Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Exécuté par Karine (administrateur) sur KARINE-PC (Packard Bell EasyNote LJ75) (01-06-2021 18:45:17)
Exécuté depuis C:\Users\Karine\Desktop
Profils chargés: Karine
Platform: Windows 10 Home Version 2004 19041.985 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Acer Incorporated -> Acer) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(NewTech Infosystems, Inc -> NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
(NewTech Infosystems, Inc -> NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Suyin) [Fichier non signé] C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8306208 2009-10-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-10-13] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [822816 2009-10-29] (Acer Incorporated -> Acer Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [340440 2021-04-16] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1157640 2009-09-17] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [262912 2009-10-29] (NewTech Infosystems, Inc -> NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [VideoWebCamera] => C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe [1507448 2009-07-28] (Suyin) [Fichier non signé]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2020-07-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Fichier non signé]
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\Run: [Spotify Web Helper] => C:\Users\Karine\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-07] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2018-09-03] (TomTom) [Fichier non signé]
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\Run: [Kaspersky Software Updater] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565008 2018-04-23] (Kaspersky Lab -> AO Kaspersky Lab)
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Karine\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Karine\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\RunOnce: [Uninstall 21.073.0411.0002\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Karine\AppData\Local\Microsoft\OneDrive\21.073.0411.0002\amd64"
HKU\S-1-5-21-674571467-2840290332-958730215-1001\...\RunOnce: [Uninstall 21.073.0411.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Karine\AppData\Local\Microsoft\OneDrive\21.073.0411.0002"
HKU\S-1-5-21-674571467-2840290332-958730215-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-674571467-2840290332-958730215-501\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [442368 2009-07-30] () [Fichier non signé]
HKLM\...\Windows x64\Print Processors\hpfpp101: C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll [254464 2009-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l101.dll: C:\WINDOWS\system32\hpf3l101.dll [138752 2009-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2019-09-30]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0029BB29-9C1D-4579-AAD2-CFDE2D03E4F7} - System32\Tasks\Scheduled scanning task => C:\PROGRA~2\SFR\PACKSC~1\apps\COMPUT~1\ANTI-V~1\fsav.exe -> /HARD /POLICY /SCHED /REPORT="C:\PROGRA~2\SFR\PACKSC~1\apps\COMPUT~1\ANTI-V~1\report.txt"
Task: {02CF1808-A3EB-4A67-B157-3FA081571529} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {06F62438-5307-4A8C-B1F3-38BF70BB5973} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {09F43DD9-704C-4722-AAD8-2F8C77059BE2} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {0C5B3CA2-B247-4D75-9BFF-E672E2AA40BC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {0CD2B6CB-F268-41DD-A34A-5E2F519E6DD6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {11A85AC3-F64A-4EA4-9F9B-52113335DC8D} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {1890CC5C-6F8D-4BB8-96A1-EF243D114C75} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D065923-911D-4A55-9BF9-B0F89C1DB345} - System32\Tasks\{E49C1DF5-7DFA-43BF-A446-4A955D278985} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12963024 2018-01-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {20A010D6-628B-4187-AFCE-A075A9A73D0B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {20D4DE79-ED59-4B8C-A68E-6D07BF9F94D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {25456C87-2A77-4266-9DE8-1784947C2C75} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {25832217-1BE0-41F1-A18B-F5D03B2F8C88} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2108624 2013-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {291C9AAD-23DC-487A-9EBB-9357DA5656C1} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {2A7F1116-1FDC-4360-AB27-DAAFAE471E50} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {33B09C51-6797-46BF-9DC9-29FE12520471} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1491664 2013-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {356B8615-3639-477B-9561-FFC763019273} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {367ED8D2-EBF6-4A27-8C38-703E2FFDB48F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {42881CD6-3781-47AC-AFF4-3CFDE31E7F6B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {43A55E81-F836-48BA-B3B1-7F1CBF1B8465} - System32\Tasks\{0A32AB6A-6564-46AA-9E37-428249D0F203} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Packard Bell GameZone\Amazonia\Uninstall.exe" -c "C:\Program Files (x86)\Packard Bell GameZone\Amazonia\install.log"
Task: {43FBE5A0-2C42-4174-ACF5-B30B679922CA} - System32\Tasks\{2CD68DE2-A83A-4202-9F6C-A4DDAAD6E6A7} => "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.5.0.119.374/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:notoffered;alreadyoffered
Task: {448ED65F-2269-4B2C-ABA8-5935D96120BC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A984D13-17FB-462F-A5CD-C9D17321F037} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {4BF227ED-2434-4961-9611-6EC83344B782} - System32\Tasks\{2DF5943F-3B0D-49AA-AC73-E9D46474DB20} => C:\Users\Public\Games\World of Warcraft\Launcher.exe [0 2015-10-03] ()
