Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021 Exécuté par Lenovo (administrateur) sur LENOVO-PC (LENOVO 7827AB2) (13-01-2021 18:02:45) Exécuté depuis C:\Users\Lenovo\Desktop Profils chargés: Lenovo Platform: Windows 10 Pro Version 20H2 19042.685 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AuthenTec, Inc. -> Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (Ericsson AB -> Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe (Fortemedia Inc -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\SUService.exe (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\TpScrex.exe (LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe (LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe (LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (LENOVO(JAPAN)LTD. -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10> (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe (Qualcomm Inc -> QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Ricoh co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SmartAudio] => c:\program files\conexant\saii\saiicpl.exe [307768 2009-11-15] (Conexant Systems, Inc. -> ) HKLM\...\Run: [LENOVO.TPKNRRES] => c:\program files\lenovo\communications utility\tpknrres.exe [60920 2013-05-29] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited) HKLM\...\Run: [picon] => c:\program files (x86)\common files\intel\privacy icon\piconstartup.exe [111640 2010-02-04] (Intel Corporation -> ) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12632168 2011-07-19] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [146600 2015-07-28] (Synaptics Incorporated -> Synaptics) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [5128552 2020-10-23] (O&O Software GmbH -> O&O Software GmbH) HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [7631800 2020-11-26] (Paramount Software UK Ltd -> Paramount Software UK Ltd) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-07-28] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.) [Fichier non signé] HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111928 2013-05-03] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318112 2017-11-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2013-01-08] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-08] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{18CBEEAA-6708-41A1-9379-D08915333CF2}] -> C:\Program Files\ThinkVantage Fingerprint Software\provider.dll [2013-03-05] (AuthenTec, Inc. -> Authentec Inc.) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\ThinkPad\Bluetooth Software\\BtwCP.dll [2013-05-14] (Broadcom Corporation -> Broadcom Corporation.) HKLM\Software\...\Authentication\Credential Provider Filters: [{AE583D93-8D1B-424F-9858-5623FB7824EE}] -> C:\Program Files\ThinkVantage Fingerprint Software\provider.dll [2013-03-05] (AuthenTec, Inc. -> Authentec Inc.) Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk [2013-07-26] ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files (x86)\Digital Line Detect\DLG.exe (Avanquest -> Avanquest Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2020-12-15] ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{2CB92DA5-CD07-42D0-A588-A77CC2906821}\app_icon.exe () [Fichier non signé] BootExecute: autocheck autochk * sdnclean64.exe ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0EAFA3DD-670D-4029-B243-E778480988FF} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {1C76757B-917F-4BB7-B365-D9A451B71924} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {21F6D51F-3255-48C9-9603-122E01AA5834} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {236FA443-E072-478E-A8A5-120644C0383B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {33A4F982-C554-4962-A722-45C36B3AEDE3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3EEB0C20-8696-4936-819B-4FDC2967CAFF} - pas de chemin du fichier Task: {40A883D5-B438-4CB5-B600-B7E064AF10CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4292E1C8-845C-46A6-BD44-C49072A77D0D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {4AB7DDA5-B4EE-4A9A-84A0-AD92454A4B30} - pas de chemin du fichier Task: {4BF274D3-D077-4BEA-94C1-A7EC1C4B7A56} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {4CA5127F-67C0-473F-8F88-520B44FF3D0D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe) Task: {51DBFC53-6AF8-406A-9FE8-D980A6980FF5} - pas de chemin du fichier Task: {54BBBA66-1C72-49FB-A03F-69BB93638312} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5CA70D65-6C75-4BEE-8C94-D36C74A5FCFD} - pas de chemin du fichier Task: {6060E3FA-EE2F-4D14-927F-68AFE023163B} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {65A0FC82-C7BC-402A-A4BF-AB9A01749A1C} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {65AFF623-7A33-4F2C-8F58-5E78B7A3C956} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {709948D6-7B7E-408D-A116-7F11C936973B} - System32\Tasks\Opera