Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-01-2020
Exécuté par HP (administrateur) sur DESKTOP-B5R9JL1 (Hewlett-Packard HP Pavilion 17 Notebook PC) (20-01-2020 11:59:39)
Exécuté depuis C:\Users\HP\Documents\Logiciel
Profils chargés: HP (Profils disponibles: HP)
Platform: Windows 10 Home Single Language Version 1903 18362.592 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Huawei Technologies Co.,Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\HP\AppData\Local\slack\app-4.2.0\slack.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\HP\AppData\Local\slack\app-4.2.0\slack.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\HP\AppData\Local\slack\app-4.2.0\slack.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\HP\AppData\Local\slack\app-4.2.0\slack.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\HP\AppData\Local\slack\app-4.2.0\slack.exe
(Smile, Inc. -> ) C:\Program Files\Smile\TextExpander\crashpad_handler.exe
(Smile, Inc. -> ) C:\Program Files\Smile\TextExpander\crashpad_handler.exe
(Smile, Inc. -> ) C:\Program Files\Smile\TextExpander\crashpad_handler.exe
(Smile, Inc. -> ) C:\Program Files\Smile\TextExpander\crashpad_handler.exe
(Smile, Inc. -> ) C:\Program Files\Smile\TextExpander\crashpad_handler.exe
(Smile, Inc. -> Smile, Inc) C:\Program Files\Smile\TextExpander\inputhelper.exe
(Smile, Inc. -> Smile, Inc) C:\Program Files\Smile\TextExpander\renderer.exe
(Smile, Inc. -> Smile, Inc) C:\Program Files\Smile\TextExpander\renderer.exe
(Smile, Inc. -> Smile, Inc) C:\Program Files\Smile\TextExpander\TextExpander.exe
(Smile, Inc. -> Smile, Inc) C:\Program Files\Smile\TextExpander\watchdog.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(TEFINCOM S.A. -> ) C:\Program Files (x86)\NordVPN\nordvpn-service.exe
(TEFINCOM S.A. -> The OpenVPN Project) C:\Program Files (x86)\NordVPN\Resources\Binaries\64bit\openvpn-nordvpn.exe
(Upwork Global Inc. -> ) C:\Program Files (x86)\Upwork\cmon.exe
(Upwork Global Inc. -> Upwork, Inc.) C:\Program Files (x86)\Upwork\upwork.exe
(Upwork Global Inc. -> Upwork, Inc.) C:\Program Files (x86)\Upwork\upwork.exe
(Upwork Global Inc. -> Upwork, Inc.) C:\Program Files (x86)\Upwork\upwork.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9280848 2018-08-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-168035010-1782108642-3621133196-1001\...\Run: [Upwork] => C:\Program Files (x86)\Upwork\upwork.exe [92104984 2019-11-28] (Upwork Global Inc. -> Upwork, Inc.)
HKU\S-1-5-21-168035010-1782108642-3621133196-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47773264 2019-12-22] (Google LLC -> )
HKU\S-1-5-21-168035010-1782108642-3621133196-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\HP\AppData\Local\slack\slack.exe [298000 2019-12-11] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-168035010-1782108642-3621133196-1001\...\Run: [TextExpander] => C:\Program Files\Smile\TextExpander\TextExpander.exe [18899784 2019-10-14] (Smile, Inc. -> Smile, Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-07] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {14EADCFA-5B25-45BD-8A39-A1C67D69FDBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-30] (Google Inc -> Google Inc.)
Task: {2C846429-9C87-498A-A738-675633A5E9AA} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B2A54E4-006C-4D7C-BF55-F4661899BDDD} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [647720 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4FA18614-F627-4AC3-BE1E-3FC124C1B407} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {58B18F4E-248B-4139-B97B-C1D91C24D383} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {A3D9417E-C601-4ED1-B975-259774F270D6} - System32\Tasks\update-S-1-5-21-168035010-1782108642-3621133196-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {AB95CF14-9668-425F-A427-3F49F0C03D58} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3B64164-E0DA-4F24-AC5F-FCAE97A2FC4A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {B6730D25-BCEC-4C6A-B3DA-D1E1F9787F86} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {B914A61F-BDA3-455A-8622-A6FBA1C2CF52} - System32\Tasks\PowerDirectorStyleAgent => C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe [100536 2019-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {B922917C-6688-4149-B5C3-899A9E3F594F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BD2ACF68-49EB-4411-9252-75278ED1B9A8} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F79C6687-9B9A-4F14-B08C-14A362E5821E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7DCC9CE-E453-4198-B02C-67C2EB679BBE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-30] (Google Inc -> Google Inc.)
