Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-06-2020
Exécuté par Petit Denis (administrateur) sur PORTABLEASUS (ASUSTeK COMPUTER INC. X550JX) (23-06-2020 16:12:18)
Exécuté depuis C:\Users\Petit Denis\Desktop
Profils chargés: Petit Denis
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(Oblivion Software hxxp://flash.to/oblivion) [Fichier non signé] C:\Program Files (x86)\OE-QuoteFix\OEQuoteFix.exe
(Pierre TORRIS) [Fichier non signé] C:\Program Files (x86)\IcoSauve\IcoSauve.exe
(Qualcomm Atheros -> ) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Qualcomm Atheros -> Qualcomm Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Rizonesoft) [Fichier non signé] C:\Program Files\Rizonesoft\Firemin\Firemin.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322104 2016-02-03] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942232 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7916032 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [3004440 2020-06-18] (Opera Software AS -> Opera Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2015-01-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Petit Denis\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [TaskbarNoNotification] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [HideSCANetwork] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\MountPoints2: {b9a469da-8586-11ea-8742-40e230c8065e} - "G:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\...\MountPoints2: {f45ecd3f-b2be-11e9-86d4-40e230c8065e} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\Canon MG3200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB8.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\RC30S: C:\Windows\System32\spool\prtprocs\x64\RC30S.DLL [381440 2014-04-21] (RISO KAGAKU CORPORATION) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\SST2CPC: C:\Windows\System32\spool\prtprocs\x64\sst2cpc.dll [36864 2011-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3200 series: C:\Windows\system32\CNMLMB8.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2020-05-29] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\RISO IJ Printer RC30 Language monitor: C:\Windows\system32\RC30MON.dll [39936 2014-01-19] (RISO KAGAKU CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\SST2C Langmon: C:\Windows\system32\sst2cl6.dll [34304 2011-06-22] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\chrmstp.exe [2020-06-17] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.92\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2015-01-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2015-01-04] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
Startup: C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Firemin.lnk [2017-09-18]
ShortcutTarget: Firemin.lnk -> C:\Program Files\Rizonesoft\Firemin\Firemin.exe (Rizonesoft) [Fichier non signé]
Startup: C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IcoSauve.lnk [2015-10-03]
ShortcutTarget: IcoSauve.lnk -> C:\Program Files (x86)\IcoSauve\IcoSauve.exe (Pierre TORRIS) [Fichier non signé]
Startup: C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OE-QuoteFix - stand-alone.lnk [2018-04-08]
ShortcutTarget: OE-QuoteFix - stand-alone.lnk -> C:\Program Files (x86)\OE-QuoteFix\OEQuoteFix.exe (Oblivion Software hxxp://flash.to/oblivion) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0FB35958-4933-47E6-B325-15904BB4D960} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {185652EA-FFED-446E-B77B-A9767209FE46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-16] (Google Inc -> Google Inc.)
Task: {1ACDF22C-C36A-4FF6-9D23-B39DBB295216} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [120632 2014-06-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424 2014-09-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
Task: {374E3451-1436-4432-96CF-0BAEA566E707} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {3B416103-270F-4107-ABD6-D28EB0892687} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3BBB62FD-0F59-4BF2-9591-EEE0C54BBFD4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {439B4D70-92C4-4050-8501-3CB6001279CC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4EB4BE99-D547-4C9E-BFC0-6C688C8FBEA2} - System32\Tasks\Opera scheduled assistant Autoupdate 1582797478 => C:\Program Files (x86)\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {743FC9E0-C6E5-4025-B2B9-A2885E63B8FE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_pepper.exe [1454648 2020-06-10] (Adobe Inc. -> Adobe)
Task: {76DF30BD-9DFA-43E8-819E-D0A678669882} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. -> Adobe)
Task: {79C97678-85FD-420C-9E97-C571BC1051C1} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [62536 2014-09-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {7BB6BC59-4C50-4158-B5AA-2CCBA97B9AE2} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {8637D337-DBB5-4A55-A710-8F4D4B1DF870} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9B0661BB-9333-4857-BBB3-C905E0925A21} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232 2014-12-31] (ASUSTeK Computer Inc. -> AsusTek)
Task: {A3119703-9BC5-4780-A80E-10BE83EBB5D6} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {AF4FC9B3-98EA-480E-B776-DA9EFA33909B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
Task: {AF7798C9-1829-437A-8D68-E3CC5A5BABFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {BC78BD63-0EDC-406C-991D-13A415BE07C3} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1692296 2020-02-27] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {BF908798-A5C8-4C93-8A4E-F50FABCCA546} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7422F27-08B6-4FB5-85EC-8122A4121417} - System32\Tasks\Opera scheduled Autoupdate 1524125706 => C:\Program Files (x86)\Opera\launcher.exe [1517592 2020-06-18] (Opera Software AS -> Opera Software)
Task: {DB0A07C2-08CC-4A44-9FDC-333773C0748C} - \Opera scheduled Autoupdate 1524124306 -> Pas de fichier <==== ATTENTION
Task: {E778B158-255A-49F2-874F-4656B13A5FB4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\mrt.exe [121542864 2020-03-15] (Microsoft Windows -> Microsoft Corporation)
Task: {F0FF5A31-5320-4D25-8AB7-A8FD645B2688} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-16] (Google Inc -> Google Inc.)