scheduled Autoupdate 1610016563 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe Task: {736000EB-A964-4DD1-A54E-C2A23C6B1C8C} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758984 2020-02-11] (Lenovo -> ) Task: {833CF503-4987-4329-96C9-7C5F08F12692} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {8CE0BF34-CB58-45B4-A8E1-67B7C91FAE4E} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {927923B1-BF4B-4AA6-B5F9-2B47E2F9E08E} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo) Task: {95FA0DE7-4DEF-47B9-8C9B-80C79C578377} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {99833646-E5C4-41C3-A65A-B4502423EFED} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {9D3FEA22-9D88-4E99-9DF2-F96476AE72B7} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9F4D2825-36E8-42DB-ABD7-15FFF87C5A99} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A17F4127-05CA-4F59-A141-113F53138047} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe) Task: {A61C9FB7-A608-4749-B0EF-E0EA94641C2F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {A943E658-8926-46B2-9C2F-505DFFD69B55} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-4089050159-2748266293-4026137074-1000 => C:\Users\Lenovo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87848 2020-12-11] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B2C9771A-52F1-4275-8C59-8346C015A964} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {BBB7C06D-32DE-4F96-9386-2A0656AE44C1} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758984 2020-02-11] (Lenovo -> ) Task: {BD8053C0-BEC7-46B0-9303-05838F153C61} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C7AA7DFA-2D3B-4363-9868-1F247EB2DDEF} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {C9E27EF9-E76A-4395-AEEC-0603DE4E4996} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-23] (Google LLC -> Google LLC) Task: {CBA8A0AD-D475-4C27-8CDC-C7A54D194396} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {CE0C9A59-0909-4C11-B7C7-9B7A555B77D9} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CFA50B75-8CAC-4060-AFDA-73F88B4348FD} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D08DF91F-4A91-404D-B9C9-BFC4EABE8D76} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {D13E6CF6-480A-44B0-B02E-972ABDD94857} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-03] (Mozilla Corporation -> Mozilla Foundation) Task: {D5714C28-A9BD-4FA1-8ECC-813315D45365} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D59E624A-2E0B-4AFD-AD84-673AA83A189D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D7AE98CF-E6A2-49F6-838A-6827932DB335} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D7DA1672-A57A-461E-B814-4EBEE84DFC10} - System32\Tasks\Opera scheduled Autoupdate 1546860893 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe Task: {DAE07BEB-934D-4546-AB15-0A7AA7554BB3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DDE52342-D872-42A6-A035-092E3AB685B0} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E56D61EF-A7AC-4531-87F0-240A401B6339} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-23] (Google LLC -> Google LLC) Task: {EABAFE4B-F97A-441F-8583-F25CD104E45E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FF52D786-B515-4DD8-8B62-676A127D9614} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-07] (Mozilla Corporation -> Mozilla Foundation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Lenovo Active Protection System.job => C:\Windows\system32\TpShUI.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{070EC115-18AD-4F33-B7AE-DB656D667FED}: [DhcpNameServer] 10.10.5.1 Tcpip\..\Interfaces\{0BB7A4A2-B114-4264-8CDC-61289815AFE5}: [DhcpNameServer] 10.10.21.1 Tcpip\..\Interfaces\{6864E809-D06A-4172-9FD8-A0E6B11CCA45}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{70507465-8CBC-4E34-98C0-217BBAE7035E}: [DhcpNameServer] 10.10.21.1 Tcpip\..\Interfaces\{7D8F8DF7-1EBA-4B1E-A27E-3B9A896FC19E}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{869779C9-9BE3-46F8-B2E1-E67B9CD1E5E4}: [DhcpNameServer] 10.10.21.1 Tcpip\..\Interfaces\{8DFBD3A7-98BA-4628-9DD3-411A71E5680B}: [DhcpNameServer] 10.10.5.1 Tcpip\..\Interfaces\{BB37980F-D399-4FC6-AD9C-EC7FA56C0B1D}: [DhcpNameServer] 10.10.21.1 Tcpip\..