Task: {FABEEDB4-3EE9-4123-913D-F743F632C025} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\update-S-1-5-21-168035010-1782108642-3621133196-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 103.86.96.100 103.86.99.100
Tcpip\..\Interfaces\{0b37e64b-526c-4c15-b3a3-9503a0d98e41}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{14cf0137-bc20-45e5-923a-36d5fac8d000}: [DhcpNameServer] 103.86.96.100 103.86.99.100
Tcpip\..\Interfaces\{3a5d5e7f-29c8-41e1-a3be-d7aee8a517a1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4f714d84-1ba8-44a1-8674-f0924e67d827}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{7d7c65f1-468a-4db9-b393-e7dbcab31875}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{f3c0cd1b-ef04-4578-bf37-c3d3c46026bb}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-168035010-1782108642-3621133196-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190103
SearchScopes: HKU\S-1-5-21-168035010-1782108642-3621133196-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__190103&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2019-01-01] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2019-01-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 6kuto7pt.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\6kuto7pt.default [2019-12-31]
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\6kjjff2t.default-release [2020-01-18]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\6kjjff2t.default-release\Extensions\sp@avast.com.xpi [2019-02-11]
FF Extension: (Avast Online Security) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\6kjjff2t.default-release\Extensions\wrc@avast.com.xpi [2019-01-01]
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2019-01-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2019-01-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2012-04-17] (Foxit Corporation -> Foxit Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-168035010-1782108642-3621133196-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\HP\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-07-29] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.key-find.com/?type=hp&ts=1424294987&from=cor&uid=WDCXWD3200BEKT-60V5T1_WD-WX80AA9N0174N0174
CHR StartupUrls: Default -> "hxxp://www.key-find.com/?type=hp&ts=1424294987&from=cor&uid=WDCXWD3200BEKT-60V5T1_WD-WX80AA9N0174N0174","hxxp://www.key-find.com/?type=hppp&ts=1424295044&from=cor&uid=WDCXWD3200BEKT-60V5T1_WD-WX80AA9N0174N0174","hxxp://www.omniboxes.com/?type=hp&ts=1424420899&from=obw&uid=WDCXWD3200BEKT-60V5T1_WD-WX80AA9N0174N0174"
CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> lp
CHR Session Restore: Default -> est activé.
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://chat.orange-business.com; hxxps://meet.google.com
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2020-01-20]
CHR Extension: (Slides) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-30]
CHR Extension: (Docs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-30]
CHR Extension: (Google Drive) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-30]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-30]
CHR Extension: (Stylus) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\clngdbkpkpeebahjckkjfobafhncgmne [2019-11-21]
CHR Extension: (Sheets) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-01-16]
CHR Extension: (Web Scraper) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnhgnonknehpejjnehehllkliplmbmhn [2019-08-24]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-08-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Droplr - Captures d'écran, annotations et captures vidéo d'écran) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\oncaapliomaamlbopdmhmdompfemljhm [2019-12-25]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-14]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-168035010-1782108642-3621133196-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81392 2019-08-01] (INTERNET PROJECT LLC -> Freemake)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-05-03] (Intel Corporation -> Intel Corporation)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2015-09-23] (Huawei Technologies Co.,Ltd. -> )
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [222240 2020-01-02] (TEFINCOM S.A. -> )
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [628920 2019-09-20] (CyberLink Corp. -> CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [269648 2018-08-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\WINDOWS\System32\SynTPEnhService.exe [351784 2018-03-07] (Synaptics Incorporated -> Synaptics Incorporated)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11795800 2019-04-15] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-04] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)