Task: {F9CCFDAD-865E-4C69-B2FE-CA6851580783} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392 2014-09-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FAAE644F-B2BE-421D-9AC9-7D8184511D1A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2038320 2018-10-28] (AVAST Software s.r.o. -> AVAST Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

AutoConfigURL: [{87E06CC3-57C9-4B21-A754-45F041485AF7}] => file://C:/Program Files (x86)/ChrisPC Free Anonymous Proxy/chrispc_proxy.pac
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{4BD95FA7-F575-4089-91B3-773D01CFAE0E}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{7751D696-2C46-48AF-9F7E-9E4FD1CE8E3F}: [DhcpNameServer] 212.27.40.240 212.27.40.241
HKLM\System\...\Parameters\PersistentRoutes: [104.96.147.3,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [111.221.29.177,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [111.221.29.253,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [131.253.40.37,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [134.170.115.60,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [134.170.165.248,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [134.170.165.253,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [134.170.185.70,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [134.170.30.202,255.255.255.255,0.0.0.0,1]
HKLM\System\...\Parameters\PersistentRoutes: [137.116.81.24,255.255.255.255,0.0.0.0,1]
PersistentRoutes: Il y a 65 PersistentRoutes.


Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1908349687-429066972-2399559438-1001\Software\Microsoft\Internet Explorer\Main,Start Page = file:///D:/HTML/Documents%20HTML%20divers/votes.html
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-2d3a8958&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-2d3a8958&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1908349687-429066972-2399559438-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-2d3a8958&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1908349687-429066972-2399559438-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-2d3a8958&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1908349687-429066972-2399559438-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll => Pas de fichier
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll => Pas de fichier
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1463571407601
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: kk5tndwd.default-1489163252237-1537977645473
FF ProfilePath: C:\Users\Petit Denis\AppData\Roaming\Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473 [2020-06-23]
FF Homepage: Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473 -> file:///D:/HTML/Documents%20HTML%20divers/votes.html
FF NetworkProxy: Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473 -> type", 0
FF Extension: (uBlock Origin) - C:\Users\Petit Denis\AppData\Roaming\Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473\Extensions\uBlock0@raymondhill.net.xpi [2020-05-29]
FF Extension: (Video DownloadHelper) - C:\Users\Petit Denis\AppData\Roaming\Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-30]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Petit Denis\AppData\Roaming\Mozilla\Firefox\Profiles\kk5tndwd.default-1489163252237-1537977645473\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-01]
FF ProfilePath: C:\Users\Petit Denis\AppData\Roaming\KompoZer\Profiles\i0nvpllb.default [2016-09-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-09-13] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-09-13] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-09-24] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [Pas de fichier]
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1908349687-429066972-2399559438-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-09-13] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR Profile: C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default [2020-04-30]
CHR Notifications: Default -> hxxps://ww7.voirfilms.ws; hxxps://www4.voirfilms.ws
CHR StartupUrls: Default -> "file:///D:/HTML/Documents%20HTML%20divers/votes.html"
CHR Extension: (Google Drive) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-18]
CHR Extension: (YouTube) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-18]
CHR Extension: (uBlock Origin) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-04-23]
CHR Extension: (Recherche Google) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-18]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Gmail) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\Petit Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-27]

Opera:
=======
OPR StartupUrls: "hxxps://www.google.fr/"
OPR Extension: (uBlock Origin) - C:\Users\Petit Denis\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2020-06-10]
