\Downloads\FRST.txt
2024-04-15 20:53 - 2023-11-17 08:30 - 000000000 ____D C:\FRST
2024-04-15 20:50 - 2022-09-21 15:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-15 20:48 - 2023-11-17 08:33 - 000048526 _____ C:\Users\domvi\Downloads\Addition.txt
2024-04-15 20:48 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-04-15 20:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-15 20:31 - 2022-09-21 16:50 - 000000000 ____D C:\Users\domvi\AppData\Roaming\WTablet
2024-04-15 20:31 - 2022-09-21 15:18 - 000000000 __SHD C:\Users\domvi\IntelGraphicsProfiles
2024-04-15 11:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2024-04-14 22:41 - 2022-09-21 17:17 - 000000000 ____D C:\Program Files\CCleaner
2024-04-14 22:40 - 2022-09-21 15:22 - 000000000 ____D C:\Windows\system32\MRT
2024-04-14 14:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-14 14:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-04-14 14:04 - 2022-09-21 14:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-13 22:39 - 2022-09-21 14:32 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-13 22:39 - 2019-12-07 16:50 - 000756530 _____ C:\Windows\system32\perfh00C.dat
2024-04-13 22:39 - 2019-12-07 16:50 - 000142300 _____ C:\Windows\system32\perfc00C.dat
2024-04-13 22:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-13 22:35 - 2022-09-21 15:16 - 000000000 ____D C:\Users\domvi\AppData\Local\Packages
2024-04-13 22:35 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-13 22:34 - 2022-09-21 14:28 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-13 22:34 - 2022-09-21 14:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-12 23:19 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-04-12 23:15 - 2022-09-21 14:28 - 000446816 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 23:14 - 2023-12-16 00:52 - 000000000 ____D C:\Windows\InboxApps
2024-04-12 23:14 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-12 23:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-12 22:35 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-04-12 22:32 - 2022-09-21 14:32 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-12 20:13 - 2022-09-21 15:22 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 18:19 - 2022-09-21 14:28 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-08 20:58 - 2022-09-21 14:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-08 19:50 - 2022-09-21 15:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-05 10:35 - 2022-09-21 14:28 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 10:35 - 2022-09-21 14:28 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-04 17:10 - 2022-09-21 15:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-03 21:48 - 2022-09-21 17:18 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-04-03 14:26 - 2022-09-22 15:48 - 000000000 ____D C:\Users\domvi\AppData\Roaming\Microsoft\Word
2024-04-03 14:10 - 2022-09-21 17:18 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-03-21 20:28 - 2022-09-28 23:34 - 000000000 ____D C:\Users\domvi\AppData\Local\CrashDumps
2024-03-20 19:25 - 2023-10-08 17:08 - 000000000 ____D C:\Program Files\RUXIM
2024-03-18 19:30 - 2022-09-21 17:18 - 000003382 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
==================== Fichiers à la racine de certains dossiers ========
2024-01-08 14:38 - 2024-01-08 14:38 - 000003442 _____ () C:\Users\domvi\AppData\Local\recently-used.xbel
==================== SigCheckExt =========================
2016-02-19 11:32 - 2016-02-19 11:32 - 000002560 _____ (Intel(R) Corporation) C:\Windows\SysWOW64\IusEventLog.dll
2023-01-27 11:15 - 2023-01-27 11:15 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(1).exe
2023-03-27 20:41 - 2023-03-27 20:41 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(2).exe
2023-08-02 15:41 - 2023-08-02 15:41 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501(3).exe
2022-12-31 17:59 - 2022-12-31 17:59 - 018241961 _____ C:\Users\domvi\Downloads\5.01_psp501.exe
2023-11-17 08:37 - 2023-11-17 08:37 - 002383872 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(1).exe
2024-04-15 20:37 - 2024-04-15 20:37 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(2).exe
2024-04-15 20:39 - 2024-04-15 20:39 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(3).exe
2024-04-15 20:41 - 2024-04-15 20:41 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(4).exe
2024-04-15 20:53 - 2024-04-15 20:53 - 002394112 _____ (Farbar) C:\Users\domvi\Downloads\FRST64(5).exe
2023-11-17 08:29 - 2023-11-17 08:29 - 002383872 _____ (Farbar) C:\Users\domvi\Downloads\FRST64.exe
2023-02-11 09:52 - 2023-02-11 09:52 - 045709948 _____ (IPTV Smarters Player) C:\Users\domvi\Downloads\IPTV-Smarters-Player-Setup-3.0.0.exe
2023-06-18 09:11 - 2023-06-18 09:11 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4(1).exe
2023-06-18 09:15 - 2023-06-18 09:15 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4(2).exe
2023-06-18 09:10 - 2023-06-18 09:10 - 025441740 _____ C:\Users\domvi\Downloads\LibreCAD-Installer-2.2.0-rc4.exe
2023-01-27 16:28 - 2023-01-27 16:28 - 025458324 _____ C:\Users\domvi\Downloads\librecad_2-2-0_fr_429945.exe
2024-01-12 22:46 - 2024-01-12 22:46 - 005202180 _____ C:\Users\domvi\Downloads\pf7-setup-fr-7.2.1(1).exe
2023-01-27 13:02 - 2023-01-27 13:02 - 005202180 _____ C:\Users\domvi\Downloads\pf7-setup-fr-7.2.1.exe
2024-01-12 18:16 - 2024-01-12 18:16 - 031493123 _____ (PhotoFiltre ) C:\Users\domvi\Downloads\photofiltre-windows-11.5.1-32707(1).exe
2024-01-12 18:15 - 2024-01-12 18:15 - 031493123 _____ (PhotoFiltre ) C:\Users\domvi\Downloads\photofiltre-windows-11.5.1-32707.exe
2023-11-05 14:29 - 2023-11-05 14:30 - 034246882 _____ (M@cro-video Technologies Co. ) C:\Users\domvi\Downloads\V380 PC client v380 org(1).exe
2022-12-03 20:07 - 2022-12-03 20:07 - 034246882 _____ (M@cro-video Technologies Co. ) C:\Users\domvi\Downloads\V380 PC client v380 org.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================