R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_6a5f4f01d0a07157\nvlddmkm.sys [17213200 2018-08-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-01-10] (TunnelBear, Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-10-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-20 10:59 - 2020-01-20 12:00 - 000000000 ____D C:\FRST
2020-01-17 11:05 - 2020-01-17 11:05 - 000002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TextExpander.lnk
2020-01-17 11:05 - 2020-01-17 11:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TextExpander
2020-01-17 11:05 - 2020-01-17 11:05 - 000000000 ____D C:\Program Files\Smile
2020-01-17 11:00 - 2020-01-17 11:00 - 000000000 ____D C:\Users\HP\AppData\Local\Smile
2020-01-16 09:53 - 2020-01-16 09:53 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-16 09:53 - 2020-01-16 09:53 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-16 09:53 - 2020-01-16 09:53 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-16 09:53 - 2020-01-16 09:53 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-16 09:52 - 2020-01-16 09:52 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-16 09:52 - 2020-01-16 09:52 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-16 09:41 - 2020-01-16 09:41 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-16 09:41 - 2020-01-16 09:41 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-07 22:07 - 2020-01-07 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN
2020-01-07 17:36 - 2020-01-07 17:36 - 000105324 _____ C:\Users\HP\Documents\paiement facture steg.pdf
2020-01-03 15:14 - 2020-01-03 15:17 - 090853767 _____ C:\Users\HP\Documents\SGM_EM_updated sections.zip
2019-12-31 11:07 - 2020-01-18 13:45 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2019-12-31 11:07 - 2019-12-31 11:07 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-31 11:07 - 2019-12-31 11:07 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-12-31 11:07 - 2019-12-31 11:07 - 000000000 ____D C:\Users\HP\AppData\Roaming\Mozilla
2019-12-31 11:07 - 2019-12-31 11:07 - 000000000 ____D C:\Users\HP\AppData\Local\Mozilla
2019-12-31 11:06 - 2019-12-31 11:07 - 000000000 ____D C:\ProgramData\Mozilla
2019-12-31 11:06 - 2019-12-31 11:07 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-31 11:06 - 2019-12-31 11:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-27 09:53 - 2019-12-27 09:53 - 000095920 _____ C:\Users\HP\AppData\Local\GDIPFONTCACHEV1.DAT
2019-12-26 12:25 - 2019-12-26 12:25 - 001469871 _____ C:\Users\HP\Documents\CIN feten.pdf
2019-12-26 12:24 - 2019-12-26 12:24 - 000716802 _____ C:\Users\HP\Documents\cin.pdf
2019-12-26 12:06 - 2019-12-26 12:06 - 000238642 _____ C:\Users\HP\Documents\received_574604076715488.jpeg
2019-12-26 12:06 - 2019-12-26 12:06 - 000071474 _____ C:\Users\HP\Documents\received_2662036060552871.jpeg
2019-12-25 11:36 - 2019-12-25 11:36 - 000000000 ____D C:\Users\HP\AppData\Roaming\Apple Computer
2019-12-25 11:36 - 2019-12-25 11:36 - 000000000 ____D C:\Users\HP\AppData\Local\Apple Computer
2019-12-25 11:35 - 2019-12-25 11:35 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2019-12-25 11:35 - 2019-12-25 11:35 - 000000000 ____D C:\ProgramData\Apple Computer
2019-12-25 11:35 - 2019-12-25 11:35 - 000000000 ____D C:\Program Files (x86)\Safari
2019-12-25 11:34 - 2019-12-25 11:34 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-12-25 11:34 - 2019-12-25 11:34 - 000000000 ____D C:\Users\HP\AppData\Local\Apple
2019-12-25 11:34 - 2019-12-25 11:34 - 000000000 ____D C:\ProgramData\Apple
2019-12-25 11:34 - 2019-12-25 11:34 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-12-25 09:50 - 2019-12-25 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2019-12-25 09:49 - 2019-12-25 09:49 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2019-12-25 09:48 - 2019-12-25 09:48 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-12-25 09:48 - 2019-12-25 09:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2019-12-25 09:46 - 2019-12-25 09:48 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-12-25 09:46 - 2019-12-25 09:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-12-25 09:46 - 2019-12-25 09:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2019-12-25 09:45 - 2019-12-25 09:45 - 000000000 __RHD C:\MSOCache

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-20 11:59 - 2019-05-20 17:13 - 000000000 ____D C:\Users\HP\Documents\Logiciel
2020-01-20 11:57 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-20 10:26 - 2019-05-23 11:52 - 000000156 _____ C:\Users\HP\AppData\Roaming\licecap.ini
2020-01-20 09:57 - 2019-01-01 17:21 - 000000000 ____D C:\Users\HP\AppData\Roaming\Slack
