Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-02-2021 01 Exécuté par alain (administrateur) sur DESKTOP-E19DBMH (HP 23-q112nf) (20-02-2021 09:52:25) Exécuté depuis C:\Users\zert\Dropbox\Mon PC (DESKTOP-E19DBMH)\Desktop Profils chargés: alain Platform: Windows 10 Home Version 20H2 19042.804 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\116.4.368\QtWebEngineProcess.exe <2> (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel(R) System Usage Report -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksdeui.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxAccounts.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (MiniTool Software Limited -> ) C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> ) C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe (MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe (PacketVideo Corporation -> ) C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe (PacketVideo Corporation -> PacketVideo) C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe [289840 2018-08-30] (Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.) HKLM-x32\...\Run: [MTSM] => "C:\Program Files\MiniTool ShadowMaker\SMMonitor.exe" --auto HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-14] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [286064 2021-01-25] (IDSA Production signing key 2021 -> Intel) HKU\S-1-5-21-2656287853-3696136324-2601640562-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [659976 2020-07-16] (Kaspersky Lab -> AO Kaspersky Lab) HKU\S-1-5-21-2656287853-3696136324-2601640562-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2656287853-3696136324-2601640562-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [224768 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Epson Laser00: C:\Windows\System32\spool\prtprocs\x64\EP0LPP00.DLL [39424 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP) HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-08-08] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-31] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-10-07] (CyberLink Corp. -> CyberLink) HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-10-07] (CyberLink Corp. -> CyberLink) Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0EE659E5-2C00-44C7-B3E6-A4B0510D7887} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {10424258-E1C4-414E-B59F-7F59C59B05E7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274304 2019-12-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {1BB766DC-F1A8-48DA-9C5B-11650EE8E894} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {1BE176A0-9505-4C17-84AC-86272CE80EE1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation) Task: {1CEA9716-EE7B-4090-B366-DD59582E0913} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {23D24E99-C752-479E-9616-FFDA34757FB9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2021-01-17] (Mozilla Corporation -> Mozilla Foundation) Task: {2ACA08FB-B406-47FF-BC68-EE4637370D4F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {32CECE8E-068A-4A6B-8844-228CBA278B50} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {4E3F9251-6CBE-4321-92EC-7777B5462600} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {56C667C8-CB76-4AF1-A9CE-BF4F8A5195CC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {57E1D253-51D4-4078-9B1F-E182A815B76F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {5FC00831-4C2C-4D5F-85C4-6AC029702AF1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {655DD251-2AFF-48BB-8EC5-0A46654329DC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {746C0179-F039-4961-8665-C397E99481F4} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098912 2020-11-05] (Intel(R) System Usage Report -> Intel Corporation) Task: {82A126BA-C294-440F-A9B3-6DB30BBF51F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {83DA78FD-1B0B-4DFA-BCED-62B384BA236C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-16] (Google Inc -> Google Inc.) Task: {8C6057DC-B5B5-4D3D-AED4-D800659D8C5C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {8E777528-D879-4360-8216-345F47788B79} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {92C9198A-3B10-4A15-B37A-7CC339119F71} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.) Task: {A1356CEB-8E35-438C-AAB3-3AC03C774A80} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> ) Task: {B44F30AA-5D47-41A0-8146-2D9C0B0B2AA3} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {B7062C58-B8B7-4577-B129-1E2B08A1E1C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-06-16] (Google Inc -> Google Inc.) Task: {BA766BD6-4F4F-41E5-B164-F43DB9EAD650} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {BE152160-C67E-4028-8A0D-C68F4DBB685C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C421349E-6429-4EE6-A552-374605263825} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {CAF829C6-C8BD-4E5A-BF21-E6815B8F0982} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115056 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {D0FE5249-CFA8-4E91-A177-AD93D7D01D7C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-02-19] (Dropbox, Inc -> Dropbox, Inc.) Task: {E722A99D-E16A-4548-8108-8BBB5C596DCB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform) Task: {F328B0D5-B19F-4C35-9AF1-EB4592544416} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115056 