Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2021
Exécuté par emmab (administrateur) sur LAPTOP-9RDU5VH0 (LENOVO 81W1) (14-07-2021 16:21:23)
Exécuté depuis C:\Users\emmab\Downloads
Profils chargés: emmab
Platform: Windows 10 Home Version 2004 19041.1083 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361437.inf_amd64_b82dc71fab24f1f3\B361368\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361437.inf_amd64_b82dc71fab24f1f3\B361368\atiesrxx.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfService.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfServicePlugin.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\AutoModeDetect.exe
(Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_2fcf64020e032ea8\LenovoUtilityService.exe
(Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.0.44.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\emmab\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\emmab\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\emmab\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe <2>

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe [1230392 2021-01-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [795744 2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [460384 2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
HKU\S-1-5-21-60337738-2754131730-1821109990-1001\...\Run: [BingWallpaperApp] => C:\Users\emmab\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [13140856 2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-60337738-2754131730-1821109990-1001\...\Run: [PCPrivacyShield2020] => "C:\Program Files (x86)\PC Privacy Shield 2020\PCPrivacyShield2020.exe" minimized
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-06-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2021-07-14]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1552B71A-8021-43EF-B244-FFB235891F04} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1537424 2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {231E58AB-4845-4ECA-AA5D-CF86C6192E4D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {23495C46-1EB3-4658-8C6D-1A985008EF9C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier <==== ATTENTION
Task: {41CDA1AB-CADB-4DAF-B632-C4FB0038B372} - \Lenovo\ImController\TimeBasedEvents\fa5cc399-384f-4238-a843-f7bf8147d552 -> Pas de fichier <==== ATTENTION
Task: {443C8D2B-E952-4F75-9465-295CDA907307} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {44978162-1E61-4042-8212-8F86A0C77432} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {4C241DE1-2A5A-4C09-954F-BD2429D8E0E2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4DB41224-9C32-4AF4-902F-7CFF07DA61EE} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {4FFE780A-53EA-42A6-AF7C-B972603E0F00} - \Lenovo\ImController\TimeBasedEvents\8cfa6b24-a732-43da-8fad-ccbcd787e0c0 -> Pas de fichier <==== ATTENTION
Task: {5818AD31-3DE4-4724-9D41-FA4AAFB72BE4} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier <==== ATTENTION
Task: {6CD9733D-F5A3-4376-B4FB-DF8F19274CA9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-06] (Google LLC -> Google LLC)
Task: {7F0F162B-75E4-4987-8FA3-097FFF146C60} - \Lenovo\ImController\TimeBasedEvents\4de08378-670c-4012-9ad3-5bb6877f9c1f -> Pas de fichier <==== ATTENTION
Task: {80D8A2C4-E83C-49D7-87CC-2E948A5033DB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DC25DB7-D513-42FB-8CC5-D88C0613E390} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0C4E5DE-011E-4919-BFF4-C11B27A4C029} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147304 2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1EA6737-6482-4AF7-BFC9-613DB4632AD5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B057E54E-2605-42B7-A71A-7587254D25C9} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {B1028E29-41E2-48D3-A337-46BFC7DE066C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-06] (Google LLC -> Google LLC)
Task: {D32A6276-0481-40E0-A03F-7CD02C513533} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D56C6E92-8A89-46AB-A7BE-72459284AEA0} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier <==== ATTENTION
Task: {D5BF3F06-F355-425A-831F-DC8461523C80} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe
Task: {DC68B647-09B9-4C73-BB7D-798D4D737136} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DCFC10B3-56E9-4B80-A070-673DF4B8675A} - \Lenovo\ImController\TimeBasedEvents\8d4497ce-d0f7-4350-9ab9-75aedc3d0cfc -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0da1d74d-3030-43a5-b74b-c169127e9f49}: [DhcpNameServer] 152.206.1.2
Tcpip\..\Interfaces\{421ed9b7-c909-484a-8934-ceccc97f6337}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\emmab\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-14]
Edge Extension: (Total AdBlock) - C:\Users\emmab\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kkkldohdhcfhpjchcefpkfhjfeapdmek [2021-07-14]

