Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Exécuté par Christiane (administrateur) sur CHRISTIANE-PC (Acer Aspire 7745G) (12-02-2020 22:00:32)
Exécuté depuis C:\Users\Mon compte\Desktop
Profils chargés: Christiane & Mon compte (Profils disponibles: Christiane & Mon compte & Grand-père & Invité)
Platform: Windows 10 Home Version 1809 17763.973 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink -> ) [Fichier non signé] C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Mon compte\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17763.850_none_7e18264b4d00f498\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(NewTech Infosystems, Inc -> NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(NewTech Infosystems, Inc -> NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
0 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
0 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
0 C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19123.13.0_x64__8wekyb3d8bbwe\YourPhone.exe
0 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11046504 2010-07-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2103912 2010-07-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1667121263-4263940445-3353855160-1000\...\RunOnce: [Application Restart #1] => C:\Program Files\internet explorer\iexplore.exe -restart /WERRESTART <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Windows\System32\Magnify.exe [832512 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\System32\Magnify.exe [832512 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01D05307-F2A7-4772-9A0E-D29E553AAEEA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {15FCD92F-3C91-420D-879E-AAF91BE4347A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1A4BBE04-3404-4F30-8C8D-58D66583CB3D} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1B8B2BFE-2E50-4E09-A1D9-A86A51167237} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D8193EA-E053-4BE8-B325-936965DA97BC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {26042092-D963-47A9-8084-7DDEAEB7A08B} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2D5BD2D6-6672-4A4F-86EE-7D87F8B40869} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2D9B42BE-FCBF-43B8-8FCF-C857D9F3319C} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {2F51F8A9-BAE2-4315-B163-EB9970E6C311} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {37772B88-6E9C-429B-A969-B818E17DFD01} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {404962DA-B67D-4E67-9A0D-56A78A60170F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {43A354DB-C9AD-4183-A2FF-58CD9F158953} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {46912A0A-1FDA-41FF-B069-107260FD21FC} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {4813706C-BB6B-430C-89F9-8AC396C1EE20} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4DEEAD55-118A-4468-B0ED-DA9A9DFCB114} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {535DB5A9-ED1A-4F35-923B-ED0F93393EC5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63C75382-CC17-41C5-9270-70C594620827} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6DE34049-5D9D-42D4-ADAD-E9C4DBCFD727} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {780281F3-5A88-4027-9CDC-6CDF69C46628} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C76F551-7A49-4019-8347-5151F82E0CDC} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7F55185F-3010-4033-93D5-9A42E7D3EEB2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {84C0FFC8-73CC-47E6-AC92-D46F71D14D7E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {873116AD-DB2B-4DBD-9841-B5B314A12983} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {897A0D14-E09B-4170-B7CF-2DAA2765B62A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9417FF71-C5D9-49D3-BE0D-874B4D718BB4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {A59B147E-5612-4460-B08A-CBF42D40662D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AE7A4654-4C7C-41C1-8F0C-77380F73C8AB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B58B07CD-B044-4773-8F35-FBE3C8A4A202} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {D9D3DD15-00FE-4412-A9F8-9F0AF2F1F5B1} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DC918C5E-D0AF-4318-BF11-A3EFFCA3CB81} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E462F488-9474-4379-A73E-DD80EB0C1B43} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E9BD1B6E-022F-4B66-8C44-1BD2694BB736} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {EDA35744-FD24-432E-B3DE-86EB943BA41D} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {F943C611-01C3-4ABF-955E-F7D5A31D9C2E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3B075B62-2CB4-48F9-B7AC-EA0CBBFDFCEB}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D57AEAB8-8228-4652-8A6B-F4E611C45B4B}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-1667121263-4263940445-3353855160-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/access/allinone.asp
HKU\S-1-5-21-1667121263-4263940445-3353855160-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
HKU\S-1-5-21-1667121263-4263940445-3353855160-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer.msn.com
HKU\S-1-5-21-1667121263-4263940445-3353855160-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
SearchScopes: HKU\S-1-5-21-1667121263-4263940445-3353855160-1000 -> {F873102C-E21F-4419-B277-43C01A418AC4} URL = hxxp://www.google.com/search?q={searchTerms}

