Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 05-04-2021
Exécuté par Véronique (administrateur) sur VÉRONIQUE-PC (ASUSTeK Computer Inc. K70IJ) (08-04-2021 21:37:23)
Exécuté depuis C:\Users\Véronique\Desktop
Profils chargés: Véronique
Platform: Microsoft Windows 10 Famille Version 20H2 19042.906 (X86) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x86__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x86__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288 2010-12-17] () [Fichier non signé]
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [185896 2006-09-28] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM\...\Run: [OpwareSE4] => C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [75304 2006-10-11] (Nuance Communications, Inc. -> ScanSoft, Inc.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [104936 2008-07-18] (CyberLink -> CyberLink)
HKLM\...\Run: [P2Go_Menu] => C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink -> CyberLink Corp.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2484424 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [295224 2020-11-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3530678428-1603484794-323371867-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3530678428-1603484794-323371867-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [793600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\ssb7MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssb7mpc.dll [25088 2012-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) 2000 DDK provider)
HKLM\...\Print\Monitors\ssb7M Langmon: C:\WINDOWS\system32\ssb7mlm.dll [26624 2012-04-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-04-04] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {031F9CC8-007B-4E7A-BA4C-AD1F3231DB28} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {07F28F4B-E143-4D4D-8846-D81DF727528B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {0B2376D5-0D92-46FA-AAA1-1652857D9212} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {0B4D0E95-9813-405D-8819-E0523D7A1C01} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MpCmdRun.exe [467328 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0E0FEE96-8DD8-4F4F-B819-0BC58EF8FD28} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MpCmdRun.exe [467328 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0E732F72-5284-4EBF-A127-BB7C103FF662} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files\Avira\Safe Shopping\Updater\Updater.exe
Task: {0F36948A-89F4-43CF-9174-943A81A7F88E} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {1EE8B360-7D3D-4CE6-8067-7884B16DB9E2} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {20AEAA70-7114-446D-9756-3E649B202497} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {21FF63E3-424F-4EDB-873D-9CFA5EB666CA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24D4463E-CBFF-4E71-A082-15FAB48E16FE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {25E24F36-879B-412F-B732-3CA82A179EBD} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {25FA730F-8C83-4002-9BF1-2D440AA36988} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {2C0455F7-D886-4BF3-B03A-715B83151DC3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2C487263-B552-4E8A-A4A8-AC2DA7CFCDE5} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {2E552A5B-24B6-4A66-AFEA-3051A5F27F7A} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files\Avira\Safe Shopping\Updater\Updater.exe
Task: {30CF06B3-7566-4021-9C08-48ABFDFD5D36} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {36B200D0-3FC9-468C-B2A9-AB05EBAF2AFB} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {3E036788-4368-4357-AC7A-E3E46BB41163} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1550048 2021-04-04] (Avast Software s.r.o. -> Avast Software)
Task: {404450D5-8E14-4A74-88A2-F7CB5D37B24A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4BD59C18-2C6E-4F14-B2C5-DF24577A82CB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [642544 2021-03-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {5476B66C-1310-4BBA-9ABC-1FC0DD4626E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {63207900-A2BB-4F58-B00D-ECA6D08C7273} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B79D8F7-6AE0-41E0-ACCD-600B099261B0} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe
Task: {6C093416-462B-4A1A-940E-D423505C924A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D3E43B5-2BB9-4DE9-BA02-C389AABFA444} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6DCBFC9A-D439-409F-818D-ECB8C84AACD6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {7CC781D4-72F7-4884-BB86-2B752BB7CFFC} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {91ECDD3E-3287-42F4-9C5E-8FDF7AAF8394} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {92C673B8-5197-4AA0-ACD4-BE4544F18D7E} - System32\Tasks\G2MUploadTask-S-1-5-21-3530678428-1603484794-323371867-1000 => C:\Users\Véronique\AppData\Local\GoToMeeting\15404\g2mupload.exe [32256 2019-10-17] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {940A26FE-EA61-4500-8C23-C67A6E880F84} - System32\Tasks\{20580C23-CD38-4D80-AB8F-41C882E3570F} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\WinAce\WinAce.exe" -d C:\Users\VRONIQ~1\AppData\Local\Temp -c "C:\Users\VRONIQ~1\AppData\Local\Temp\DRIVER_CMP-SMARTRW10.ZIP" <==== ATTENTION
Task: {944ECB47-E394-434D-98EF-7D8885B1318B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MpCmdRun.exe [467328 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {956E0733-B3B3-4A8D-982C-F0DAD26F6C3F} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files\Avira\Safe Shopping\Updater\Updater.exe
Task: {9794FD36-98C4-4319-BB0B-3D77A69A7886} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9D175E43-69D3-437F-8A77-F669D1422814} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A11BE2FD-2185-4439-ADAD-06BAFCA978FD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-05-15] (Google Inc -> Google Inc.)