FireFox:
========
FF DefaultProfile: sojeftvr.default
FF ProfilePath: C:\Users\emmab\AppData\Roaming\Mozilla\Firefox\Profiles\sojeftvr.default [2021-07-14]
FF ProfilePath: C:\Users\emmab\AppData\Roaming\Mozilla\Firefox\Profiles\z3ogeukd.default-release [2021-07-14]
FF Notifications: Mozilla\Firefox\Profiles\z3ogeukd.default-release -> hxxps://www.petit-bateau.fr
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\emmab\AppData\Roaming\Mozilla\Firefox\Profiles\z3ogeukd.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-07-14]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2020-03-18] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-60337738-2754131730-1821109990-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\emmab\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-60337738-2754131730-1821109990-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\emmab\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default [2021-07-14]
CHR HomePage: Default -> msn.com
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR714G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Slides) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-03-06]
CHR Extension: (Docs) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-03-06]
CHR Extension: (Google Drive) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-06]
CHR Extension: (YouTube) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-06]
CHR Extension: (Sheets) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-03-06]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-07-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-05]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-07-14]
CHR Extension: (Page d’accueil de MSN et moteur de recherche Bing) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\medgkifjblgfagaamokjbagbgocccepj [2021-05-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-06]
CHR Extension: (Gmail) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-06]
CHR Extension: (Chrome Media Router) - C:\Users\emmab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-05]
CHR HKU\S-1-5-21-60337738-2754131730-1821109990-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [medgkifjblgfagaamokjbagbgocccepj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056656 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
R2 CWAUpdaterService; C:\Program Files (x86)\Citrix\ICA Client\Receiver\UpdaterService.exe [40544 2020-03-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
R2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_0222c12a396c055f\DAX3API.exe [2301912 2021-01-05] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81912 2021-06-17] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_2fcf64020e032ea8\LenovoUtilityService.exe [531360 2021-02-23] (Lenovo -> Lenovo(beijing) Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\Windows\System32\LNBITSSvc.exe [1820080 2021-02-06] (Lenovo -> Lenovo(beijing) Limited)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 vbdenum; C:\Windows\System32\drivers\vbdenum.sys [119432 2019-12-17] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [425192 2021-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-10] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-07-14 16:21 - 2021-07-14 16:21 - 000019540 _____ C:\Users\emmab\Downloads\FRST.txt
2021-07-14 16:20 - 2021-07-14 16:21 - 000000000 ____D C:\FRST
2021-07-14 16:19 - 2021-07-14 16:19 - 002301440 _____ (Farbar) C:\Users\emmab\Downloads\FRST64.exe
2021-07-14 15:59 - 2021-07-14 15:59 - 000000000 ____D C:\Users\emmab\AppData\Local\OneDrive
2021-07-14 15:38 - 2021-07-14 15:39 - 000000000 ____D C:\AdwCleaner
2021-07-14 15:38 - 2021-07-14 15:38 - 008553680 _____ (Malwarebytes) C:\Users\emmab\Downloads\adwcleaner_8.3.0.exe
2021-07-14 15:36 - 2021-07-14 15:36 - 000000000 ____H C:\Users\emmab\OneDrive\Documents\Default.rdp
2021-07-14 15:10 - 2021-07-14 15:10 - 000000000 ____D C:\Users\emmab\AppData\Local\PCPrivacyShield2020
2021-07-14 15:04 - 2021-07-14 15:04 - 035958288 _____ (Piriform Software Ltd) C:\Users\emmab\Downloads\ccsetup582.exe
2021-07-14 14:36 - 2021-07-14 14:36 - 000000048 _____ C:\Users\emmab\AppData\Local\computerid
2021-07-14 14:35 - 2021-07-14 14:35 - 013140448 _____ (ShieldApps) C:\Users\emmab\Downloads\PCPrivacyShield2020Setup.exe
2021-07-14 14:35 - 2021-07-14 14:35 - 000000000 ____D C:\Users\emmab\AppData\Roaming\PC Privacy Shield 2020
2021-07-14 14:32 - 2021-07-14 14:32 - 000000000 ____D C:\Users\emmab\AppData\Local\Deployment
2021-07-14 14:32 - 2021-07-14 14:32 - 000000000 ____D C:\Users\emmab\AppData\Local\Apps\2.0
2021-07-14 14:32 - 2021-07-14 14:32 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_6d37dd1dd39fb1dd
2021-07-09 22:28 - 2021-07-09 22:28 - 002371072 _____ C:\Windows\system32\rdpnano.dll
2021-07-09 22:28 - 2021-07-09 22:28 - 001823304 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-07-09 22:28 - 2021-07-09 22:28 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-07-09 22:28 - 2021-07-09 22:28 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-07-09 22:28 - 2021-07-09 22:28 - 000570880 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-07-09 22:28 - 2021-07-09 22:28 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-07-09 22:28 - 2021-07-09 22:28 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-07-09 22:28 - 2021-07-09 22:28 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-07-09 22:28 - 2021-07-09 22:28 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-07-09 22:28 - 2021-07-09 22:28 - 000011351 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-07-09 22:27 - 2021-07-09 22:27 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-07-09 22:27 - 2021-07-09 22:27 - 000097792 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-06-29 23:12 - 2021-06-29 23:12 - 000000000 ____D C:\Users\emmab\AppData\LocalLow\Temp
2021-06-24 21:21 - 2021-06-24 21:21 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-06-24 20:53 - 2021-07-09 22:37 - 000000000 ____D C:\Program Files\Mozilla Firefox

