Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Exécuté par 33682 (administrateur) sur LAPTOP-2C19I12V (HUAWEI WRTB-WXX9) (17-01-2022 17:10:04)
Exécuté depuis C:\Users\33682\Downloads
Profils chargés: 33682
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1415 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\Greatis\Reanimator\reanimator.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\Greatis\Reanimator\RegRunInfo.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files\Huawei\PCManager\MateBookService.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files\Huawei\PCManager\MBAMessageCenter.exe
(Huawei Technologies Co., Ltd. -> ) C:\Windows\System32\RPC\OSD\osdservice.exe
(Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\Huawei\HwLcdEnhancement\MonitorManageStart.exe
(Huawei Technologies Co., Ltd. -> Microsoft) C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_de0cf7bbf26b8ed4\aesm_service.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_caabc087e4b97a65\Intel_PIE_Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\drivers\SessionService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhqi.inf_amd64_93d0cb00b2ba5c60\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDInformV27.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(ScreenConnect Software -> ) C:\Users\33682\AppData\Local\Apps\2.0\P8JTGGVN.P90\A0OOEGO8.3RC\scre..tion_2c2536e5112611c9_0006.0003_8026bb01f852ad37\ScreenConnect.ClientService.exe
(ScreenConnect Software -> ScreenConnect Software) C:\Users\33682\AppData\Local\Apps\2.0\P8JTGGVN.P90\A0OOEGO8.3RC\scre..tion_2c2536e5112611c9_0006.0003_8026bb01f852ad37\ScreenConnect.WindowsClient.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(win.rar GmbH -> Alexander Roshal) C:\Program Files (x86)\WinRAR\WinRAR.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-938620632-2015676116-1144316738-1001\...\Run: [PCPrivacyShield2018] => "C:\Program Files (x86)\PC Privacy Shield 2018\PCPrivacyShield2018.exe" minimized (Pas de fichier)
HKU\S-1-5-21-938620632-2015676116-1144316738-1001\...\RunOnce: [Application Restart #0] => C:\Windows\SysWOW64\mshta.exe "C:\Users\33682\AppData\Local\Temp\HYD55D1.tmp.1627505437\HTA\uninstall.hta?utorrent"  "C:\Users\33682\AppData\Local\Temp\HYD4130.tmp.1627505432_permissionsCopy\uTorrent. (l'élément de données a 502 caractères en plus). <==== ATTENTION
BootExecute: autocheck autochk * sdnclean64.exe

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {062B8AFA-2814-408F-A447-E026B8925597} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\MRT.exe [137938848 2022-01-03] (Microsoft Windows -> Microsoft Corporation)
Task: {0B521449-B34D-4CA5-A8BD-E03F4907B179} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {0BBBFA50-0670-4392-9A83-7E343AFB654F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {127A7E6B-66C2-453B-933E-0B62E309FCF7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {17077F69-785F-4017-AF5C-409DC3F795BA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {3821ABD3-FAE1-4BA3-8714-553AD1C11BC8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42FE6689-FDC4-4355-8F01-427119B932B7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5129BB1C-3B8B-40B4-B789-25BA18A4610C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {843940D9-972E-4834-9B1F-0B4F571D0B80} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {890F081B-1874-4CC5-84AB-2363BFB36492} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {904C9DCE-8D33-400C-9495-881FBD0742A1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95D247F5-1CB8-4F52-8F76-F7612B7CF96B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {97B950DE-64B7-45B3-A0F8-6F9E95381550} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {9C402E7A-E541-4DC0-9F26-E3DB4B1B76CD} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {9FF37C4A-37EE-4CF6-B4AC-E69C1A1C5704} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {A0C54236-BAE8-473B-8006-F7BF468E0570} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3470BFC-D546-46A6-B53A-7DBC17F0968A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9ABB863-8EB1-4CA1-BA67-325B3B67C42E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {BE23EFFB-A9FD-4F6D-AD5B-175F798B3E8F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5751664 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {CBED495B-69F6-43A9-AAF7-255B943969D3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3A79959-1CDD-45D9-8588-9758ED0310C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D942C686-62E2-4F97-A469-195C5E811C57} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E10DD7AA-AA7A-4F9E-937E-2AF01E3090E9} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6191000 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {E536E6F4-61D0-4C62-94B2-26D0BE14E5AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB2B2BE8-9919-449A-9E3C-25CCF575A75B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {ECD5FAE1-050C-4EEE-B8FF-958E26B04657} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-10-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F01251F7-31B1-4489-8987-448639EBCA77} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4829904 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c2799695-a2a5-47e3-81bb-a92d87ca8dbf}: [DhcpNameServer] 172.16.50.12 172.16.50.14
Tcpip\..\Interfaces\{e9df4ce2-6264-41f3-ad1b-501d0bdef69b}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\33682\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-17]

FireFox:
========
FF DefaultProfile: 7on6gz9p.default
FF ProfilePath: C:\Users\33682\AppData\Roaming\Mozilla\Firefox\Profiles\7on6gz9p.default [2021-03-09]
FF ProfilePath: C:\Users\33682\AppData\Roaming\Mozilla\Firefox\Profiles\dji1nyrz.default-release [2022-01-17]
FF Notifications: Mozilla\Firefox\Profiles\dji1nyrz.default-release -> hxxps://mail.google.com
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-22] (Microsoft Corporation -> Microsoft Corporation)

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-16] (HP Inc. -> HP Inc.)
