Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 08-09-2021
Exécuté par marpat (administrateur) sur PATRICE1 (SAMSUNG ELECTRONICS CO., LTD. R720) (09-09-2021 19:38:11)
Exécuté depuis C:\Users\marpat\Downloads
Profils chargés: marpat
Platform: Windows 7 Home Premium Service Pack 1 (X86) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Windows\System32\HDAudio.exe
() [Fichier non signé] C:\Windows\System32\Rezip.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Garmin International -> ) C:\Program Files\Garmin\MyGarminAgent\myGarminAgent.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google) C:\Users\marpat\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\software_reporter_tool.exe <4>
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Oberon Media Inc. -> ) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
(PcWinTech.com) [Fichier non signé] C:\Windows\System32\CleanMem.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Samsung Electronics Co., Ltd.) [Fichier non signé] C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Samsung Electronics Co., Ltd.) [Fichier non signé] C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(SAMSUNG Electronics) [Fichier non signé] C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) [Fichier non signé] C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Simply Super Software -> Simply Super Software) C:\Program Files\Trojan Remover\Trjscan.exe
(Sony Corporation -> Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation -> Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Tweaking LLC -> Tweaking.com) C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1578280 2009-10-10] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-01] (Advanced Micro Devices, Inc.) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7744032 2009-09-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation -> Sony Corporation)
HKLM\...\Run: [MyGarminAgent] => C:\Program Files\Garmin\MyGarminAgent\MyGarminAgent.exe [337256 2010-03-16] (Garmin International -> )
HKLM\...\Run: [AgentConnectix64] => C:\Program Files\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe [2875496 2019-06-27] (Druide Informatique Inc. -> Druide informatique inc.) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Winlogon: [Shell] C:\windows\explorer.exe [2972672 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\windows\explorer.exe [2972672 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [1804648 2011-06-08] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [ANT Agent] => F:\Garmin\ANT Agent\ANT Agent.exe
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [GarminExpress] => C:\Program Files\Garmin\Express\express.exe [31135728 2020-12-10] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-11-12] (Google Inc -> Google Inc.)
HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2018-02-05] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\windows\system32\hpinkstsa011LM.dll [270696 2011-06-08] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\windows\system32\HPDiscoPMa011.dll [544616 2011-06-08] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\93.0.4577.63\Installer\chrmstp.exe [2021-09-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00698C6C-2DFE-4D89-804F-850C0AE86CBF} - System32\Tasks\{4737C5DA-4806-4EFB-83C2-A0AB17119F34} => C:\windows\system32\pcalua.exe -a H:\setup.exe -d H:\
Task: {09E4F250-75E0-4E58-9408-E3A2B5BB5A06} - System32\Tasks\TR_FastScan_Daily_marpat => C:\Program Files\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software)
Task: {0AA8834B-2479-4643-8F9C-556E2677105F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {0B17C749-4707-4F15-BD16-62EB78C522D7} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files\NCH Software\Pixillion\pixillion.exe [2007072 2021-04-26] (NCH Software, Inc. -> NCH Software)
Task: {0CCB39F3-A216-4914-B13D-E6D6CEEF0D86} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [562176 2009-09-21] (Samsung Electronics. Co. Ltd.) [Fichier non signé]