Task: {A9B046CC-0D8C-4FF1-AF41-C8ECF9216376} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AB9180A8-AEA4-4F24-811C-DD8E4197BD76} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {AFEC3010-0937-4B18-A7F4-AC44D193235E} - System32\Tasks\{03352AEB-B867-4C9E-A582-41263047F727} => C:\Windows\system32\pcalua.exe -a C:\Users\Véronique\Downloads\eid-web-browser-mw-install-1.1.11.exe -d C:\Users\Véronique\Downloads
Task: {B4D087BF-7CF1-460F-B586-3B0BB57E385C} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {C2419D9C-BBD4-41E7-85EC-5893D628E087} - System32\Tasks\{4BE2F8E0-8EAD-4DC6-AB14-5AE5BD6E4579} => C:\Windows\system32\pcalua.exe -a C:\Users\Véronique\Downloads\irfanview_plugins_444_setup.exe -d C:\Users\Véronique\Downloads
Task: {CAF92C5C-C0B4-4B8E-8020-3C742F533A87} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D2239979-BC8F-4785-A1B9-700CE2570064} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D4E0DEBD-85FE-40AC-813A-89A5B1BC0C64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MpCmdRun.exe [467328 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB997753-B861-4E4E-9BEA-E563A573A222} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E24E3B4C-22B0-41A0-BB7C-06BAD5E6CA53} - System32\Tasks\G2MUpdateTask-S-1-5-21-3530678428-1603484794-323371867-1000 => C:\Users\Véronique\AppData\Local\GoToMeeting\15404\g2mupdate.exe [32256 2019-10-17] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {E29EA6FF-73E9-4CAF-B37B-6CF2B9BB9EA0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {E830EAEC-1BF8-4D71-AB12-C69DB731C3B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2017-05-15] (Google Inc -> Google Inc.)