R2 Huawei_OSDServer; C:\Windows\system32\RPC\OSD\osdservice.exe [217072 2019-08-16] (Huawei Technologies Co., Ltd. -> )
R2 LCD_Service; C:\Program Files\Huawei\HwLcdEnhancement\LCD_Service.exe [25584 2019-12-19] (Huawei Technologies Co., Ltd. -> Microsoft)
R2 MBAMainService; C:\Program Files\Huawei\PCManager\MateBookService.exe [1006064 2019-12-19] (Huawei Technologies Co., Ltd. -> )
R2 ScreenConnect Client (d99d00c4-e16b-40fe-a2f5-14a6eaaacfab); C:\Users\33682\AppData\Local\Apps\2.0\P8JTGGVN.P90\A0OOEGO8.3RC\scre..tion_2c2536e5112611c9_0006.0003_8026bb01f852ad37\ScreenConnect.ClientService.exe [90768 2022-01-17] (ScreenConnect Software -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12727576 2021-02-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhqi.inf_amd64_93d0cb00b2ba5c60\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhqi.inf_amd64_93d0cb00b2ba5c60\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2021-07-28] (AVAST Software s.r.o. -> The OpenVPN Project)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 hwnetstat; C:\Program Files\Huawei\PCManager\WFPDriver.sys [30744 2019-12-19] (Huawei Technologies Co., Ltd. -> )
R0 IBtRstd; C:\WINDOWS\System32\drivers\ibtrstd.sys [38192 2019-10-27] (Huaqin Telecom Technology Co.,LTD -> Intel Corporation)
R3 MpKslf888eda6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F4AC0350-2A03-4073-AAAB-7BDE48414253}\MpKslDrv.sys [134376 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-20] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-20] (Microsoft Windows -> Microsoft Corporation)
R3 WDTDrv; C:\WINDOWS\System32\Drivers\WDTDrv.sys [55600 2019-10-31] (Huaqin Telecom Technology Co.,LTD -> )

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-17 17:10 - 2022-01-17 17:10 - 000022146 _____ C:\Users\33682\Downloads\FRST.txt
2022-01-17 17:08 - 2022-01-17 17:10 - 000000000 ____D C:\FRST
2022-01-17 17:07 - 2022-01-17 17:07 - 002311680 _____ (Farbar) C:\Users\33682\Downloads\FRST64.exe
2022-01-17 17:03 - 2022-01-17 17:03 - 000736349 _____ C:\Users\33682\Desktop\regrunlog.txt
2022-01-17 17:02 - 2022-01-17 17:04 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2022-01-17 17:02 - 2022-01-17 17:03 - 000000000 ____D C:\Users\33682\AppData\Local\UnHackMe
2022-01-17 17:02 - 2022-01-17 17:02 - 000001233 _____ C:\Users\33682\Desktop\Reanimator.lnk
2022-01-17 17:02 - 2022-01-17 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator
2022-01-17 17:02 - 2022-01-17 17:02 - 000000000 ____D C:\Program Files (x86)\Greatis
2022-01-17 17:02 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2022-01-17 17:00 - 2022-01-17 17:00 - 036384370 _____ C:\Users\33682\Downloads\regrun-reanimator_13-30-2022-0111_fr_377828.zip
2022-01-17 16:42 - 2022-01-17 16:42 - 000000000 ___HD C:\$WinREAgent
2022-01-17 16:24 - 2022-01-17 16:54 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-01-17 16:24 - 2022-01-17 16:25 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-01-17 16:24 - 2022-01-17 16:24 - 000001467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2022-01-17 16:24 - 2022-01-17 16:24 - 000001455 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2022-01-17 16:24 - 2022-01-17 16:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-01-17 16:24 - 2022-01-17 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2022-01-17 16:24 - 2017-05-23 09:22 - 000032240 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2022-01-17 16:23 - 2022-01-17 16:23 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\33682\Downloads\spybot-search-destroy_2-9-82_fr_10965.exe
2022-01-17 16:00 - 2022-01-17 16:01 - 035080496 _____ (TeamViewer Germany GmbH) C:\Users\33682\Downloads\TeamViewer_Setup_x64.exe
2022-01-17 14:54 - 2022-01-17 14:54 - 000000000 ____D C:\Users\33682\AppData\Local\Google
2022-01-17 14:53 - 2022-01-17 14:53 - 000000000 ____D C:\Users\33682\AppData\Local\Deployment
2022-01-17 14:53 - 2022-01-17 14:53 - 000000000 ____D C:\Users\33682\AppData\Local\Apps\2.0
2022-01-17 14:53 - 2022-01-17 14:53 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_8026bb01f852ad37
2022-01-17 14:52 - 2022-01-17 14:52 - 000086672 _____ C:\Users\33682\Downloads\ConnectWiseControl.Client.exe
2022-01-17 14:47 - 2022-01-17 15:34 - 000000000 ____D C:\Users\33682\AppData\Roaming\AnyDesk
2022-01-17 14:45 - 2022-01-17 14:46 - 003803376 _____ (AnyDesk Software GmbH) C:\Users\33682\Downloads\AnyDesk.exe