Task: {57C9E3EA-8EBA-4D80-9032-795053A27178} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5BD69843-129C-4E99-AFA4-51E707F39228} - System32\Tasks\{6A4CDC03-6C9F-4B14-96CC-DC04E7BAE78D} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {5C97D88E-A630-4AEF-B7AD-5F336AAA4AE1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {622F4D65-0B4D-4CAD-866E-8D3CF59A34A3} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {66DA86FD-32F4-4B9B-8316-706048D08B23} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {676BDECB-4F9C-4B74-89C4-0B379C25E783} - System32\Tasks\{1D061E6D-5E53-451B-87A6-2B6F0B1C0544} => C:\Windows\system32\pcalua.exe -a "C:\Users\Karine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q9LPE06Y\World of Warcraft Beta Setup.exe" -d C:\Users\Karine\Desktop
Task: {6DEE9C96-1B81-4837-A197-C97DC1F0B004} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6ED7B1F8-62C7-4EF0-82D8-4D916E7FB0A5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {77917255-76AD-4CBE-AA13-263B66FCF881} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-22] (Piriform Software Ltd -> Piriform Ltd)
Task: {7CFE4D4A-884A-4855-9E40-C2B8EDCCCAB4} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {843DE80E-3958-4B2D-8E69-DBF06E9B20FA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {912CEB3C-FD8A-4510-9635-4D17257ECD3A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {99B540E4-82DE-4E63-8668-D7B20589F519} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2179792 2013-05-13] (Microsoft Corporation -> Microsoft)
Task: {9CC1016F-EA5C-4E78-B36A-AC4369D9D587} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {9D30A92F-61C8-4D5D-B39B-FE3EDA3AFD98} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1491664 2013-05-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {A67CB0DB-A6AE-42C5-9C4A-0B4750E85727} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {A9B097C0-6179-43B4-B4E3-D8B1A8482B93} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {AABB5ADD-81F4-455F-8FE2-BA21D272AFEA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AEABF078-A2AE-420C-B85E-F7A6D8305DE7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AF05174F-764F-47A2-AD5C-F8E87801B5FA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B3197C99-825D-4ECF-8121-FFB77544C095} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3F6E9F6-CFB1-49E2-A18D-69B7306D0A89} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {B78EF3BB-1343-42CF-9A87-10AB2B5E0100} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B8BF6A8F-BF57-4AF9-A5AD-924808BCAE03} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BB1EB414-E462-47CA-92F9-0D2BFF6E9B47} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C754FFC5-4335-492B-AB33-00E8E4107BFC} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {C9E27BB1-664F-4642-8174-25C6F378A542} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {CA44FD00-46FC-4660-BB65-AEEFE5142A90} - System32\Tasks\{9AD3417B-D191-4A76-821C-AB5C31E1A848} => "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/5.3.0.120.374/en/abandoninstall?page=tsChrome&installinfo=google-toolbar:notoffered;userdeclined,google-chrome:offered-installed;madedefault
Task: {CAFA589E-A31A-46DD-8995-AB52D8F9FB06} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {D0D0C16C-16D9-4D8C-B16D-5C1438966DD8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {D2B68832-98F3-48BD-875C-5920CC3A8CBB} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {D494F4E5-A1D1-4534-BF9E-FC0BB5E9A207} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D5E446FE-F877-4D5D-BE75-7DCCAE30FC1F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D632CEBE-902E-4A46-8D93-027C3FA9F769} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E1405EBD-8C2B-4178-90A1-7461A941957F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {E6A22E22-2689-4167-B9D6-3D83C96A3DBB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {E77A1689-DD28-49F1-81A1-3C5A6F9BB7FF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {F36F7D4B-42E7-4C10-952E-3A126E144CD2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F7662F6A-57C5-4387-B1E0-20C80DF5BF2E} - System32\Tasks\{552C6561-4884-46AF-B39F-FC1B800C5E5C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12963024 2018-01-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAFEBEE8-4452-4958-9DFF-714ADF5366FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FC0A6017-C734-47D5-B4A7-0E490EA8898A} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2108624 2013-05-13] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Scheduled scanning task.job => C:\PROGRA~2\SFR\PACKSC~1\apps\COMPUT~1\ANTI-V~1\fsav.exe[ /HARD /POLICY /SCHED /REPORT C:\PROGRA~2\SFR\PACKSC~1\apps\COMPUT~1\ANTI-V~1\report.txt

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3e43f2b3-18b9-467d-9bd8-fa204afc1d66}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{503e78fa-8ad8-46be-bc9d-226ffcb87ee0}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{6db023b9-89e7-4e61-b976-fe756ba395e1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9b751934-026e-43f5-81cd-a6f96be2b8d1}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Karine\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-01]

FireFox:
========
FF DefaultProfile: 3txwnw8c.default-1542046583460
FF ProfilePath: C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\3txwnw8c.default-1542046583460 [2021-06-01]
FF Homepage: Mozilla\Firefox\Profiles\3txwnw8c.default-1542046583460 -> hxxps://www.google.fr/
FF Session Restore: Mozilla\Firefox\Profiles\3txwnw8c.default-1542046583460 -> est activé.