Task: {EAEE8C46-ADAA-4ECC-BB96-AE99C95EEB36} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {F69F1016-0EEA-4928-9D0E-FFF1EE1070BF} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {F76538C4-A75B-4678-9C6D-92E96947BB6F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FC193719-4A30-40B8-8C6D-F9DAD6AA37BE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3530678428-1603484794-323371867-1000.job => C:\Users\Véronique\AppData\Local\GoToMeeting\19598\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3530678428-1603484794-323371867-1000.job => C:\Users\Véronique\AppData\Local\GoToMeeting\19598\g2mupload.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{0A1548E1-1040-4BF7-8BD5-67FFF3E46D66}: [DhcpNameServer] 62.197.111.140 109.88.203.3

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Véronique\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-08]

FireFox:
========
FF DefaultProfile: metmppsf.default-1617570140172
FF ProfilePath: C:\Users\Véronique\AppData\Roaming\Mozilla\Firefox\Profiles\metmppsf.default-1617570140172 [2021-04-08]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-04-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-04-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default [2021-04-08]
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=3.2.0&method=topbar
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Extension: (Slides) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (eID Chrome Extension) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2018-11-27]
CHR Extension: (YouTube) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-04-04]
CHR Extension: (Ecosia Search) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2020-05-19]
CHR Extension: (Adobe Acrobat) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-04-04]
CHR Extension: (Sheets) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-04]
CHR Extension: (Gmail) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-04]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [124616 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5959136 2020-12-27] (Malwarebytes Inc -> Malwarebytes)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\NisSrv.exe [1595368 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MsMpEng.exe [87112 2021-04-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3228672 2019-12-07] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2020-11-04] (Microsoft Corporation) [Fichier non signé]
U5 CertPropSvc; C:\WINDOWS\system32\svchost.exe [47016 2020-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [514760 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R3 L1E; C:\WINDOWS\System32\drivers\L1E62x86.sys [55296 2019-12-07] (Microsoft Windows -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [184200 2021-04-08] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17360 2020-12-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [213936 2021-04-08] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsla39de521; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8A72852C-B5A9-47B9-BF97-8437B6939461}\MpKslDrv.sys [48376 2021-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [7680 2007-07-31] (Microsoft Windows Hardware Compatibility Publisher -> ATK0100)
S3 phantomtap; C:\WINDOWS\System32\DRIVERS\phantomtap.sys [31032 2018-04-23] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
U5 SCardSvr; C:\WINDOWS\system32\svchost.exe [47016 2020-11-04] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2010-12-23] (Samsung Electronics) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [39320 2021-04-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [327912 2021-04-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53480 2021-04-04] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-08 21:37 - 2021-04-08 21:39 - 000024525 _____ C:\Users\Véronique\Desktop\FRST.txt
2021-04-08 21:36 - 2021-04-08 21:38 - 000000000 ____D C:\FRST
2021-04-08 21:33 - 2021-04-08 21:33 - 002011136 _____ (Farbar) C:\Users\Véronique\Desktop\FRST.exe
2021-04-08 15:58 - 2021-04-08 15:58 - 000213936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-05 20:02 - 2021-04-08 08:57 - 000000000 ____D C:\Users\gabri\AppData\Local\PlaceholderTileLogoFolder
2021-04-05 19:00 - 2021-04-05 19:08 - 000000000 ____D C:\Users\gabri\AppData\LocalLow\Mozilla
