Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-07-2022
Exécuté par Utilisateur (administrateur) sur CCF-03 (Micro-Star International Co., Ltd. MS-7B53) (23-07-2022 11:12:45)
Exécuté depuis C:\Users\Utilisateur\Downloads
Profils chargés: Utilisateur
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1826 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(DriverStore\FileRepository\cui_dc_comp.inf_amd64_1c77f1231c19bc72\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dc_comp.inf_amd64_1c77f1231c19bc72\igfxEM.exe
(services.exe ->) (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dc_comp.inf_amd64_1c77f1231c19bc72\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dc_base.inf_amd64_c4c819a8bb8b2891\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dc_base.inf_amd64_c4c819a8bb8b2891\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [126403424 2022-03-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1101296793-3828391728-1518580977-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\36C-9SeriesPCL Language Monitor: C:\WINDOWS\system32\KOAXWJAL.DLL [25568 2017-06-15] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Print\Monitors\C MF385-2SeriesPCL Language Monitor: C:\WINDOWS\system32\KOAXWJAL.DLL [25568 2017-06-15] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-03-10] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-22] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {018CBFE0-0D06-47DB-936C-0BBB9E01DA3F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1101296793-3828391728-1518580977-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {063E9340-C953-4DF3-80E7-589EBCBB0572} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Maintenance Schedule created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {0DF99EB9-E126-4D4D-AA7B-8D42B83B1D52} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1245545C-0572-4D7C-A0AA-90E4E91816D3} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {1AF0A2FF-0F4D-47C8-BDA1-E8DCC58DCD61} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {23B46377-22E0-4F05-A66D-C7C401C6E651} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {405CC6D1-B3AD-4D7A-A056-27EC8CE635EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-10] (Google Inc -> Google Inc.)
Task: {459469B0-4F56-4993-9E1C-AB5878D9692A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {45F6DBF1-157E-44A3-AAC5-CEFBE4F88363} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {4E9A1A5F-6260-4BA3-B460-1287270AB702} - System32\Tasks\ASC_SkipUac_Utilisateur => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /SkipUac (Pas de fichier)
Task: {60647CBA-CA42-43ED-A1B6-BEE34CB3B451} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {6F4A074F-52DD-475F-B094-E28463E7D5B6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [432128 2022-06-14] (Microsoft Windows -> Microsoft Corporation)
Task: {83AA07AA-EC08-4E81-A819-DE5E1084E48B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B6A4B29-15C6-4E95-88FC-5BF9FC70C048} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {915B5CAE-D662-4286-AC98-57E03B68168A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-10] (Google Inc -> Google Inc.)
Task: {9F19A0A5-F8AA-48FE-8AB7-88984A0C1704} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {A68A63A9-C334-41D2-B126-2F1E7E1A6B99} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {A8177076-F3AF-464E-9319-F718E783DBBB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B265076D-739C-4646-BBA8-7E4F2C519AE6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {C425C911-CAE5-45FE-B670-17ACBAB5CC7E} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Utilisateur\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-07-22] (ESET, spol. s r.o. -> ESET)
Task: {C59E3769-08F1-41C6-80BD-610E34944AF4} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {CE7FD018-C606-4F57-99AB-E7D102794ADC} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [432128 2022-06-14] (Microsoft Windows -> Microsoft Corporation)
Task: {D9570E5C-B1D7-4187-8F19-89CA624CE971} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DC29AD6B-A3FA-4C11-AFB5-B070CC42F467} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {DCE379DD-B4AB-4909-9595-0DB477B696E4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Utilisateur\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2022-07-22] (ESET, spol. s r.o. -> ESET)
Task: {E31D8F83-FD88-4BCB-B05F-8D6CEA4A10C2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E935EDF8-6ABD-418C-BA6D-AD00DB6A9A0E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\920DE14B-311D-4BF0-9A22-E5D7374BAEE7\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [448512 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
Task: {EEF09008-096E-4FE0-A9A7-CCBCC18743A9} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {F67F78B1-DE6E-4ACC-8C9D-A8A72D1F8C35} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE79538A-34D6-47AE-A02B-5D4F36C49357} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b6ddea6d-0696-4bd8-9dea-41626bcee663}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\Utilisateur\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-12]
Edge DownloadDir: Default -> C:\Users\Utilisateur\Downloads

FireFox:
========
FF DefaultProfile: e9gh331q.default
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\e9gh331q.default [2022-07-22]
FF user.js: detected! => C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\e9gh331q.default\user.js [2020-11-25]
FF Homepage: Mozilla\Firefox\Profiles\e9gh331q.default -> hxxps://www.google.com
FF Notifications: Mozilla\Firefox\Profiles\e9gh331q.default -> hxxps://www.lemonde.fr; hxxps://www.faire-face.fr
FF Extension: (I don't care about cookies) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\e9gh331q.default\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2022-06-21]
FF Extension: (uBlock Origin) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\e9gh331q.default\Extensions\uBlock0@raymondhill.net.xpi [2022-06-14]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-11-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-11-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-06-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1101296793-3828391728-1518580977-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2022-07-22]
CHR Notifications: Default -> hxxps://drop.infini.fr; hxxps://greattypecaptcha.top; hxxps://www.galerieslafayette.com; hxxps://www.huffingtonpost.fr; hxxps://www.lemonde.fr; hxxps://www.operadeparis.fr; hxxps://www.psychologies.com; hxxps://www.sncf-connect.com; hxxps://www.universomamma.it
CHR Extension: (uBlock Origin) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-06-21]