FireFox:
========
FF DefaultProfile: xp7y20ia.default
FF ProfilePath: C:\Users\Christiane\AppData\Roaming\Mozilla\Firefox\Profiles\xp7y20ia.default [2020-01-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2012-10-10] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2012-10-10] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-02-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-10-10] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-10-10] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-1667121263-4263940445-3353855160-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-10-10] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [255472 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [822304 2010-06-15] (Acer Incorporated -> Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2011-03-15] (CyberLink -> ) [Fichier non signé]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2017-07-11] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21648880 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674288 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [82664 2015-12-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [40448 2009-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
S3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 hwdatacard; C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys [116864 2009-06-15] (Huawei Technologies Co., Ltd.) [Fichier non signé]
S3 hwusbfake; C:\WINDOWS\System32\DRIVERS\ewusbfake.sys [116224 2009-06-15] (Huawei Technologies Co., Ltd.) [Fichier non signé]
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [227248 2017-10-30] (WDKTestCert charles-yeh,131345514351795974 -> Prolific Technology Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-03] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-12 22:00 - 2020-02-12 22:04 - 000020690 _____ C:\Users\Mon compte\Desktop\FRST.txt
2020-02-12 21:59 - 2020-02-12 22:02 - 000000000 ____D C:\FRST
2020-02-12 21:50 - 2020-02-12 21:50 - 002279424 _____ (Farbar) C:\Users\Mon compte\Desktop\FRST64.exe
2020-01-22 11:43 - 2020-01-22 11:44 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-21 17:53 - 2020-02-11 14:48 - 006350904 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2020-01-15 19:29 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2020-01-15 19:29 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2020-01-15 19:29 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2020-01-15 19:29 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2020-01-15 19:29 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 008905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 007922688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 006543736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-15 19:23 - 2020-01-15 19:23 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-15 19:23 - 2020-01-15 19:23 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 002419712 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-15 19:23 - 2020-01-15 19:23 - 002323896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 002149160 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001936520 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001677088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001670800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001665712 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000677144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-15 19:23 - 2020-01-15 19:23 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000410616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-15 19:23 - 2020-01-15 19:23 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000350416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000122568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-15 19:23 - 2020-01-15 19:23 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-01-15 19:23 - 2020-01-15 19:23 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-01-14 21:55 - 2020-01-21 17:53 - 000004552 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-01-14 19:13 - 2020-01-14 19:13 - 000000000 ____D C:\Users\Grand-père\AppData\Local\D3DSCache

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-12 22:03 - 2014-07-24 08:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-02-12 22:03 - 2012-04-07 00:53 - 120407888 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-02-12 22:02 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-12 21:58 - 2016-11-17 22:02 - 000000000 ____D C:\Users\Mon compte\AppData\LocalLow\Mozilla
2020-02-12 21:57 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-12 21:26 - 2019-03-17 21:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-12 18:48 - 2016-11-21 20:13 - 000000000 ____D C:\Users\Grand-père\AppData\LocalLow\Mozilla
2020-02-12 17:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-12 17:24 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-12 11:44 - 2015-08-09 22:19 - 000000000 ____D C:\Users\Mon compte\Documents\Santé
2020-02-11 21:16 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-02-11 21:16 - 2014-09-13 22:38 - 000000000 ____D C:\Users\Christiane\AppData\Local\Adobe
2020-02-11 21:15 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-02-11 14:48 - 2019-05-29 21:22 - 000004724 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-02-07 10:54 - 2019-03-17 23:22 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1667121263-4263940445-3353855160-1286
2020-02-07 10:54 - 2019-03-17 23:22 - 000000000 ___RD C:\Users\Grand-père\OneDrive
2020-02-07 10:54 - 2019-03-17 21:13 - 000002467 _____ C:\Users\Grand-père\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-06 22:00 - 2019-03-18 09:20 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1667121263-4263940445-3353855160-1003
2020-02-06 22:00 - 2019-03-18 09:20 - 000000000 ___RD C:\Users\Mon compte\OneDrive
2020-02-06 22:00 - 2019-03-17 21:13 - 000002467 _____ C:\Users\Mon compte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 08:41 - 2019-03-20 18:24 - 000000000 ____D C:\Users\Mon compte\AppData\Local\D3DSCache
2020-02-03 23:25 - 2019-03-17 21:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-22 11:44 - 2017-06-15 00:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-22 11:44 - 2017-04-21 22:15 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-22 11:44 - 2013-10-03 15:14 - 000008658 _____ C:\WINDOWS\wininit.ini
2020-01-17 15:22 - 2019-03-17 21:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-16 23:50 - 2018-09-15 07:09 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2020-01-16 14:07 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2020-01-16 14:04 - 2019-03-17 21:12 - 001974598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-16 14:04 - 2018-09-15 17:39 - 000867598 _____ C:\WINDOWS\system32\perfh00C.dat
2020-01-16 14:04 - 2018-09-15 17:39 - 000183258 _____ C:\WINDOWS\system32\perfc00C.dat
2020-01-16 14:01 - 2019-06-18 21:11 - 000000000 ____D C:\Program Files\UNP
2020-01-16 13:57 - 2019-03-17 21:03 - 000438328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-15 22:49 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-15 22:49 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-15 22:49 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr

==================== Fichiers à la racine de certains dossiers ========

2020-01-01 21:47 - 2020-01-01 21:48 - 000010775 _____ () C:\Users\Christiane\AppData\Local\HWVendorDetection.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================