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {F3FA61AE-495E-4498-B757-EDBCA1338902} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-02-19] (Dropbox, Inc -> Dropbox, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6536bb5d-1c94-4ca5-8517-b2c7b8c71b1b}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{c2848866-c6df-4d0e-99e3-9c57b95fb8a6}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\zert\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-19] Edge Extension: (Kaspersky Protection) - C:\Users\zert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-01-16] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\zert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-02-19] Edge HKU\S-1-5-21-2656287853-3696136324-2601640562-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 102l054n.default FF ProfilePath: C:\Users\zert\AppData\Roaming\Mozilla\Firefox\Profiles\102l054n.default [2020-04-18] FF ProfilePath: C:\Users\zert\AppData\Roaming\Mozilla\Firefox\Profiles\sbaab2ly.default-release [2021-02-20] FF Extension: (Malwarebytes Browser Guard) - C:\Users\zert\AppData\Roaming\Mozilla\Firefox\Profiles\sbaab2ly.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-02-17] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-02-19] [non signé] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-04-01] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-04-01] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default [2021-02-20] CHR DownloadDir: C:\Users\zert\Desktop CHR Notifications: Default -> hxxp://forum.frandroid.com; hxxps://forums.futura-sciences.com; hxxps://mail.google.com; hxxps://www.eglobalcentral.fr CHR HomePage: Default -> hxxp://www.google.fr/ CHR StartupUrls: Default -> "hxxps://www.google.fr/" CHR Extension: (Slides) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-21] CHR Extension: (Kaspersky Protection) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-01-15] CHR Extension: (Docs) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-21] CHR Extension: (Google Drive) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-08] CHR Extension: (YouTube) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-16] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-01] CHR Extension: (Tampermonkey) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-10-14] CHR Extension: (Kaspersky Password Manager) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2021-01-08] CHR Extension: (Logitech Smooth Scrolling) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2017-05-29] CHR Extension: (Dropbox pour Gmail) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2019-11-20] CHR Extension: (Gmail – La messagerie avec espace de ...) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\epjmaoonpkijfdegnaedablgmancjeem [2016-10-27] CHR Extension: (Sheets) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-21] CHR Extension: (Google Docs hors connexion) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-08] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-02-19] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-02-17] CHR Extension: (Extension AllDebrid ) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdjbgnpehbhpibonmjjjbjaoechnlcaf [2021-01-15] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01] CHR Extension: (Gmail) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-08] CHR Extension: (Chrome Media Router) - C:\Users\zert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-05] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) R2 AVP21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe [381928 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-03] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-02-19] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2021-02-19] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-02-14] (Dropbox, Inc -> Dropbox, Inc.) S3 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [358264 2019-08-07] (HP Inc. -> HP Inc.) S3 klvssbridge64_21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\x64\vssbridge64.exe [467352 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-12-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.2\ksde.exe [644264 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-17] (Malwarebytes Inc -> Malwarebytes) R2 MTAgentService; C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe [783344 2020-12-31] (MiniTool Software Limited -> ) R2 MTSchedulerService; C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe [226800 2020-12-31] (MiniTool Software Limited -> ) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> ) R2 Serveur Média; C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336 2010-12-14] (PacketVideo Corporation -> PacketVideo) S3 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [366720 2019-11-25] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-29] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-29] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 clwvd6; C:\WINDOWS\System32\drivers\clwvd6.sys [41400 2015-08-31] (CyberLink Corp. -> CyberLink Corporation) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [251608 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-17] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-17] (Disc Soft Ltd -> Disc Soft Ltd) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [36280 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [85424 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [33712 