2020-01-20 09:39 - 2019-01-01 17:28 - 000000000 ____D C:\Users\HP\AppData\Local\AVAST Software
2020-01-20 09:34 - 2018-12-30 08:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-01-20 09:34 - 2018-12-30 08:30 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2020-01-20 00:53 - 2018-12-30 08:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-20 00:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-20 00:50 - 2019-10-17 21:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-20 00:29 - 2019-11-05 11:24 - 000003046 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-168035010-1782108642-3621133196-1001
2020-01-20 00:29 - 2019-11-05 11:24 - 000002794 _____ C:\WINDOWS\system32\Tasks\update-sys
2020-01-20 00:29 - 2019-11-05 11:24 - 000000414 _____ C:\WINDOWS\Tasks\update-sys.job
2020-01-20 00:29 - 2019-11-05 11:24 - 000000414 _____ C:\WINDOWS\Tasks\update-S-1-5-21-168035010-1782108642-3621133196-1001.job
2020-01-20 00:29 - 2019-10-17 22:13 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-20 00:29 - 2019-10-17 22:13 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-01-20 00:29 - 2019-10-17 22:13 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-20 00:29 - 2019-10-17 22:13 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000002956 _____ C:\WINDOWS\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000002838 _____ C:\WINDOWS\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-20 00:29 - 2019-10-17 22:13 - 000002540 _____ C:\WINDOWS\system32\Tasks\PowerDirectorStyleAgent
2020-01-20 00:23 - 2019-10-17 22:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-01-19 21:52 - 2019-10-17 22:13 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-01-18 11:54 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-18 11:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-17 11:05 - 2019-03-03 20:41 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-16 19:27 - 2019-10-17 22:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-16 19:27 - 2019-10-17 21:42 - 000453192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-16 17:47 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-16 17:44 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-16 17:44 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-16 17:44 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-16 17:44 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-16 17:44 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-16 10:00 - 2018-12-30 09:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-16 09:56 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 09:56 - 2018-12-30 09:35 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-14 21:32 - 2019-01-01 17:20 - 000000000 ____D C:\ProgramData\AVAST Software
2020-01-14 14:55 - 2019-01-01 16:53 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2020-01-14 14:49 - 2019-10-05 14:28 - 000000000 ____D C:\Users\HP\Documents\Majda
2020-01-10 08:16 - 2019-10-17 21:59 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-10 08:16 - 2019-03-19 13:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat
2020-01-10 08:16 - 2019-03-19 13:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat
2020-01-09 18:25 - 2019-08-09 12:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-07 22:07 - 2019-12-11 10:15 - 000002062 _____ C:\Users\Public\Desktop\NordVPN.lnk
2020-01-07 22:07 - 2019-11-04 13:12 - 000000000 ____D C:\Users\HP\AppData\Local\NordVPN
2020-01-07 22:07 - 2019-11-04 13:12 - 000000000 ____D C:\ProgramData\NordVPN
2020-01-07 22:07 - 2019-11-04 13:12 - 000000000 ____D C:\Program Files (x86)\NordVPN
2020-01-07 20:50 - 2018-12-30 08:27 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-31 12:00 - 2019-10-15 18:44 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2019-12-30 08:58 - 2019-02-21 17:22 - 000000000 ____D C:\Users\HP\Documents\virement
2019-12-25 09:50 - 2018-04-12 00:38 - 000000167 _____ C:\WINDOWS\win.ini
2019-12-25 09:49 - 2019-10-23 12:00 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-12-25 09:47 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-12-25 09:46 - 2018-12-30 08:24 - 000000000 ____D C:\Program Files\Microsoft Office
2019-12-25 08:46 - 2018-12-29 19:04 - 000000000 ____D C:\Users\HP\AppData\Local\Packages

==================== Fichiers à la racine de certains dossiers ========

2019-05-23 11:52 - 2020-01-20 10:26 - 000000156 _____ () C:\Users\HP\AppData\Roaming\licecap.ini
2019-11-05 11:24 - 2019-11-05 11:24 - 000000003 _____ () C:\Users\HP\AppData\Local\updater.log
2019-11-05 11:24 - 2019-11-05 11:24 - 000000424 _____ () C:\Users\HP\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================