2021-04-05 19:00 - 2021-04-05 19:00 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Mozilla
2021-04-05 19:00 - 2021-04-05 19:00 - 000000000 ____D C:\Users\gabri\AppData\Local\Mozilla
2021-04-05 18:40 - 2021-04-05 18:40 - 000002276 _____ C:\Users\gabri\Desktop\Google Chrome.lnk
2021-04-05 18:32 - 2021-04-05 18:32 - 000000779 _____ C:\Users\gabri\Desktop\Documents - Raccourci.lnk
2021-04-05 18:32 - 2021-04-05 18:32 - 000000723 _____ C:\Users\gabri\Desktop\Musique - Raccourci.lnk
2021-04-05 18:32 - 2021-04-05 18:32 - 000000716 _____ C:\Users\gabri\Desktop\Images - Raccourci.lnk
2021-04-05 18:25 - 2021-04-05 18:25 - 000000000 ____D C:\Users\gabri\AppData\Local\Comms
2021-04-05 18:13 - 2021-04-05 18:15 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3530678428-1603484794-323371867-1003
2021-04-05 18:13 - 2021-04-05 18:15 - 000000000 ___RD C:\Users\gabri\OneDrive
2021-04-05 18:03 - 2021-04-05 19:18 - 000000000 ____D C:\Users\gabri\AppData\LocalLow\Adobe
2021-04-05 18:02 - 2021-04-05 18:03 - 000000000 ____D C:\Users\gabri\AppData\Local\Adobe
2021-04-05 18:02 - 2021-04-05 18:02 - 000000000 ____D C:\Users\gabri\AppData\Local\Publishers
2021-04-05 18:01 - 2021-04-05 18:58 - 000000000 ____D C:\Users\gabri\AppData\Local\Google
2021-04-05 18:01 - 2021-04-05 18:40 - 000002335 _____ C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-05 18:01 - 2021-04-05 18:01 - 000000000 ___RD C:\Users\gabri\3D Objects
2021-04-05 18:00 - 2021-04-08 08:56 - 000000000 ____D C:\Users\gabri\AppData\Local\ConnectedDevicesPlatform
2021-04-05 18:00 - 2021-04-05 20:02 - 000000000 ____D C:\Users\gabri\AppData\Local\Packages
2021-04-05 18:00 - 2021-04-05 18:03 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Adobe
2021-04-05 18:00 - 2021-04-05 18:00 - 000000000 ____D C:\Users\gabri\AppData\Local\VirtualStore
2021-04-05 17:59 - 2021-04-05 18:15 - 000002443 _____ C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-05 17:59 - 2021-04-05 18:13 - 000000000 ____D C:\Users\gabri
2021-04-05 17:59 - 2021-04-05 17:59 - 000000020 ___SH C:\Users\gabri\ntuser.ini
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\Voisinage réseau
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\Voisinage d'impression
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\Modèles
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\Mes documents
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\Menu Démarrer
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-04-05 17:59 - 2021-04-05 17:59 - 000000000 _SHDL C:\Users\gabri\AppData\Local\Historique
2021-04-05 17:59 - 2020-11-04 02:30 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2021-04-05 17:59 - 2017-05-21 02:06 - 000000000 ____D C:\Users\gabri\AppData\Local\Microsoft Help
2021-04-05 17:59 - 2011-04-12 03:44 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Media Center Programs
2021-04-05 16:24 - 2021-04-05 16:24 - 000000960 _____ C:\Users\Véronique\Desktop\Documents - Raccourci.lnk
2021-04-05 00:19 - 2021-04-05 18:15 - 000000000 ___HD C:\OneDriveTemp
2021-04-05 00:08 - 2021-04-05 00:08 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9
2021-04-05 00:07 - 2021-04-05 00:07 - 000000000 ____D C:\Program Files\OpenOffice 4
2021-04-05 00:02 - 2021-04-05 00:02 - 000000000 ____D C:\Users\Véronique\Desktop\OpenOffice 4.1.9 (fr) Installation Files
2021-04-04 23:59 - 2021-04-05 00:00 - 133764528 _____ C:\Users\Véronique\Downloads\Apache_OpenOffice_4.1.9_Win_x86_install_fr.exe
2021-04-04 23:12 - 2021-04-05 16:26 - 000000904 _____ C:\Users\Véronique\Desktop\Musique - Raccourci.lnk
2021-04-04 23:12 - 2021-04-05 16:26 - 000000897 _____ C:\Users\Véronique\Desktop\Images - Raccourci.lnk
2021-04-04 23:12 - 2021-04-04 23:12 - 000000832 _____ C:\Users\Véronique\Desktop\Téléchargements - Raccourci.lnk
2021-04-04 23:05 - 2021-04-04 23:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-04-04 23:03 - 2021-04-04 23:03 - 000333216 _____ (Mozilla) C:\Users\Véronique\Downloads\Firefox Installer.exe
2021-04-04 21:52 - 2021-04-04 21:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-04-04 21:51 - 2021-04-04 21:51 - 000941568 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-04-04 21:50 - 2021-04-04 21:50 - 001432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-04 21:50 - 2021-04-04 21:50 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-04-04 21:49 - 2021-04-04 21:49 - 000611952 _____ C:\WINDOWS\system32\TextShaping.dll