Task: {0EAEB86B-43A2-407B-BD90-620F6A2351B6} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files\PrivaZer\PrivaZer.exe [19993392 2020-12-14] (Goversoft LLC -> Goversoft LLC)
Task: {27305CB2-317C-46A6-A1AA-B278542D74C3} - System32\Tasks\TR_AntiHijack => C:\Program Files\Trojan Remover\TRAntiHJ.exe
Task: {27643078-47F0-4D9E-983C-2877D35FB821} - System32\Tasks\{45553FF3-1CB0-4FCD-9A92-123FDEF1707A} => F:\ANCV\Commandes_v5\Commandes_v5.exe
Task: {2A8B314D-740F-47BE-BE12-2A1A72D47067} - System32\Tasks\NCH Software\DoxillionDowngrade => C:\Program Files\NCH Software\Doxillion\doxillion.exe [1705080 2020-06-10] (NCH Software, Inc. -> NCH Software)
Task: {390B8D34-6C82-4CD7-BE81-B929847D1B7B} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2834280 2011-06-08] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {416A844D-6BB3-422D-A304-224F8FE52408} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {41E5B0B1-6D04-480D-BCE8-ACCE4223ACCE} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {466D41EB-3A55-49A7-A816-51E8BB8C6ED9} - System32\Tasks\{44FBB68B-DECD-4A6A-82D6-0EE5639E4734} => C:\windows\system32\pcalua.exe -a C:\Users\marpat\Downloads\RegCleaner.exe -d C:\Users\marpat\Downloads
Task: {494C8CBD-867F-456C-B016-AA855313AB7A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {4F4C37BE-E92C-4C01-80A0-37F962BB2122} - System32\Tasks\{02F4C232-93F5-44CE-B3DE-D8BDED8EB641} => F:\ANCV\Commandes_v5\Commandes_v5.exe
Task: {51D40D1A-3A48-4208-B070-EE331A850F7E} - System32\Tasks\{BFDC2AAC-1A5F-43CC-BCF3-F08651AC7075} => F:\ANCV\Commandes_v5\Commandes_v5.exe
Task: {522DF836-1A91-4326-B3DF-F6D4AF00392F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-09-26] (Google Inc -> Google LLC)
Task: {58E095E9-3003-4407-B17A-FD1EA5210890} - System32\Tasks\McQcTask => c:\PROGRA~1\mcafee\mqc\QcConsol.exe
Task: {59B30910-6AB7-487A-9160-AAEEB0D5836C} - System32\Tasks\McDefragTask => c:\PROGRA~1\mcafee\mqc\QcConsol.exe -> "C:\windows\system32\defrag.exe" C: -f
Task: {67916F31-3800-42FE-B0FF-883D9B749FE7} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe
Task: {70FF93D2-BD4B-48CF-BD99-DE040D6C6EE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154920 2019-09-26] (Google Inc -> Google LLC)
Task: {81300D56-0CCC-4FF9-BF1D-2CFD54E11C9A} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [153768 2011-02-15] (Visan Industries -> )
Task: {8526B61E-1D80-4642-972F-C3040C8EB098} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [834560 2009-09-12] (Samsung Electronics Co., Ltd.) [Fichier non signé]
Task: {8A3AC75F-DE15-483A-A4B7-4222C155CD0F} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [93184 2009-09-07] (SAMSUNG Electronics) [Fichier non signé]
Task: {8ADED9F4-00D1-4465-B0A6-8058591DC962} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [716800 2009-08-23] (Samsung Electronics Co., Ltd.) [Fichier non signé]
Task: {8E44DD4D-1F20-4919-B740-E6F45B03AEEE} - \tssurmount_discreetsurmount_discreet -> Pas de fichier <==== ATTENTION
Task: {9059E0FF-C85B-4D10-B4F0-305525CA55B5} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2246144 2009-10-07] (SEC) [Fichier non signé]
Task: {9ED3D78D-9011-4909-923E-8D1F697DEA48} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} C:\Program Files\Windows Live\SOXE\wlsoxe.dll [179584 2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0C39D3C-EB47-4B26-8E35-4380E01FDEFD} - System32\Tasks\NCH Software\ExpressZipDowngrade => C:\Program Files\NCH Software\ExpressZip\expresszip.exe [1569912 2020-08-07] (NCH Software, Inc. -> NCH Software)
Task: {A54E842C-334F-4DF3-B7D6-51ED56E3A112} - System32\Tasks\{4DAD4898-001C-4671-8482-A37780462BF3} => F:\ANCV\Commandes_v5\Commandes_v5.exe
Task: {A88F08BC-8444-4CD5-A9B5-AD4763776AB2} - System32\Tasks\{8F0FC5A8-F369-41F9-955C-408271704CE9} => C:\Program Files\ESET\ESET Security\ecmd.exe
Task: {AB4127CE-1D6E-4C2A-B434-F4B8D62F0A05} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [342016 2009-08-01] (SAMSUNG Electronics co., LTD.) [Fichier non signé]
Task: {B5A5D86B-A1B5-4417-83AF-8D3F1ACBF271} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1578256 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {BA3FEBD0-108C-48D8-863F-6618C829D531} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-12-10] (Garmin International, Inc. -> )