\Interfaces\{F436A23E-E683-48ED-BEA4-A9F55B9C1998}: [DhcpNameServer] 10.10.5.1 Edge: ====== DownloadDir: C:\Users\Lenovo\Desktop Edge DefaultProfile: Default Edge Profile: C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-07] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 2wtxl7p8.default-1491060272892-1544166202880 FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\2wtxl7p8.default-1491060272892-1544166202880 [non trouvé(e)] <==== ATTENTION FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595 [2021-01-13] FF Homepage: Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595 -> hxxps://www.google.com/ FF NewTab: Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-11-16 05:39:49&bName= FF Session Restore: Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595 -> est activé. FF Notifications: Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595 -> hxxps://mail.google.com; hxxps://www.gametwist.com; hxxps://www.dealabs.com; hxxps://calendar.google.com FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\firefox@ghostery.com.xpi [2020-12-08] FF Extension: (Tab Suspender) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\tabsuspender@michalewiczpiotr.xpi [2020-11-16] FF Extension: (uBlock Origin) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\uBlock0@raymondhill.net.xpi [2021-01-04] FF Extension: (Malwarebytes Browser Guard) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2020-12-16] FF Extension: (Boomerang for Gmail) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi [2020-11-19] [UpdateUrl:hxxps://www.boomeranggmail.com/firefox/updates.json] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-16] FF SearchPlugin: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\zphdvdqd.default-release-1605548582595\searchplugins\My Bing Search.xml [2020-11-23] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> ) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2021-01-13] CHR Extension: (Slides) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-04] CHR Extension: (Docs) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-04] CHR Extension: (Google Drive) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-04] CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-04] CHR Extension: (Sheets) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-04] CHR Extension: (Google Docs hors connexion) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-04] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-04] CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-04] CHR Extension: (Chrome Media Router) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-04] CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\System Profile [2020-12-30] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe) R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [8967416 2020-11-26] (Paramount Software UK Ltd -> Paramount Software UK Ltd) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1701224 2020-10-15] (O&O Software GmbH -> O&O Software GmbH) R2 QDLService2kLenovo; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe [1688384 2011-05-23] (Qualcomm Inc -> QUALCOMM, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2020-12-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB -> Ericsson AB) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [164832 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider) S3 AMPPALP; C:\WINDOWS\system32\DRIVERS\amppal.sys [164832 2013-05-21] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 ecnssndis; C:\WINDOWS\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB -> Ericsson AB) S3 ecnssndisfltr; C:\WINDOWS\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB -> Ericsson AB) S3 l36wgps; C:\WINDOWS\System32\drivers\l36wgps64.sys [101416 2011-07-01] (Ericsson AB -> Ericsson AB) S3 Mbm3CBus; C:\WINDOWS\System32\drivers\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation -> MCCI Corporation) S3 Mbm3DevMt; C:\WINDOWS\System32\drivers\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation -> MCCI Corporation) S3 qcfilterlno2k; C:\WINDOWS\System32\drivers\qcfilterlno2k.sys [6400 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbserlno2k; C:\WINDOWS\System32\drivers\qcusbserlno2k.sys [231040 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) R2 rimmptsk; C:\WINDOWS\System32\drivers\rimmpx64.sys [67072 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 rimspci; C:\WINDOWS\System32\drivers\rimspe64.sys [61952 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 rimsptsk; C:\WINDOWS\System32\drivers\rimspx64.sys [54784 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 rismxdp; C:\WINDOWS\System32\drivers\rixdpx64.sys [57856 2009-09-03] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 rixdpcie; C:\WINDOWS\System32\drivers\rixdpe64.sys [55808 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (AuthenTec, Inc. -> Authentec Inc.) S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [87168 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tap640$T; C:\WINDOWS\System32\drivers\tap640$T.sys [49920 2020-02-19] (Ghostery, Inc. -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; pas de ImagePath S3 MpKsl196d1dda; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A636125-0496-4BB7-B73E-73BBEF095389}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-01-13 18:02 - 2021-01-13 18:11 - 000032101 _____ C:\Users\Lenovo\Desktop\FRST.txt 2021-01-13 17:59 - 2021-01-13 17:59 - 002281472 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe 2021-01-13 08:42 - 2021-01-13 08:42 - 000000000 ___HD C:\$WinREAgent 2021-01-10 18:56 - 2021-01-10 18:56 - 000000913 _____ C:\Users\Lenovo\Desktop\Format Factory.lnk 2021-01-10 18:56 - 2021-01-10 18:56 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory 2021-01-09 14:16 - 2021-01-09 14:16 - 000000000 ____D C:\Users\Lenovo\Desktop\ALPTIS 2021-01-09 13:40 - 2021-01-13 18:07 - 000000000 ____D C:\FRST 2021-01-08 17:33 - 2021-01-08 17:31 - 000453919 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20210108-173332.backup 2021-01-08 17:31 - 2018-03-29 18:02 - 000000035 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20210108-173122.backup 2021-01-08 16:57 - 2021-01-08 17:36 - 000000085 _____ C:\WINDOWS\wininit.ini 2021-01-08 16:56 - 2021-01-08 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking 2021-01-08 16:54 - 2021-01-09 08:37 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2021-01-08 16:54 - 2021-01-08 17:36 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy 2021-01-08 15:01 - 2021-01-08 15:01 - 000000000 ____D C:\Users\Public\Documents\sun 2021-01-08 15:01 - 2021-01-08 15:01 - 000000000 ____D C:\ProgramData\Documents\sun 2021-01-08 14:44 - 2021-01-08 14:44 - 000000534 _____ C:\Users\Lenovo\Desktop\TOSHIBA EXT (D) - Raccourci.lnk 2021-01-08 14:39 - 2021-01-08 14:39 - 000000482 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TOSHIBA EXT (D).lnk 2021-01-08 14:30 - 2021-01-08 14:30 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.8 2021-01-08 11:46 - 2021-01-08 14:01 - 000000000 ____D C:\Program Files\RogueKiller 2021-01-08 11:08 - 2021-01-08 11:08 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\GlarySoft 2021-01-08 11:08 - 2021-01-08 11:08 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\DiskDefrag 2021-01-08 09:16 - 2021-01-08 09:16 - 000000000 ____D C:\Users\Lenovo\AppData\Local\cloud 2021-01-07 11:49 - 2021-01-08 12:39 - 000004208 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1610016563 2021-01-07 11:47 - 1987-12-19 22:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll 2021-01-07 11:47 - 1987-12-19 22:00 - 000084624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysinfo.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 001070232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000660120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomct2.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000444328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MShflxgd.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000416408 _____ (Microsoft Corporation ) C:\WINDOWS\SysWOW64\comct332.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000279192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatgrd.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatlst.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000219288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\richtx32.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000212112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mci32.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000179352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmask32.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comct232.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000131728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000127640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswinsck.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000104088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\picclp32.ocx 2021-01-07 11:46 - 1987-12-19 22:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll 2021-01-07 11:46 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2021-01-07 11:46 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll 2021-01-07 11:44 - 2021-01-07 11:44 - 000000000 ____D C:\Users\Lenovo\.cache 2021-01-07 08:15 - 2021-01-07 16:58 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-01-04 10:50 - 2021-01-12 19:20 - 110362624 _____ C:\WINDOWS\system32\config\SOFTWARE 2021-01-04 10:34 - 2021-01-04 10:50 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2021-01-01 09:11 - 2021-01-12 09:31 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps 2020-12-30 13:04 - 2020-12-30 13:04 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-12-30 09:23 - 2020-12-30 09:23 - 000000000 ____D C:\Users\Lenovo\AppData\Local\ZHP 2020-12-26 18:14 - 2020-12-26 18:18 - 000000000 ____D C:\Users\Lenovo\Documents\Network Monitor 3 2020-12-26 18:04 - 2020-12-26 18:11 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Wireshark 2020-12-15 19:40 - 2020-12-15 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software 2020-12-15 19:31 - 