2021-04-04 20:57 - 2021-04-04 20:57 - 000000000 ____D C:\Program Files\Common Files\Oracle
2021-04-04 20:56 - 2021-04-04 20:56 - 000000000 ____D C:\Program Files\Common Files\Java
2021-04-04 18:39 - 2021-04-04 18:39 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-04-04 18:39 - 2021-04-04 18:39 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-04-04 18:39 - 2021-04-04 18:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-04-04 18:38 - 2021-04-04 18:38 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-04-04 18:37 - 2021-04-04 18:37 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-04-04 18:37 - 2021-04-04 18:37 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-04-04 18:37 - 2021-04-04 18:37 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-04-04 18:37 - 2021-04-04 18:37 - 000053760 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-04-04 18:36 - 2021-04-04 18:36 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-04-04 18:35 - 2021-04-04 18:35 - 001797120 _____ C:\WINDOWS\system32\dwmscene.dll
2021-04-04 18:35 - 2021-04-04 18:35 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-04-04 18:35 - 2021-04-04 18:35 - 000162304 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-04-04 18:35 - 2021-04-04 18:35 - 000118784 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-04-04 18:33 - 2021-04-04 18:33 - 001333760 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-04-04 18:33 - 2021-04-04 18:33 - 000455680 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-04-04 18:33 - 2021-04-04 18:33 - 000235520 _____ C:\WINDOWS\system32\HeatCore.dll
2021-04-04 18:32 - 2021-04-04 18:32 - 000128000 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-04-04 18:31 - 2021-04-04 18:31 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-04-04 18:31 - 2021-04-04 18:31 - 000330752 _____ C:\WINDOWS\system32\ssdm.dll
2021-04-04 18:31 - 2021-04-04 18:31 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-04-04 18:31 - 2021-04-04 18:31 - 000057344 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-04-04 17:14 - 2021-04-04 17:15 - 083364488 _____ (Oracle Corporation) C:\Users\Véronique\Downloads\jre-8u271-windows-x64.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-08 21:35 - 2019-12-07 08:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-08 17:42 - 2018-06-03 18:50 - 000000000 ____D C:\Program Files\CCleaner
2021-04-08 15:58 - 2020-11-14 19:56 - 000184200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-04-08 10:52 - 2020-11-04 02:43 - 001900358 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-08 10:52 - 2019-12-07 14:20 - 000832582 _____ C:\WINDOWS\system32\perfh00C.dat
2021-04-08 10:52 - 2019-12-07 14:20 - 000167312 _____ C:\WINDOWS\system32\perfc00C.dat
2021-04-08 10:52 - 2019-12-07 08:10 - 000000000 ____D C:\WINDOWS\INF
2021-04-08 10:48 - 2020-11-04 03:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-08 10:48 - 2020-11-04 02:23 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-08 10:47 - 2019-12-07 08:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-04-08 10:15 - 2017-05-17 14:24 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2021-04-08 10:07 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-08 09:56 - 2020-11-04 02:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-08 09:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-05 19:08 - 2019-07-01 21:48 - 000000000 ____D C:\ProgramData\Mozilla
2021-04-05 18:18 - 2019-12-07 08:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-04-05 18:09 - 2019-12-07 08:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-05 18:01 - 2019-12-07 08:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-05 17:32 - 2020-11-04 02:23 - 000460448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-05 17:31 - 2019-10-07 18:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-04-05 17:31 - 2019-06-12 19:58 - 000000684 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3530678428-1603484794-323371867-1000.job
2021-04-05 17:31 - 2019-06-12 19:58 - 000000588 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3530678428-1603484794-323371867-1000.job