Task: {BE730D8A-E14D-4397-ACAC-C880D60825CB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [619448 2021-08-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {BF872509-7299-4595-9060-9E2A550F07AF} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [300912 2010-04-20] (Samsung Electronics CO., LTD. -> )
Task: {C0F8B1D7-EE46-430F-A2F6-94F871BDCF0B} - \tslizzielizzie -> Pas de fichier <==== ATTENTION
Task: {C3E15AB3-277D-4800-A509-BA93EB743169} - System32\Tasks\Clean System Memory => C:\Windows\system32\CleanMem.exe [61440 2014-08-21] (PcWinTech.com) [Fichier non signé]
Task: {C4C9BD50-CAA7-47EB-BD90-8D677BC7E890} - System32\Tasks\TR_Updater => C:\Program Files\Trojan Remover\Trupd.exe [6480784 2020-10-05] (Simply Super Software -> Simply Super Software)
Task: {DDD6AA40-4158-4593-A6B7-B1F1C7F84CC8} - \tsauriga-techyauriga-techy -> Pas de fichier <==== ATTENTION
Task: {DF65AA18-6097-4C45-AF45-18370BCF9200} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {E2221856-9000-4B2C-A7D0-9785A58C07E5} - System32\Tasks\TR_FastScan_AtLogon => C:\Program Files\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software)
Task: {E939BD15-8DD9-4357-A52D-59EAFCE342C3} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [5542984 2020-02-13] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {EECA8F61-7ACD-4379-99FD-ED8EADB8597C} - System32\Tasks\{D3A58379-B142-4CCA-914F-7954EFC41A3E} => C:\Program Files\ESET\ESET Security\ecmd.exe
Task: {F89DDDE3-9288-435D-B4C5-EFA8E0A7E68E} - System32\Tasks\{40800FA6-46B6-48DE-8A24-1DF9B1191E01} => C:\windows\system32\pcalua.exe -a C:\Users\marpat\Downloads\bde511en.exe -d C:\Users\marpat\Downloads
Task: {FD7F5C66-9FBB-43C1-9576-0D4EE83DB057} - System32\Tasks\{61FF03EE-7590-4C6A-8DF1-2353E2625ADE} => F:\ANCV\Commandes_v5\Commandes_v5.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe
Task: C:\windows\Tasks\User_Feed_Synchronization-{5D08EF41-6F8D-46ED-8B89-55D7DCCE5951}.job => C:\windows\system32\msfeedssync.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3ADE35FA-E2AE-4DFE-B206-DD5695A97867}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{91212968-35D5-49DF-9B37-2A1B67805436}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{91212968-35D5-49DF-9B37-2A1B67805436}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF DefaultProfile: sbqxqef6.default-1569497129124
FF ProfilePath: C:\Users\marpat\AppData\Roaming\Mozilla\Firefox\Profiles\sbqxqef6.default-1569497129124 [2021-09-09]
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2018-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2018-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-01-03]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default [2021-09-09]
CHR Notifications: Default -> hxxps://fr.tipsandtrics.com
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Extension: (Dr.Web Link Checker) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aleggpabliehgbeagmfhnodcijcmbonb [2021-07-25]
CHR Extension: (Google Drive) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-07]
CHR Extension: (YouTube) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-07]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-09]
CHR Extension: (Adobe Acrobat) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-08-10]
CHR Extension: (HTTPS partout) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-08-03]
CHR Extension: (G DATA WebProtection) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokapgenfjiafbmphhhcgmgkobiiomcp [2020-08-25]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2021-09-09]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-07-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-07]
CHR Extension: (Privacy Badger) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-08-30]
CHR Profile: C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-09]
CHR Profile: C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-09-09]
CHR Session Restore: Profile 1 -> est activé.