2020-12-15 19:31 - 000000000 ____D C:\Users\Lenovo\AppData\Local\O&O_Software_GmbH ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-01-13 18:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-01-13 18:06 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-01-13 17:41 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-01-13 17:36 - 2020-12-11 19:53 - 000004168 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E269796B-9E62-4379-956A-3C83EE06BBC2} 2021-01-13 17:32 - 2020-11-18 23:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-01-13 13:54 - 2016-12-11 08:36 - 000000000 ____D C:\Users\Lenovo\AppData\LocalLow\Mozilla 2021-01-13 13:53 - 2019-07-28 09:21 - 000000000 ___RD C:\Users\Lenovo\OneDrive 2021-01-13 13:52 - 2020-12-11 19:22 - 000000000 ____D C:\Users\Lenovo 2021-01-13 13:51 - 2020-12-11 19:14 - 000008192 ___SH C:\DumpStack.log.tmp 2021-01-13 13:51 - 2020-11-19 00:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-01-13 10:18 - 2020-11-16 18:27 - 000013420 _____ C:\Users\Lenovo\Desktop\ALPTIS SECU.xlsx 2021-01-13 09:09 - 2013-09-13 10:07 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-01-13 08:53 - 2013-07-26 13:06 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-01-12 19:20 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-01-12 10:58 - 2016-11-10 19:37 - 000000000 ____D C:\Users\Lenovo\Desktop\MES DOCUMENTS 2021-01-12 10:36 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-01-10 19:02 - 2020-04-05 11:47 - 000000000 ____D C:\FFOutput 2021-01-10 18:56 - 2020-04-07 10:01 - 000000000 ____D C:\Program Files\FormatFactory 2021-01-10 18:26 - 2019-10-07 12:47 - 000000000 ____D C:\Users\Lenovo\Desktop\Captvty 2021-01-09 14:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-01-09 12:25 - 2019-07-21 06:04 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo 2021-01-09 08:44 - 2020-11-19 00:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-01-09 08:38 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-01-08 17:06 - 2020-11-18 23:44 - 000392792 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-01-08 14:30 - 2015-01-08 11:50 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4 2021-01-08 11:41 - 2018-12-03 07:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\keit.co 2021-01-08 11:41 - 2013-07-26 11:15 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools 2021-01-08 09:50 - 2020-11-23 09:51 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-01-07 16:58 - 2013-08-20 11:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-01-07 11:30 - 2020-12-11 19:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-01-07 11:29 - 2013-08-20 11:35 - 000001005 ____H C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-01-05 09:33 - 2020-11-16 18:36 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent Web 2021-01-05 09:19 - 2020-11-16 18:36 - 000001923 _____ C:\Users\Lenovo\Desktop\uTorrent Web.lnk 2021-01-05 09:19 - 2020-11-16 18:36 - 000001909 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2021-01-05 09:19 - 2019-05-08 09:07 - 000000000 ____D C:\Users\Lenovo\AppData\Local\BitTorrentHelper 2021-01-01 09:50 - 2013-08-20 11:33 - 000000000 ____D C:\Program Files (x86)\VideoLAN 2021-01-01 09:48 - 2013-09-10 10:55 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\vlc 2020-12-31 11:06 - 2019-04-23 06:08 - 000000000 ____D C:\Program Files (x86)\FrostWire 6 2020-12-31 10:18 - 2018-08-26 11:48 - 000000336 _____ C:\DelFix.txt 2020-12-31 09:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-12-30 19:06 - 2015-06-11 14:43 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-30 19:06 - 2015-06-11 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-30 19:06 - 2015-01-20 12:56 - 000000000 ____D C:\Program Files\WinRAR 2020-12-30 12:38 - 2013-07-26 12:36 - 000000000 ____D C:\Program Files (x86)\WinRAR 2020-12-30 12:37 - 2020-12-11 12:01 - 000000000 ___DC C:\WINDOWS\Panther 2020-12-30 11:31 - 2018-08-25 09:53 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\ZHP 2020-12-30 11:31 - 2016-12-11 19:59 - 000000000 ____D C:\ProgramData\Lavasoft 2020-12-26 17:57 - 2013-07-26 10:35 - 000000000 ____D C:\ProgramData\Package Cache 2020-12-15 19:40 - 2020-11-20 18:16 - 000002513 _____ C:\Users\Public\Desktop\O&O Defrag.lnk 2020-12-14 08:39 - 2020-12-11 19:36 - 001924358 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-12-14 08:39 - 2019-12-07 15:50 - 000833160 _____ C:\WINDOWS\system32\perfh00C.dat 2020-12-14 08:39 - 2019-12-07 15:50 - 000167890 _____ C:\WINDOWS\system32\perfc00C.dat ==================== Fichiers à la racine de certains dossiers ======== 2019-01-01 12:05 - 2019-01-01 12:05 - 003299200 _____ () C:\Users\Lenovo\ZHPCleaner.exe 2019-10-12 16:16 - 2019-10-12 16:16 - 000000017 _____ () C:\Users\Lenovo\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================