2022-01-10 09:46 - 2022-01-10 09:46 - 000010649 _____ C:\Users\33682\Desktop\Lucky logement.odt
2022-01-03 10:47 - 2022-01-03 10:47 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-03 09:50 - 2022-01-03 09:50 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-01-03 09:50 - 2022-01-03 09:50 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-03 09:49 - 2022-01-03 09:49 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-01-03 09:49 - 2022-01-03 09:49 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-20 10:05 - 2022-01-03 10:48 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-17 17:00 - 2021-03-15 18:26 - 000000000 ____D C:\Users\33682\AppData\Roaming\HwSynergy
2022-01-17 16:37 - 2021-03-09 18:45 - 000000000 ____D C:\Users\33682\AppData\LocalLow\Mozilla
2022-01-17 14:54 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-17 14:53 - 2021-03-09 18:45 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-17 14:04 - 2020-05-22 10:20 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-17 14:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-17 13:59 - 2020-05-22 10:15 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-17 13:57 - 2021-04-16 08:37 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-17 13:57 - 2021-04-16 08:37 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-17 13:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-17 13:56 - 2020-05-22 11:20 - 000000000 __SHD C:\Users\33682\IntelGraphicsProfiles
2022-01-17 13:56 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-13 15:27 - 2021-12-12 17:50 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-938620632-2015676116-1144316738-1001
2022-01-13 15:27 - 2021-10-06 19:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-938620632-2015676116-1144316738-1001
2022-01-13 15:27 - 2021-10-06 19:13 - 000002424 _____ C:\Users\33682\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-13 15:27 - 2020-05-22 10:10 - 000000000 ____D C:\ProgramData\Goodix
2022-01-10 10:23 - 2020-05-22 11:20 - 000012606 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2022-01-07 19:00 - 2021-10-06 19:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-07 19:00 - 2020-05-22 10:15 - 000013024 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2022-01-07 18:07 - 2021-10-06 19:18 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-07 18:07 - 2019-12-07 15:49 - 000792842 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-07 18:07 - 2019-12-07 15:49 - 000149972 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-07 18:03 - 2021-10-06 19:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-07 18:03 - 2021-10-06 19:12 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-07 18:03 - 2020-05-22 11:24 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-01-07 18:03 - 2020-05-22 10:13 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2022-01-07 18:03 - 2020-05-22 10:04 - 000000000 ___HD C:\Intel
2022-01-07 18:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-03 10:48 - 2021-10-06 19:12 - 000469152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-03 10:48 - 2021-03-09 18:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-01-03 10:48 - 2020-05-22 10:15 - 000018403 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2022-01-03 10:48 - 2020-05-22 10:15 - 000016312 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2022-01-03 10:48 - 2020-05-22 10:15 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2022-01-03 10:48 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-01-03 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-03 09:55 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-03 09:40 - 2021-03-09 19:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-03 09:30 - 2021-03-09 19:06 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-20 18:43 - 2021-12-12 19:32 - 000019587 _____ C:\Users\33682\Desktop\CONCILIATION DU RHÖNE.odt
2021-12-20 12:17 - 2021-07-08 12:56 - 000008782 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2021-12-20 10:18 - 2021-07-08 10:52 - 000008780 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2021-12-20 10:11 - 2021-10-15 09:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-20 10:11 - 2021-03-09 18:45 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-20 09:31 - 2021-11-28 13:18 - 000000000 ____D C:\Users\33682\Desktop\DA SILVA
2021-12-20 09:29 - 2020-05-22 10:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================