CHR Extension: (Slides) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-21]
CHR Extension: (Docs) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-21]
CHR Extension: (Google Drive) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-21]
CHR Extension: (YouTube) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-05]
CHR Extension: (Adobe Acrobat) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-02-20]
CHR Extension: (Sheets) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-21]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2021-02-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-05]
CHR Extension: (Google Analytics Debugger) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jnkmfdileelhofjcijamephohjechhna [2021-02-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-21]
CHR Extension: (Gmail) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-21]
CHR Extension: (Chrome Media Router) - C:\Users\marpat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR Profile: C:\Users\marpat\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-09]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [ojfilbbecboffgonioffpjjhcobjahoe]
CHR HKU\S-1-5-21-1223135797-1864993385-3875708080-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ojfilbbecboffgonioffpjjhcobjahoe]

Brave:
=======
BRA Profile: C:\Users\marpat\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-09-09]
BRA Extension: (Adobe Acrobat) - C:\Users\marpat\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-30]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-06] (Adobe Inc. -> Adobe)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-03-28] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [172032 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 AppServicea; C:\windows\system32\L6TUJN60IK.tmp [5632 2021-09-09] (Microsoft Corporation) [Fichier non signé] <==== ATTENTION
R2 HDAudio; C:\Windows\System32\HDAudio.exe [16896 2019-12-19] () [Fichier non signé]
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] (Oberon Media Inc. -> )
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation -> Sony Corporation)
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] () [Fichier non signé]
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [12122448 2021-06-15] (Adlice -> )
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [261272 2019-04-22] (Invincea, Inc. -> Sandboxie Holdings, LLC)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1710464 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
R2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AgereSoftModem; C:\windows\System32\DRIVERS\AGRSM.sys [1161760 2009-07-22] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
S3 ampa; C:\windows\system32\ampa.sys [35760 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
U5 AppMgmt; C:\windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R3 athr; C:\windows\System32\DRIVERS\athr.sys [2228224 2011-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\System32\drivers\AtihdW73.sys [87568 2016-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 atikmdag; C:\windows\System32\DRIVERS\atikmdag.sys [5173760 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [36688 2019-07-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ddmdrv; C:\windows\system32\ddmdrv.sys [33200 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 epmntdrv; C:\windows\system32\epmntdrv.sys [23936 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\windows\System32\drivers\EPMVolFl.sys [17920 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae.sys [124328 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 EuGdiDrv; C:\windows\system32\EuGdiDrv.sys [14080 2019-12-09] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 libusb0; C:\windows\System32\DRIVERS\libusb0.sys [35776 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