OPR Extension: (Chrome Media Router) - C:\Users\Petit Denis\AppData\Roaming\Opera Software\Opera Stable\Extensions\pphjpkjjljnllpnebififokmoejkeahp [2020-06-10]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323200 2015-01-04] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44552 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2020-02-21] (Mixbyte Inc -> Freemake)
S3 GoToAssist; C:\Program Files (x86)\LogMeIn\GoToAssist Corporate\1280\G2AC_Service.exe [316872 2018-03-08] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-09] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-06-23] (Malwarebytes Inc -> Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11293936 2018-04-03] (TeamViewer GmbH -> TeamViewer GmbH)
S3 wampapache; C:\wamp\bin\apache\apache2.4.17\bin\httpd.exe [25600 2015-10-11] (Apache Software Foundation) [Fichier non signé]
S3 wampmysqld; C:\wamp\bin\mysql\mysql5.7.9\bin\mysqld.exe [34368000 2015-10-12] () [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AgereSoftModem; C:\Windows\system32\DRIVERS\agrsm64.sys [1146880 2013-06-18] (Microsoft Windows -> LSI Corp)
S3 ampa; C:\Windows\system32\ampa.sys [17008 2013-12-18] (ChengDu AoMei Tech Co., Ltd -> ) [Fichier non signé]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4226560 2014-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-12-31] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [79528 2014-10-16] (Intel(R) Software -> Intel Corporation)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-23] (Malwarebytes Inc -> Malwarebytes)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 PVUSB; C:\Windows\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 SysamSP5; C:\Windows\System32\Drivers\SysamSP5.sys [55432 2010-11-29] (EUROSMART -> Cypress Semiconductor)
S3 U2SP; C:\Windows\system32\DRIVERS\u2s2kxp64.sys [91672 2013-01-25] (Magic Control Technology Corp. -> Magic Control Technology Corp.)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2015-07-09] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation -> Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
U4 dmwappushsvc; pas de ImagePath
U0 msahci; system32\drivers\msahci.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S3 WacHidRouterPro; \SystemRoot\System32\drivers\wachidrouter.sys [X]
S3 wacomrouterfilter; \SystemRoot\System32\drivers\wacomrouterfilter.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-06-23 16:12 - 2020-06-23 16:13 - 000036162 _____ C:\Users\Petit Denis\Desktop\FRST.txt
2020-06-23 16:12 - 2020-06-23 16:13 - 000000000 ____D C:\FRST
2020-06-23 16:10 - 2020-06-23 16:10 - 002290176 _____ (Farbar) C:\Users\Petit Denis\Desktop\FRST64.exe
2020-06-23 07:59 - 2020-06-23 07:59 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-06-23 07:59 - 2020-06-23 07:59 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-06-23 07:59 - 2020-06-23 07:59 - 000001938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-06-23 07:57 - 2020-06-23 07:57 - 000000000 ____D C:\Malwarebytes
2020-06-23 07:08 - 2020-06-23 07:10 - 000000000 ____D C:\Users\Petit Denis\.dia
2020-06-23 07:06 - 2020-06-23 07:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dia
2020-06-23 07:05 - 2020-06-23 07:06 - 000000000 ____D C:\Program Files (x86)\Dia
2020-06-11 14:44 - 2020-06-11 14:44 - 000000000 ____D C:\Users\Petit Denis\AppData\Local\pdfforge
2020-06-11 09:31 - 2020-06-11 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-06-10 17:47 - 2020-06-10 17:47 - 000002331 _____ C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-06-09 20:58 - 2020-06-09 20:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-06-09 20:58 - 2020-06-09 20:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-06-09 20:58 - 2020-06-09 20:58 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-06-09 20:58 - 2020-06-09 20:58 - 000044552 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-06-08 13:54 - 2020-06-08 13:54 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-05-30 07:38 - 2020-05-30 07:38 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\PDF Architect 7
2020-05-29 16:24 - 2020-05-29 16:24 - 000056516 _____ C:\Users\Petit Denis\Desktop\Planning_de_conseils_de_classe_JUIN_2020.pdf
2020-05-29 16:12 - 2020-05-29 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2020-05-29 10:56 - 2020-05-29 10:56 - 000000000 ____D C:\Windows\LastGood.Tmp

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-06-23 16:11 - 2016-11-16 05:47 - 000000000 ____D C:\Users\Petit Denis\AppData\LocalLow\Mozilla
2020-06-23 16:11 - 2015-08-03 13:07 - 000000000 ____D C:\Users\Petit Denis\AppData\Local\ClassicShell
2020-06-23 08:15 - 2015-07-16 20:41 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1908349687-429066972-2399559438-1001