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-07-14 16:21 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-14 16:10 - 2021-03-06 14:30 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-14 16:09 - 2021-03-06 14:30 - 000000000 ____D C:\Users\emmab\AppData\LocalLow\Mozilla
2021-07-14 15:49 - 2020-11-23 12:15 - 000756416 _____ C:\Windows\system32\perfh00C.dat
2021-07-14 15:49 - 2020-11-23 12:15 - 000142186 _____ C:\Windows\system32\perfc00C.dat
2021-07-14 15:49 - 2020-05-06 20:41 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2021-07-14 15:49 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-07-14 15:42 - 2021-03-06 14:27 - 000000000 ___RD C:\Users\emmab\OneDrive
2021-07-14 15:41 - 2020-11-23 03:29 - 000000000 ____D C:\ProgramData\Lenovo
2021-07-14 15:41 - 2020-05-06 20:33 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-14 15:41 - 2020-05-06 20:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-07-14 15:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-07-14 15:41 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2021-07-14 15:39 - 2021-03-06 14:29 - 000000000 ____D C:\Users\emmab\AppData\Local\Lenovo
2021-07-14 15:39 - 2020-11-23 03:29 - 000000000 ____D C:\Windows\system32\Tasks\Lenovo
2021-07-14 15:16 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-14 15:16 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-07-14 15:07 - 2020-05-06 21:30 - 000000000 ____D C:\Windows\panther
2021-07-14 15:05 - 2021-03-06 14:26 - 000000000 ____D C:\Users\emmab\AppData\Local\D3DSCache
2021-07-14 14:33 - 2019-12-07 11:50 - 000000000 ____D C:\Windows\system32\FxsTmp
2021-07-14 14:20 - 2020-05-06 20:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-07-14 12:25 - 2021-03-20 12:00 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-13 17:33 - 2021-03-09 11:24 - 000000000 ____D C:\Users\emmab\AppData\Local\Citrix
2021-07-10 14:46 - 2020-11-23 03:29 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-10 14:27 - 2020-05-06 20:33 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-07-09 22:37 - 2021-03-06 14:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-09 22:37 - 2020-05-06 20:33 - 000439128 _____ C:\Windows\system32\FNTCACHE.DAT
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-07-09 22:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-07-09 22:33 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-07-07 21:34 - 2020-11-23 03:31 - 000000000 ____D C:\Program Files\Microsoft Office
2021-07-02 21:51 - 2021-03-06 14:27 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-60337738-2754131730-1821109990-1001
2021-07-02 21:51 - 2021-03-06 14:19 - 000002428 _____ C:\Users\emmab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-02 21:40 - 2021-03-06 14:27 - 000000000 ____D C:\Users\emmab\AppData\Local\PlaceholderTileLogoFolder
2021-07-02 21:40 - 2020-11-23 03:29 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-02 21:40 - 2020-11-23 03:29 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-29 23:22 - 2021-03-06 14:28 - 000000000 ____D C:\Users\emmab\OneDrive\Documents\Scanned Documents
2021-06-29 21:09 - 2021-03-06 15:27 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-24 21:21 - 2021-03-06 14:30 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-17 15:01 - 2021-03-08 21:22 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-17 00:28 - 2020-11-23 12:01 - 000107992 _____ (Lenovo Group Ltd.) C:\Windows\system32\WudfUpdate_02000.dll
2021-06-17 00:28 - 2020-11-23 03:29 - 000107992 _____ (Lenovo Group Ltd.) C:\Windows\system32\ImController.CoInstaller.dll
2021-06-17 00:28 - 2020-11-23 03:29 - 000062448 _____ (Lenovo Group Ltd.) C:\Windows\system32\ImController.InfInstaller.exe
2021-06-17 00:27 - 2020-11-23 12:01 - 000429936 _____ (Lenovo Group Limited) C:\Windows\system32\iMDriverHelper.dll

==================== Fichiers à la racine de certains dossiers ========

2021-07-14 14:36 - 2021-07-14 14:36 - 000000048 _____ () C:\Users\emmab\AppData\Local\computerid

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================