S3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [160872 2021-03-05] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMWebProtection; C:\windows\System32\DRIVERS\mwac.sys [81600 2019-05-04] (Malwarebytes Corporation -> Malwarebytes)
S4 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [79816 2009-06-18] (McAfee, Inc. -> McAfee, Inc.)
S4 mfebopk; C:\windows\System32\drivers\mfebopk.sys [35272 2009-06-18] (McAfee, Inc. -> McAfee, Inc.)
S4 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-06-18] (McAfee, Inc. -> McAfee, Inc.)
S4 mferkdk; C:\windows\System32\drivers\mferkdk.sys [34248 2009-06-18] (McAfee, Inc. -> McAfee, Inc.)
S4 mfesmfk; C:\windows\System32\drivers\mfesmfk.sys [40552 2009-06-18] (McAfee, Inc. -> McAfee, Inc.)
R2 npf; C:\windows\System32\drivers\npf.sys [34064 2009-02-08] (CACE TECHNOLOGIES, LLC -> CACE Technologies)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [27808 2021-06-24] (Adlice -> )
S3 RTL8167; C:\windows\System32\DRIVERS\Rt86win7.sys [139776 2009-07-14] (Microsoft Windows -> Realtek Corporation)
R1 SABI; C:\windows\system32\Drivers\SABI.sys [10752 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [194168 2019-04-23] (Invincea, Inc. -> Sandboxie Holdings, LLC)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [25840 2021-06-24] (Adlice -> )
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 MBAMProtection; \??\C:\windows\system32\DRIVERS\mbam.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

Erreur lors de la lecture du fichier: "C:\com.orange.mylivebox.fr-3."
Erreur lors de la lecture du fichier: "C:\com.camsam-2."
2021-09-09 19:37 - 2021-09-09 19:37 - 002014720 _____ (Farbar) C:\Users\marpat\Downloads\FRST.exe
2021-09-09 19:31 - 2021-09-09 19:31 - 000566128 _____ (Malwarebytes) C:\Users\marpat\Downloads\mbam-clean-2.3.0.1001 (1).exe
2021-09-09 19:08 - 2021-09-09 19:08 - 000110024 _____ C:\Users\marpat\AppData\Local\GDIPFONTCACHEV1.DAT
2021-09-09 19:06 - 2021-09-09 19:33 - 000408448 _____ C:\windows\system32\FNTCACHE.DAT
2021-09-09 19:01 - 2021-09-09 19:02 - 008534696 _____ (Malwarebytes) C:\Users\marpat\Downloads\adwcleaner_8.2 (3).exe
2021-09-09 18:54 - 2021-09-09 18:55 - 002101944 _____ (Malwarebytes) C:\Users\marpat\Downloads\MBSetup (2).exe
2021-09-09 18:37 - 2021-09-09 18:38 - 000077824 _____ C:\Users\marpat\Downloads\plan-de-ligne-rer-a_juin21.pdf
2021-09-09 18:16 - 2021-09-09 18:21 - 000108646 _____ C:\Users\marpat\Downloads\C251-8960-E451786.pdf
2021-09-09 16:07 - 2021-09-09 16:07 - 000234084 _____ C:\Users\marpat\Downloads\peages.pdf
2021-09-06 08:19 - 2021-09-06 08:20 - 000047941 _____ C:\Users\marpat\Downloads\Modèle Note de Frais (2).xlsx
2021-09-06 08:05 - 2021-09-06 08:05 - 000555026 _____ C:\Users\marpat\Downloads\formation Florent.pdf
2021-09-06 08:03 - 2021-09-06 08:03 - 000545148 _____ C:\Users\marpat\Downloads\formation Patrice.pdf
2021-09-04 19:09 - 2021-09-04 19:10 - 003104896 _____ (Alexander Roshal) C:\Users\marpat\Downloads\wrar602.exe
2021-09-04 19:06 - 2021-09-04 19:07 - 003333552 _____ (Alexander Roshal) C:\Users\marpat\Downloads\winrar-x64-601.exe
2021-09-04 19:00 - 2021-09-04 19:00 - 000014022 _____ C:\Users\marpat\Downloads\ReleveMensuelOctobre2019.pdf
2021-09-03 15:50 - 2021-09-03 15:50 - 000012535 _____ C:\Users\marpat\Downloads\RemboursementSoins26082021 (1).pdf
2021-09-03 15:40 - 2021-09-03 15:41 - 000095517 _____ C:\Users\marpat\Downloads\henner (2).pdf
2021-09-03 15:40 - 2021-09-03 15:41 - 000095517 _____ C:\Users\marpat\Downloads\henner (1).pdf
2021-09-02 20:55 - 2021-09-02 20:55 - 001988502 _____ C:\Users\marpat\Downloads\CR Bureau Syndical + AG.zip