2020-06-23 07:59 - 2015-07-17 00:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-06-23 07:57 - 2017-01-14 21:46 - 000000000 ____D C:\Program Files\Malwarebytes
2020-06-23 07:30 - 2015-08-11 21:13 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\ZHP
2020-06-23 07:27 - 2015-07-17 08:24 - 000001222 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-06-23 07:08 - 2015-07-16 20:35 - 000000000 ____D C:\Users\Petit Denis
2020-06-23 06:33 - 2018-04-19 10:15 - 000003880 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1524125706
2020-06-23 06:33 - 2018-04-19 10:15 - 000000000 ____D C:\Program Files (x86)\Opera
2020-06-23 06:32 - 2019-07-24 09:12 - 000001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2020-06-20 06:24 - 2015-08-12 08:21 - 000000125 _____ C:\Users\Petit Denis\AppData\Roaming\sp_data.sys
2020-06-20 06:23 - 2016-03-08 23:12 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Matériel
2020-06-20 06:21 - 2015-11-08 17:39 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-06-20 06:20 - 2015-07-17 08:24 - 000001218 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-06-20 06:20 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-19 19:00 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2020-06-19 18:53 - 2015-04-24 03:29 - 000000000 ____D C:\ProgramData\McAfee
2020-06-19 18:41 - 2020-02-27 11:58 - 000004058 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582797478
2020-06-19 18:35 - 2015-10-15 08:37 - 000000000 ____D C:\Program Files\PDFCreator
2020-06-17 06:51 - 2018-04-16 23:10 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-17 06:51 - 2018-04-16 23:10 - 000002203 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-11 09:31 - 2015-07-17 08:24 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-06-10 17:53 - 2015-07-16 22:03 - 000000000 ___RD C:\Users\Petit Denis\Desktop\Outils
2020-06-10 17:47 - 2018-04-18 21:13 - 000000000 ____D C:\Users\Petit Denis\AppData\Local\SquirrelTemp
2020-06-10 08:03 - 2018-09-26 13:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-10 08:03 - 2018-03-20 00:20 - 000004666 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-06-10 08:03 - 2018-03-20 00:13 - 000004496 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-10 08:03 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-10 08:03 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-09 20:09 - 2018-03-20 00:13 - 000004654 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-09 08:24 - 2015-07-28 13:00 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\vlc
2020-06-08 13:54 - 2020-04-13 20:41 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\Zoom
2020-06-03 04:47 - 2016-09-06 11:37 - 001820486 _____ C:\Windows\system32\PerfStringBackup.INI
2020-06-03 04:47 - 2014-10-29 14:12 - 000807880 _____ C:\Windows\system32\perfh00C.dat
2020-06-03 04:47 - 2014-10-29 14:12 - 000157198 _____ C:\Windows\system32\perfc00C.dat
2020-06-03 04:47 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2020-05-29 16:12 - 2015-10-15 08:37 - 000116736 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2020-05-29 05:54 - 2018-11-17 16:02 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\MuseScore
2020-05-26 14:01 - 2015-12-07 21:23 - 000000000 ____D C:\Users\Petit Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outils

==================== Fichiers à la racine de certains dossiers ========

2019-05-27 18:37 - 2019-08-01 17:55 - 000026096 _____ () C:\Users\Petit Denis\AppData\Roaming\.ptbt1
2015-11-11 12:00 - 2016-04-10 20:12 - 000000106 _____ () C:\Users\Petit Denis\AppData\Roaming\Camdata.ini
2015-11-11 12:00 - 2016-04-10 20:12 - 000000408 _____ () C:\Users\Petit Denis\AppData\Roaming\CamLayout.ini
2015-11-11 12:00 - 2016-04-10 20:12 - 000000408 _____ () C:\Users\Petit Denis\AppData\Roaming\CamShapes.ini
2015-11-11 12:00 - 2016-04-10 20:12 - 000004544 _____ () C:\Users\Petit Denis\AppData\Roaming\CamStudio.cfg
2015-08-12 08:21 - 2020-06-20 06:24 - 000000125 _____ () C:\Users\Petit Denis\AppData\Roaming\sp_data.sys
2015-11-11 11:57 - 2015-11-11 11:57 - 000000096 _____ () C:\Users\Petit Denis\AppData\Roaming\version2.xml
2016-03-01 00:35 - 2019-01-03 20:40 - 000145111 _____ () C:\Users\Petit Denis\AppData\Local\ars.cache
2016-03-01 00:35 - 2019-01-03 20:40 - 000398388 _____ () C:\Users\Petit Denis\AppData\Local\census.cache
2018-09-30 22:33 - 2019-05-02 22:44 - 000004608 _____ () C:\Users\Petit Denis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-29 23:44 - 2016-02-29 23:44 - 000000036 _____ () C:\Users\Petit Denis\AppData\Local\housecall.guid.cache
2017-12-29 23:47 - 2017-12-29 23:47 - 000000981 _____ () C:\Users\Petit Denis\AppData\Local\recently-used.xbel
2016-01-06 22:25 - 2018-10-31 22:58 - 000007622 _____ () C:\Users\Petit Denis\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2020-06-22 07:40
==================== Fin de FRST.txt ========================