2021-04-05 17:31 - 2017-05-17 00:31 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2021-04-05 16:43 - 2019-10-19 17:37 - 000000000 ____D C:\Users\Véronique\AppData\Local\ConnectedDevicesPlatform
2021-04-05 16:29 - 2019-10-19 17:37 - 000000000 ____D C:\Users\Véronique\AppData\Local\Packages
2021-04-05 16:21 - 2020-11-04 02:29 - 000000000 ____D C:\Users\Véronique
2021-04-05 00:22 - 2020-12-21 16:41 - 000000000 ____D C:\Users\Véronique\AppData\Roaming\WhatsApp
2021-04-05 00:22 - 2020-12-21 16:40 - 000000000 ____D C:\Users\Véronique\AppData\Local\WhatsApp
2021-04-05 00:19 - 2019-10-19 17:58 - 000000000 ___RD C:\Users\Véronique\OneDrive
2021-04-05 00:18 - 2020-11-04 03:00 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3530678428-1603484794-323371867-1000
2021-04-05 00:18 - 2020-11-04 02:29 - 000002455 _____ C:\Users\Véronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-04 23:43 - 2018-06-02 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-04-04 23:35 - 2020-08-20 21:06 - 000000000 ____D C:\Users\Véronique\AppData\Local\CrashDumps
2021-04-04 23:33 - 2017-05-17 00:32 - 000000000 ____D C:\Users\Véronique\AppData\LocalLow\Mozilla
2021-04-04 23:05 - 2017-05-17 00:31 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-04-04 23:02 - 2017-06-30 15:05 - 000000000 ____D C:\Users\Véronique\Desktop\Anciennes données de Firefox
2021-04-04 22:25 - 2019-06-12 19:58 - 000000000 ____D C:\Users\Véronique\AppData\Local\GoToMeeting
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-04 22:12 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-04 22:04 - 2019-12-07 08:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-04 21:50 - 2017-05-15 20:23 - 000413714 __RSH C:\bootmgr
2021-04-04 21:01 - 2018-11-27 18:43 - 000000000 ____D C:\Program Files\Java
2021-04-04 20:57 - 2018-11-27 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-04-04 20:55 - 2018-11-27 18:43 - 000162984 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2021-04-04 20:36 - 2017-05-17 16:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\Com
2021-04-04 20:34 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-04-04 20:33 - 2019-12-07 14:22 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-04-04 20:33 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-04-04 20:33 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-04-04 20:33 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\IME
2021-04-04 20:33 - 2019-12-07 08:12 - 000000000 ____D C:\Program Files\Windows Defender
2021-04-04 20:33 - 2019-12-07 08:03 - 000000000 ____D C:\WINDOWS\servicing
2021-04-04 20:32 - 2019-12-07 08:12 - 000000000 ____D C:\Program Files\Common Files\System
2021-04-04 20:17 - 2017-05-17 16:25 - 127268096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-04 20:16 - 2017-05-21 00:55 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-04-04 20:04 - 2009-07-14 04:04 - 000000478 _____ C:\WINDOWS\win.ini
2021-04-04 19:52 - 2019-10-19 17:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-04 18:53 - 2020-10-01 20:20 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-04 18:04 - 2020-11-04 03:00 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-04-04 18:01 - 2017-05-18 15:40 - 000002106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-04-04 17:29 - 2020-06-09 17:37 - 000002388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-04 17:09 - 2019-03-13 18:40 - 000000000 ____D C:\Users\Véronique\AppData\Roaming\vlc
2021-04-04 17:04 - 2019-09-25 10:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-04-04 16:57 - 2019-07-06 02:02 - 000163800 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae.sys
2021-04-04 16:55 - 2020-11-28 13:08 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b2431a660acf
2021-04-04 16:55 - 2020-11-04 03:00 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-04 16:52 - 2020-11-04 03:00 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

==================== Fichiers à la racine de certains dossiers ========

2020-03-28 16:26 - 2020-03-28 16:26 - 000284010 _____ () C:\Users\Véronique\AppData\Roaming\nn7_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-03-13 22:46 - 2019-03-13 22:46 - 000003584 _____ () C:\Users\Véronique\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-05-28 17:48 - 2020-12-26 19:44 - 000007597 _____ () C:\Users\Véronique\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================