2021-09-02 20:46 - 2021-09-02 20:46 - 000541668 _____ C:\Users\marpat\Downloads\Note frais juillet (1).pdf
2021-09-02 20:42 - 2021-09-09 16:05 - 000688709 _____ C:\Users\marpat\Downloads\note de frais -1 (1).pdf
2021-09-02 20:29 - 2021-09-02 20:29 - 000463038 _____ C:\Users\marpat\Downloads\CE_AG_IVB_17-12-21.pdf
2021-09-02 20:28 - 2021-09-02 20:28 - 000931079 _____ C:\Users\marpat\Downloads\Rappel __ _ Formation Préparer et Gagner les Elections de TROYES (1).zip
2021-09-02 20:24 - 2021-09-02 20:25 - 000708585 _____ C:\Users\marpat\Downloads\Céladon Traiteur 17_12_21.zip
2021-08-31 21:08 - 2021-08-31 21:08 - 000007294 _____ C:\Users\marpat\Downloads\DTO09_Questionnaire_Sante_Web_547902.Pdf
2021-08-31 21:03 - 2021-08-31 21:03 - 000000000 ____D C:\Users\marpat\Documents\Rappel __ _ Formation Préparer et Gagner les Elections de TROYES
2021-08-31 21:02 - 2021-08-31 21:02 - 000931079 _____ C:\Users\marpat\Downloads\Rappel __ _ Formation Préparer et Gagner les Elections de TROYES.zip
2021-08-30 21:18 - 2021-08-30 21:18 - 000012535 _____ C:\Users\marpat\Downloads\RemboursementSoins26082021.pdf
2021-08-28 15:47 - 2021-08-28 15:47 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2021-08-26 10:50 - 2021-08-26 10:50 - 000038707 _____ C:\Users\marpat\Downloads\coupon_justificatif_dossier_echange_ancv26-08-2021_61153848.pdf
2021-08-25 08:50 - 2021-08-30 20:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-08-10 21:48 - 2021-09-09 13:49 - 000002128 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-10 21:48 - 2021-09-09 13:49 - 000002087 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-08-10 21:45 - 2021-08-10 21:46 - 001342296 _____ (Google LLC) C:\Users\marpat\Downloads\ChromeSetup(9).exe
2021-08-10 21:45 - 2021-08-10 21:45 - 001342296 _____ (Google LLC) C:\Users\marpat\Downloads\ChromeSetup(8).exe
2021-08-10 21:15 - 2021-08-10 21:15 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-08-10 21:15 - 2021-08-10 21:15 - 000002124 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-09-09 19:43 - 2019-12-19 22:12 - 000000000 ____D C:\windows\Temp2
2021-09-09 19:42 - 2009-11-12 04:30 - 000000000 ____D C:\Program Files\Google
2021-09-09 19:42 - 2009-07-14 06:34 - 000023328 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-09-09 19:42 - 2009-07-14 06:34 - 000023328 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-09-09 19:40 - 2021-05-18 14:11 - 000031798 _____ C:\Users\marpat\Downloads\FRST.txt
2021-09-09 19:39 - 2019-09-27 17:16 - 000000000 ____D C:\FRST
2021-09-09 19:35 - 2018-11-23 22:06 - 000000000 ____D C:\Program Files\CCleaner
2021-09-09 19:34 - 2021-01-25 12:30 - 000000000 ____D C:\Users\marpat\AppData\Local\CrashDumps
2021-09-09 19:33 - 2009-07-14 06:53 - 000000006 ____H C:\windows\Tasks\SA.DAT
2021-09-09 19:31 - 2021-06-23 14:33 - 000005632 _____ (Microsoft Corporation) C:\windows\system32\L6TUJN60IK.tmp
2021-09-09 19:11 - 2009-07-14 06:53 - 000032496 _____ C:\windows\Tasks\SCHEDLGU.TXT
2021-09-09 19:06 - 2018-04-23 08:39 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-09-09 18:59 - 2019-05-04 19:15 - 000124328 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae.sys
2021-09-09 18:05 - 2020-12-14 11:01 - 000000000 ____D C:\Users\marpat\AppData\Local\PrivaZer
2021-09-09 18:00 - 2009-07-14 04:37 - 000000000 ____D C:\windows\inf
2021-09-09 17:50 - 2018-04-19 15:18 - 000000000 ____D C:\windows\Minidump
2021-09-09 14:54 - 2019-09-26 13:25 - 000000000 ____D C:\ProgramData\Mozilla
2021-09-09 14:54 - 2018-02-10 16:38 - 000000000 ____D C:\Users\marpat\AppData\LocalLow\Mozilla
2021-09-04 19:20 - 2010-02-17 18:53 - 000000000 ____D C:\Users\marpat