2020-02-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110392 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [212280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [127288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37496 2020-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-12-25] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-12-25] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.2\Bases\klids.sys [245280 2021-02-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [95544 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [97080 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-10-21] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-10-26] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-12-02] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2021-01-12] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [116888 2021-01-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2021-01-08] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [153400 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [250168 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300856 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-02-17] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-17] (Malwarebytes Inc -> Malwarebytes) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [330176 2019-05-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-29] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-29] (Microsoft Windows -> Microsoft Corporation) S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-02-20 09:51 - 2021-02-20 09:53 - 000000000 ____D C:\FRST 2021-02-19 17:09 - 2021-02-19 17:10 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2021-02-19 16:35 - 2021-02-19 16:35 - 000000661 _____ C:\Users\zert\Dropbox\Mon PC (DESKTOP-E19DBMH)\Documents\Fichiers sur mon ordinateur.lnk 2021-02-19 16:31 - 2021-02-19 16:31 - 000000934 _____ C:\Users\zert\Desktop\Mes fichiers dans Dropbox.lnk 2021-02-19 16:28 - 2021-02-19 16:28 - 001624440 _____ (Tous Les Drivers) C:\Users\zert\Desktop\Mes_Drivers_3.0.4.exe 2021-02-19 16:24 - 2021-02-19 16:42 - 000000000 ____D C:\Users\zert\Dropbox 2021-02-19 14:37 - 2021-02-19 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-02-19 14:26 - 2021-02-19 19:51 - 000000000 ____D C:\Users\zert\AppData\Local\Dropbox 2021-02-19 14:26 - 2021-02-19 17:43 - 000001216 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2021-02-19 14:26 - 2021-02-19 17:43 - 000001212 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2021-02-19 14:26 - 2021-02-19 14:38 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-02-19 14:26 - 2021-02-19 14:26 - 000004276 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2021-02-19 14:26 - 2021-02-19 14:26 - 000004044 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2021-02-19 14:26 - 2021-02-19 14:26 - 000000000 ____D C:\Users\zert\AppData\Roaming\Dropbox 2021-02-19 14:26 - 2021-02-19 14:26 - 000000000 ____D C:\ProgramData\Dropbox 2021-02-19 14:21 - 2021-02-19 14:21 - 000000000 ____D C:\Program Files\Logitech 2021-02-17 13:09 - 2021-02-17 13:09 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-02-17 13:09 - 2021-02-17 13:09 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-02-17 13:09 - 2020-08-03 05:45 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-02-14 04:12 - 2021-02-14 04:12 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-02-10 13:25 - 2021-02-10 13:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-02-10 13:24 - 2021-02-10 13:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-02-10 13:24 - 2021-02-10 13:24 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-02-10 13:24 - 2021-02-10 13:24 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-02-10 13:22 - 2021-02-10 13:22 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-02-09 17:28 - 2021-02-09 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN 2021-02-05 17:25 - 2021-02-05 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 15.0 2021-02-05 17:25 - 2020-02-23 14:54 - 000085424 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUDCPEPM.sys 2021-02-05 17:25 - 2020-02-23 14:54 - 000033712 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUEDKEPM.sys 2021-02-05 17:24 - 2020-10-12 13:47 - 000174216 _____ C:\WINDOWS\system32\setupempdrvx64.exe 2021-02-05 17:24 - 2020-10-12 13:45 - 005536904 _____ C:\WINDOWS\system32\BootMan.exe 2021-02-05 17:24 - 2020-10-12 13:45 - 003734664 _____ C:\WINDOWS\SysWOW64\BootMan.exe 2021-02-05 17:24 - 2020-10-12 13:45 - 000024712 _____ C:\WINDOWS\SysWOW64\EuEpmGdi.dll 2021-02-05 17:24 - 2020-10-12 13:45 - 000021128 _____ C:\WINDOWS\system32\EuEpmGdi.dll 2021-02-05 17:24 - 2020-02-23 14:49 - 000036280 _____ C:\WINDOWS\system32\epmntdrv.sys 2021-02-05 17:24 - 2020-02-23 14:49 - 000030136 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\EPMVolFl.sys 2021-02-05 17:24 - 2020-02-23 14:49 - 000030136 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\EPMVolFl.sys 2021-02-05 17:24 - 2020-02-23 14:49 - 000000057 _____ C:\WINDOWS\system32\setupepmdrv.ini 2021-02-05 17:00 - 2021-02-05 17:00 - 000000017 _____ C:\Users\zert\AppData\Local\resmon.resmoncfg 2021-02-01 18:06 - 2021-02-01 18:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2021-02-01 18:06 - 2021-02-01 18:06 - 000000000 ____D C:\Program Files\7-Zip ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-02-20 10:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-20 09:44 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-02-20 09:44 - 2016-06-17 05:52 - 000000000 ____D C:\Program Files\CCleaner 2021-02-20 09:43 - 2021-01-16 12:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-02-20 09:40 - 2021-01-16 12:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-02-19 20:41 - 2016-09-21 17:48 - 000000000 ____D C:\ProgramData\Serveur Média 2021-02-19 20:19 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-02-19 19:54 - 2016-06-16 19:00 - 000000000 ____D C:\Users\zert\AppData\Roaming\vlc 2021-02-19 18:21 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-02-19 18:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-02-19 17:58 - 2020-07-31 16:17 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-19 17:45 - 2017-05-27 10:12 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-02-19 17:43 - 2021-01-16 12:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-02-19 17:43 - 2021-01-16 12:10 - 000008192 ___SH C:\DumpStack.log.tmp 2021-02-19 17:43 - 2016-09-21 17:48 - 000000000 ____D C:\Program Files (x86)\Serveur Media 2021-02-19 17:42 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-02-19 17:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-02-19 17:10 - 2016-01-21 19:25 - 000000000 ____D C:\ProgramData\Intel 2021-02-19 17:09 - 2016-01-21 19:26 - 000000000 ____D C:\Program Files (x86)\Intel 2021-02-19 17:09 - 2015-11-04 05:23 - 000000000 ____D C:\ProgramData\Package Cache 2021-02-19 17:01 - 2016-01-21 19:25 - 000000000 ____D C:\Program Files (x86)\Realtek 2021-02-19 16:24 - 2021-01-16 12:17 - 000000000 ____D C:\Users\zert 2021-02-19 14:23 - 2017-05-29 17:24 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2021-02-19 14:23 - 2017-05-29 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-02-19 14:23 - 2017-05-29 17:23 - 000000000 ____D C:\Program Files\Common Files\LogiShrd 2021-02-19 14:22 - 2017-05-29 17:23 - 000000000 ____D C:\ProgramData\Logishrd 2021-02-17 13:29 - 2020-04-01 12:51 - 000000000 ____D C:\Users\zert\AppData\LocalLow\Mozilla 2021-02-17 13:11 - 2020-04-01 12:50 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-02-17 13:09 - 2020-08-03 05:46 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-02-17 13:09 - 2020-08-03 05:46 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-02-17 13:09 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-02-15 12:02 - 2020-04-19 11:15 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-02-15 11:58 - 2021-01-15 17:17 - 000000000 ___DC C:\WINDOWS\Panther 2021-02-10 23:52 - 2021-01-16 12:30 - 001933972 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-02-10 23:52 - 2019-12-07 15:49 - 000834670 _____ C:\WINDOWS\system32\perfh00C.dat 2021-02-10 23:52 - 2019-12-07 15:49 - 000168670 _____ C:\WINDOWS\system32\perfc00C.dat 2021-02-10 23:45 - 2021-01-16 12:10 - 000463600 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-02-10 23:44 - 2016-06-16 20:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-02-10 23:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-02-10 23:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-02-10 23:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-02-10 23:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-02-10 23:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-02-10 23:39 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-02-10 23:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-02-10 23:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-02-10 23:39 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-10 23:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-02-10 23:36 - 2018-12-23 23:10 - 000033321 ____H C:\Users\zert\AppData\Local\IconCache.db.backup 2021-02-10 12:49 - 2016-06-17 05:47 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-02-10 12:42 - 2016-06-17 05:47 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-02-09 17:28 - 2019-12-02 17:26 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2021-02-08 22:28 - 2021-01-18 12:15 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ebfa8138859c 2021-02-08 22:28 - 2021-01-16 12:59 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-02-06 23:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-02-05 17:23 - 2019-12-16 08:56 - 000000000 ____D C:\Program Files (x86)\EaseUS 2021-02-01 18:26 - 2021-01-16 19:56 - 000000000 ____D C:\WINDOWS\Minidump 2021-02-01 18:20 - 2021-01-16 12:59 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-01-31 17:11 - 2021-01-16 12:59 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-01-31 17:11 - 2021-01-16 12:59 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-01-31 17:11 - 2021-01-16 12:59 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-01-31 17:11 - 2021-01-16 12:59 - 000003352 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-01-29 17:15 - 2018-01-10 00:48 - 000000000 ____D C:\Users\zert\AppData\Local\Packages 2021-01-27 17:15 - 2020-10-13 15:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Fichiers à la racine de certains dossiers ======== 2016-12-02 13:07 - 2017-06-27 06:08 - 002799488 _____ () C:\Users\zert\ZHPCleaner.exe 2017-07-24 10:37 - 2018-01-06 14:44 - 002961280 _____ () C:\Users\zert\ZHPDiag3.exe 2021-02-05 17:00 - 2021-02-05 17:00 - 000000017 _____ () C:\Users\zert\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================