CHR Extension: (I don't care about cookies) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-06-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-14]
CHR Extension: (Meta4 ClickOnce Launcher) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkncabbipkgbconhaajbapbhokpbgkdc [2021-07-16]
CHR Extension: (SponsorBlock pour YouTube - Supprime les publicités intégrées) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2022-07-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-25]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncHelper.exe [3381632 2022-07-15] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\OneDriveUpdaterService.exe [3822496 2022-07-15] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14585832 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-10] (Martin Malik - REALiX -> REALiX(tm))
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S4 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S4 IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFMBRProtect.sys [X]
S4 IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFSafeBox.sys [X]
S4 IUProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [X]
S4 IURegistryFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-22 18:08 - 2022-07-22 18:08 - 000003864 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-07-22 18:08 - 2022-07-22 18:08 - 000003422 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-07-22 18:06 - 2022-07-22 18:07 - 000032177 _____ C:\Users\Utilisateur\Downloads\Addition.txt
2022-07-22 18:04 - 2022-07-23 11:13 - 000022355 _____ C:\Users\Utilisateur\Downloads\FRST.txt
2022-07-22 18:03 - 2022-07-23 11:12 - 000000000 ____D C:\FRST
2022-07-22 18:03 - 2022-07-22 18:03 - 002369536 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64.exe
2022-07-22 17:35 - 2022-07-22 17:35 - 015274968 _____ (ESET) C:\Users\Utilisateur\Downloads\esetonlinescanner.exe
2022-07-22 17:35 - 2022-07-22 17:35 - 000001404 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-07-22 17:35 - 2022-07-22 17:35 - 000001298 _____ C:\Users\Utilisateur\Desktop\ESET Online Scanner.lnk
2022-07-22 17:35 - 2022-07-22 17:35 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ESET
2022-07-22 17:34 - 2022-07-22 17:34 - 000000000 ____H C:\Users\Utilisateur\Documents\Default.rdp
2022-07-15 09:08 - 2022-07-15 09:08 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-07-15 09:08 - 2022-07-15 09:08 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-13 08:41 - 2022-07-13 08:41 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-13 08:41 - 2022-07-13 08:41 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-13 08:41 - 2022-07-13 08:41 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-13 08:41 - 2022-07-13 08:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-13 08:41 - 2022-07-13 08:41 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-07-13 08:37 - 2022-07-13 08:37 - 000000000 ___HD C:\$WinREAgent
2022-07-12 15:12 - 2022-07-12 15:12 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\OneDrive
2022-07-07 12:50 - 2022-07-07 12:50 - 000001955 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Compte professionnel ou scolaire.lnk
2022-07-04 14:17 - 2022-07-04 14:17 - 000002398 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-23 11:11 - 2019-03-10 16:05 - 000000000 ____D C:\Users\Utilisateur\AppData\LocalLow\Mozilla
2022-07-23 11:08 - 2020-11-25 11:45 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-23 11:08 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-23 11:08 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-23 11:08 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-23 11:06 - 2019-03-10 16:07 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-23 11:04 - 2020-11-05 19:11 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-23 11:04 - 2020-09-27 09:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-23 11:04 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-23 11:04 - 2019-09-06 10:26 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-07-23 11:04 - 2019-03-10 16:08 - 000000000 __SHD C:\Users\Utilisateur\IntelGraphicsProfiles
2022-07-22 18:08 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-07-22 17:37 - 2019-03-13 17:46 - 000000000 ____D C:\Users\Utilisateur\Documents\Fichiers Outlook
2022-07-22 17:36 - 2019-03-10 15:58 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ConnectedDevicesPlatform
2022-07-22 15:28 - 2022-02-11 10:36 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-22 15:21 - 2019-07-12 11:17 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\TeamViewer
2022-07-22 14:19 - 2020-09-27 07:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-22 08:59 - 2019-03-10 16:06 - 000000000 ____D C:\Program Files\Microsoft Office
2022-07-22 08:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-20 14:47 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-20 13:29 - 2019-03-10 15:58 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2022-07-18 08:58 - 2019-03-10 16:37 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2022-07-18 08:54 - 2020-09-27 09:36 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-18 08:47 - 2022-06-18 14:08 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-07-15 09:08 - 2022-06-16 17:36 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1101296793-3828391728-1518580977-1001
2022-07-15 09:05 - 2020-09-27 07:33 - 000441240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-07-13 15:48 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-07-13 15:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-13 09:25 - 2021-07-16 08:56 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Deployment
2022-07-13 08:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-13 08:41 - 2020-09-27 09:36 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-07-13 08:37 - 2019-03-10 16:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-13 08:35 - 2019-03-10 16:14 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-07-08 09:00 - 2019-03-10 16:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-07-08 09:00 - 2019-03-10 16:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-07 12:42 - 2021-09-08 17:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-07 12:42 - 2019-03-10 16:05 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-30 15:20 - 2022-06-17 13:40 - 000000000 ____D C:\Users\Utilisateur\AppData\LocalLow\webviewdata
2022-06-28 13:59 - 2019-03-10 15:59 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\PlaceholderTileLogoFolder
2022-06-27 10:02 - 2020-09-27 09:38 - 000000000 ____D C:\ProgramData\Packages
2022-06-23 09:02 - 2020-09-27 09:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================