2021-09-04 19:10 - 2018-02-06 17:12 - 000000000 ____D C:\Users\marpat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-09-04 19:10 - 2018-02-06 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-09-04 19:10 - 2018-02-06 17:12 - 000000000 ____D C:\Program Files\WinRAR
2021-09-02 20:28 - 2020-05-11 11:45 - 000000000 ____D C:\windows\system32\Tasks\NCH Software
2021-08-30 22:45 - 2018-12-01 11:59 - 000652664 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2021-08-30 20:39 - 2018-02-10 16:38 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-08-28 15:47 - 2019-12-28 20:45 - 000002051 _____ C:\windows\wininit.ini
2021-08-10 21:06 - 2018-11-23 22:06 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update

==================== Fichiers à la racine de certains dossiers ========

2018-04-27 10:29 - 2018-06-14 16:01 - 003238272 _____ () C:\Users\marpat\ZHPCleaner.exe
2020-01-10 13:16 - 2020-01-10 13:16 - 000000779 _____ () C:\Users\marpat\AppData\Roaming\gdscan.log
2019-03-13 11:18 - 2019-03-06 05:00 - 000321226 ___SH () C:\Users\marpat\AppData\Roaming\twgfcga
2020-05-01 11:27 - 2020-05-01 11:27 - 000000042 _____ () C:\Users\marpat\AppData\Roaming\WB.CFG
2019-09-25 10:28 - 2021-05-20 21:36 - 000000017 _____ () C:\Users\marpat\AppData\Local\resmon.resmoncfg
2021-02-19 20:51 - 2021-02-19 20:51 - 000000000 _____ () C:\Users\marpat\AppData\Local\{03D09470-89B9-4FB7-B327-449D7A236EFE}
2021-03-04 19:49 - 2021-03-04 19:49 - 000000000 _____ () C:\Users\marpat\AppData\Local\{0BCE1E00-A33C-4D37-A9CE-826649E1AB31}
2021-03-07 20:13 - 2021-03-07 20:13 - 000000000 _____ () C:\Users\marpat\AppData\Local\{0FA9E04E-EDAF-47C5-AA00-7296900E282A}
2021-03-20 21:23 - 2021-03-20 21:23 - 000000000 _____ () C:\Users\marpat\AppData\Local\{183DD453-2CD8-416A-9FF4-959331BFEBA5}
2021-02-28 12:15 - 2021-02-28 12:15 - 000000000 _____ () C:\Users\marpat\AppData\Local\{19C0CB28-A23E-48FB-B9DE-E9B71AD780A1}
2021-05-17 08:59 - 2021-05-17 08:59 - 000000000 _____ () C:\Users\marpat\AppData\Local\{1CA449FB-9DE7-4292-9B8C-C8A373F45EE3}
2021-03-21 21:31 - 2021-03-21 21:31 - 000000000 _____ () C:\Users\marpat\AppData\Local\{216A2201-9A44-4BD9-82C9-A804610142D3}
2021-03-29 14:44 - 2021-03-29 14:44 - 000000000 _____ () C:\Users\marpat\AppData\Local\{246C1228-BAFE-4853-8F2A-8036CA6ACF31}
2021-02-06 11:09 - 2021-02-06 11:09 - 000000000 _____ () C:\Users\marpat\AppData\Local\{2A11C703-49F9-4888-97A4-B016BB0130BA}
2021-02-25 10:16 - 2021-02-25 10:16 - 000000000 _____ () C:\Users\marpat\AppData\Local\{2DE36C87-D702-4B96-AFCB-7F0D7A56D111}
2021-04-17 20:26 - 2021-04-17 20:26 - 000000000 _____ () C:\Users\marpat\AppData\Local\{33D70962-B069-4160-855E-AA108698C12B}
2021-03-30 20:11 - 2021-03-30 20:11 - 000000000 _____ () C:\Users\marpat\AppData\Local\{37ABAC31-2B43-4A77-89B1-2F7183565708}
2021-04-04 18:18 - 2021-04-04 18:18 - 000000000 _____ () C:\Users\marpat\AppData\Local\{3D60F5A1-F1CF-470D-BBE0-6C9C69515459}
2021-02-19 20:10 - 2021-02-19 20:10 - 000000000 _____ () C:\Users\marpat\AppData\Local\{425DEF1D-A2D7-470D-9AFF-155054DB6A8D}
2021-05-17 09:38 - 2021-05-17 09:38 - 000000000 _____ () C:\Users\marpat\AppData\Local\{4545E5DC-AE3B-48A7-B5C8-0482C29AD816}
2021-02-16 22:03 - 2021-02-16 22:03 - 000000000 _____ () C:\Users\marpat\AppData\Local\{4DD1014F-6576-4D36-B136-3BEFA9D2DCB0}
2021-04-28 20:39 - 2021-04-28 20:39 - 000000000 _____ () C:\Users\marpat\AppData\Local\{4F599DE6-A7DB-4EF0-A48F-8312C83C8D43}
2021-02-03 19:14 - 2021-02-03 19:14 - 000000000 _____ () C:\Users\marpat\AppData\Local\{522C4971-CE8B-4B61-A23F-0240F56D3EF0}
2021-05-04 09:22 - 2021-05-04 09:22 - 000000000 _____ () C:\Users\marpat\AppData\Local\{61BB81D9-0EF4-4F96-824B-E2416407FD62}
2021-03-17 21:21 - 2021-03-17 21:21 - 000000000 _____ () C:\Users\marpat\AppData\Local\{66BB51DD-A4DE-4436-83A9-BAA2DCA74F1C}