FF Extension: (AdBlock) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\3txwnw8c.default-1542046583460\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2020-02-13]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2013-02-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default [2018-11-13]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Google Slides) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-12]
CHR Extension: (Google Docs) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-12]
CHR Extension: (Google Drive) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-12]
CHR Extension: (YouTube) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-12]
CHR Extension: (Google Sheets) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-13]
CHR Extension: (Skype) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-12]
CHR Extension: (Gmail) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-12]
CHR Extension: (Chrome Media Router) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-13]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeActiveFileMonitor7.0; c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [169312 2008-12-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [844320 2009-10-29] (Acer Incorporated -> Acer Incorporated)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2009-12-24] (Macrovision Corporation -> Macrovision Europe Ltd.) [Fichier non signé]
R2 Greg_Service; C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated -> Acer Incorporated)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 ksu; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565008 2018-04-23] (Kaspersky Lab -> AO Kaspersky Lab)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [255744 2009-10-29] (NewTech Infosystems, Inc -> NewTech Infosystems, Inc.)
S3 OberonGameConsoleService; C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe [44312 2009-08-29] (Oberon Media Inc. -> )
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
S2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [194168 2019-03-09] (McAfee, Inc. -> McAfee, LLC.)
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160 2009-07-04] (Acer Incorporated -> Acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-16] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AR5416; C:\WINDOWS\system32\DRIVERS\athwx.sys [2076224 2009-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 MpKsl8ce67742; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5EA0701E-2642-435E-8821-5509E692319E}\MpKslDrv.sys [47336 2021-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 NETw5s64; C:\WINDOWS\System32\DRIVERS\NETw5s64.sys [6952960 2009-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-05-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-16] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-01 18:45 - 2021-06-01 18:48 - 000033695 _____ C:\Users\Karine\Desktop\FRST.txt
2021-06-01 18:43 - 2021-06-01 18:47 - 000000000 ____D C:\FRST
2021-06-01 18:41 - 2021-06-01 18:41 - 002299904 _____ (Farbar) C:\Users\Karine\Desktop\FRST64.exe
2021-06-01 18:38 - 2021-06-01 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-26 17:11 - 2021-06-01 18:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-05-13 11:23 - 2021-05-13 11:23 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 11:22 - 2021-05-13 11:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 11:22 - 2021-05-13 11:22 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 11:22 - 2021-05-13 11:22 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 11:22 - 2021-05-13 11:22 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 11:22 - 2021-05-13 11:22 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-13 11:21 - 2021-05-13 11:21 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 11:21 - 2021-05-13 11:21 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 11:21 - 2021-05-13 11:21 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 11:21 - 2021-05-13 11:21 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 11:20 - 2021-05-13 11:20 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 11:20 - 2021-05-13 11:20 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 11:00 - 2021-06-01 18:25 - 000002455 _____ C:\Users\Karine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-01 18:42 - 2016-11-30 12:09 - 000000000 ____D C:\Users\Karine\AppData\LocalLow\Mozilla
2021-06-01 18:42 - 2013-02-02 16:07 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-01 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-01 18:38 - 2013-02-02 16:07 - 000001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-01 18:38 - 2013-02-02 16:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-01 18:25 - 2020-12-02 08:47 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-674571467-2840290332-958730215-1001
2021-06-01 18:25 - 2015-10-03 15:05 - 000000000 ___RD C:\Users\Karine\OneDrive
2021-06-01 18:22 - 2020-06-19 09:02 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-01 18:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-01 18:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-01 18:18 - 2020-12-02 08:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-26 18:55 - 2019-08-13 22:37 - 000560640 _____ C:\Users\Karine\Desktop\Comptes_ACIF_Jupilles.xls
2021-05-16 12:05 - 2018-11-11 18:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-15 11:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-13 18:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-13 17:55 - 2020-12-02 08:47 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-13 17:50 - 2018-11-18 13:17 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-13 17:49 - 2020-12-02 08:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-13 17:49 - 2020-12-02 08:19 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-13 17:48 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-13 13:49 - 2020-12-02 08:41 - 002010350 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-13 13:49 - 2019-12-07 16:49 - 000866962 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-13 13:49 - 2019-12-07 16:49 - 000178276 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-13 13:42 - 2020-12-02 03:42 - 000000000 ____D C:\Users\Karine
2021-05-13 13:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-13 12:57 - 2020-12-02 08:19 - 000469448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-13 12:51 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-13 12:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 11:36 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 11:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 10:14 - 2020-12-01 18:27 - 000000000 ___HD C:\$WinREAgent
2021-05-13 10:10 - 2013-08-14 07:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 09:33 - 2010-04-28 10:01 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers ========

2009-11-06 00:46 - 2008-06-11 18:12 - 000776614 _____ () C:\Program Files (x86)\Common Files\packardbell.ico
2012-02-28 22:46 - 2012-02-28 22:46 - 000000000 _____ () C:\Users\Karine\AppData\Local\{F25774CC-9D42-4029-87A4-FEF8DFE7156A}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================