2021-04-30 19:27 - 2021-04-30 19:27 - 000000000 _____ () C:\Users\marpat\AppData\Local\{691BE3B0-79ED-4093-B55D-8152E2C3F054}
2021-04-16 18:57 - 2021-04-16 18:57 - 000000000 _____ () C:\Users\marpat\AppData\Local\{6A13BA4E-9EC3-4EA1-A508-F8D9B2B3CEA2}
2021-02-18 19:44 - 2021-02-18 19:44 - 000000000 _____ () C:\Users\marpat\AppData\Local\{6EB4B38E-D456-495C-B296-5ECA1530AF7F}
2021-03-24 10:22 - 2021-03-24 10:22 - 000000000 _____ () C:\Users\marpat\AppData\Local\{6F8EFAF2-FD9E-4891-AC19-3B8A97BE1D06}
2021-03-03 16:30 - 2021-03-03 16:30 - 000000000 _____ () C:\Users\marpat\AppData\Local\{77AF5FDE-CE49-4ED8-B082-1E44635DAC39}
2021-03-15 17:41 - 2021-03-15 17:41 - 000000000 _____ () C:\Users\marpat\AppData\Local\{79D9F293-2F17-4B63-9D44-A696FCA461E7}
2021-04-06 09:22 - 2021-04-06 09:22 - 000000000 _____ () C:\Users\marpat\AppData\Local\{85448649-CEC4-4A2D-ABEF-130E9E1A16F3}
2021-05-13 18:47 - 2021-05-13 18:47 - 000000000 _____ () C:\Users\marpat\AppData\Local\{87275B7D-CF84-4B19-9CDC-C0EEFD786DBB}
2021-02-11 10:58 - 2021-02-11 10:58 - 000000000 _____ () C:\Users\marpat\AppData\Local\{8B524E2E-38B0-402C-9A94-E5EDDA6EA5C1}
2021-03-16 19:47 - 2021-03-16 19:47 - 000000000 _____ () C:\Users\marpat\AppData\Local\{8CAA6D9E-4BC7-4C38-B83A-C5FD7AC67EC2}
2021-02-21 19:16 - 2021-02-21 19:16 - 000000000 _____ () C:\Users\marpat\AppData\Local\{96099A47-A4F9-4CAB-9F58-B6AE20B34DA7}
2021-04-25 18:32 - 2021-04-25 18:32 - 000000000 _____ () C:\Users\marpat\AppData\Local\{9DEE0F19-6B66-40A9-9E23-AA390F190AAA}
2021-03-19 17:04 - 2021-03-19 17:04 - 000000000 _____ () C:\Users\marpat\AppData\Local\{AC054192-B236-426A-AD86-DC49168C538A}
2021-02-15 19:32 - 2021-02-15 19:32 - 000000000 _____ () C:\Users\marpat\AppData\Local\{AE38A559-60D2-46D6-AB26-FF37FC9361F1}
2021-03-12 11:58 - 2021-03-12 11:58 - 000000000 _____ () C:\Users\marpat\AppData\Local\{B30EC663-6BC1-4C8B-84D8-31C91B2C7328}
2021-05-10 19:24 - 2021-05-10 19:24 - 000000000 _____ () C:\Users\marpat\AppData\Local\{C78FC364-F13E-44B4-B306-6EF47DFAC370}
2021-02-09 10:57 - 2021-02-09 10:57 - 000000000 _____ () C:\Users\marpat\AppData\Local\{CA2E447F-7C1E-4298-B675-D41A3F2EE138}
2021-05-09 18:28 - 2021-05-09 18:28 - 000000000 _____ () C:\Users\marpat\AppData\Local\{CB95ECC5-2ADD-4EC4-BC98-36E1E655898E}
2021-03-23 10:22 - 2021-03-23 10:22 - 000000000 _____ () C:\Users\marpat\AppData\Local\{CDF51D49-6FCE-4ED6-9254-4E0414A1B9E2}
2021-04-14 19:21 - 2021-04-14 19:21 - 000000000 _____ () C:\Users\marpat\AppData\Local\{D01BC3B2-E273-48A9-9C33-3B35302D5A54}
2021-02-21 19:33 - 2021-02-21 19:33 - 000000000 _____ () C:\Users\marpat\AppData\Local\{D2E2B55F-51B7-4F4D-99C9-99B11EC25593}
2021-04-10 20:14 - 2021-04-10 20:14 - 000000000 _____ () C:\Users\marpat\AppData\Local\{D4EEAB05-610F-4C39-AE7F-13F5F9EF6C40}
2021-03-25 11:51 - 2021-03-25 11:51 - 000000000 _____ () C:\Users\marpat\AppData\Local\{DB74CDD4-D5A7-4C75-B4F3-7FE9C15A85FB}
2021-05-02 18:59 - 2021-05-02 18:59 - 000000000 _____ () C:\Users\marpat\AppData\Local\{DD0B70F6-3219-40E3-9BE8-4795BC54A78D}
2021-05-12 10:57 - 2021-05-12 10:57 - 000000000 _____ () C:\Users\marpat\AppData\Local\{EA9991F1-9C99-46B7-8D2A-7482A860E1A0}
2021-04-03 10:13 - 2021-04-03 10:13 - 000000000 _____ () C:\Users\marpat\AppData\Local\{ED0BB47C-A1D4-46FC-A972-C20EFF595D27}
2021-04-07 20:34 - 2021-04-07 20:34 - 000000000 _____ () C:\Users\marpat\AppData\Local\{EFF22401-D60B-42DE-9DC1-B9B0E892FB36}
2021-02-07 13:04 - 2021-02-07 13:04 - 000000000 _____ () C:\Users\marpat\AppData\Local\{F1C85930-739F-401B-B9C7-9A9B19A4DB80}
2021-05-05 09:22 - 2021-05-05 09:22 - 000000000 _____ () C:\Users\marpat\AppData\Local\{FC103B32-BD0F-438E-8DE3-4C9285C5477F}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-09-04 20:29
==================== Fin de FRST.txt ========================