Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Exécuté par jean-michel (administrateur) sur DESKTOP-D51J5AH (LENOVO F0BE009NFR) (14-01-2020 10:02:13)
Exécuté depuis C:\Users\jean-michel\Downloads
Profils chargés: jean-michel (Profils disponibles: jean-michel)
Platform: Windows 10 Home Version 1903 18362.535 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
() [Fichier non signé] C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
() [Fichier non signé] C:\Windows\jmesoft\Service.exe
(Audible Inc) C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.54.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(Dolphin Computer Access -> Dolphin Computer Access Ltd.) C:\Windows\System32\dol_start.exe
(Dolphin Computer Access Ltd.) [Fichier non signé] C:\ProgramData\dolphin\Dolphin Autostart.exe
(Dolphin Computer Access Ltd.) [Fichier non signé] C:\Windows\System32\dolsrvcbar2.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\IntelCpHDCPSvc.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo) [Fichier non signé] C:\Windows\jmesoft\hotkey.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\jean-michel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20410.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20410.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11912.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Tim Grabinat) C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.9.0_x64__rcb0qdgx4z9ca\EasyMailReLaunch.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-10-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795704 2015-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [628736 2015-06-16] () [Fichier non signé]
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-04] (CyberLink -> CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [jmekey] => C:\Windows\jmesoft\hotkey.exe [118784 2013-07-24] (Lenovo) [Fichier non signé]
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-08-16] () [Fichier non signé]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Run: [Dolphin USB Autostart] => C:\ProgramData\Dolphin\Dolphin Autostart.exe [199168 2016-09-26] (Dolphin Computer Access Ltd.) [Fichier non signé]
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Run: [Amazon Music Helper] => "C:\Users\jean-michel\AppData\Local\Amazon Music\Amazon Music Helper.exe"
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE [283232 2012-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Run: [EPSON SX100 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE [221696 2008-02-05] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\Policies\Explorer: [NoDrives] 00000007
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\...\MountPoints2: {0f584da7-4925-11e8-afa8-00dbdf3b0e47} - "E:\OnePlus_setup.exe" /s
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2152.121\Installer\chrmstp.exe [2019-11-28] (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2017-10-18]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04AD9750-88EE-4057-B078-A1DB681A1ED4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [54144 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {1886D9AA-3597-4828-B4BC-FA6E61F8F3AB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => %windir%\system32\sc.exe START ImControllerService
Task: {27FDB18B-5ADD-4CB3-AA36-49A8334AA871} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {28178B08-691F-4687-9E77-5605F8234BC1} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {30075CEC-C08A-4668-BA97-1D273A5EBF41} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-09] (Google Inc -> Google Inc.)
Task: {34CB9A38-4A26-4438-80E3-EA849F06C31F} - System32\Tasks\Secured Yahoo Powered folem => C:\Windows\system32\wscript.exe "C:\ProgramData\{00C0C5A3-8A82-4F65-0C44-D12796065AE9}\mono.txt" "68747470733a2f2f6464756b6d716c2e636f6d" "433a5c50726f6772616d446174615c7b30304330433541332d384138322d344636352d304334342d4431323739363036354145397d5c6e6972656461" "433a5c50726f6772616d446174615c7b30304330433541332d384138322d344636352d (l'élément de données a 84 caractères en plus). <==== ATTENTION
Task: {45A3AC46-8936-488A-AD81-14E0C2095969} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {57DFCE14-1174-440C-8654-C8A3A0317202} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {5A768619-D181-4A15-AC92-8F6634070609} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4d9f46e6-143a-4a96-8313-8336fd4557b8 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {626897C1-E318-47ED-A4CB-8D1793B04B8D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1850312 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {643BEEDA-53BC-4DE4-94E7-CC6429D3993C} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {70270216-DA82-486A-B88F-8A907DFB0666} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {7592D694-D2C5-44B3-83C8-EB3A81993D4F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1850312 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {7CFBE438-9CC5-4A8C-927D-A3AD6F89A062} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {7D868FD1-5193-43A3-891C-E3481987915F} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo)
Task: {8C83B932-59BC-40EF-89AB-179C21CF63B8} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> )
Task: {9A343E12-7330-472A-AB54-CE3EA8AB346D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\780514af-0de3-49fb-be0c-8178a11eb544 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {9C25F2B6-D153-4E19-AB3C-B74E0BCB8DD5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-09] (Google Inc -> Google Inc.)
Task: {B296070E-E16B-4F40-ADF0-3DB2423DC9C1} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6aacb81e-1985-4a15-8051-3e9748b10205 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {C32A007A-6F6E-43A7-9DCB-CEC2B41FE01B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {C6D47833-E1AD-4F8D-8A64-DF06CB51D75B} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {D16979BA-A5D5-42E4-8FA4-1583660E0761} - System32\Tasks\{3783A945-DE0B-B17B-B32F-282C66FB83A6} => C:\Users\JEAN-M~1\AppData\Roaming\Hodohod\SyncTask.exe <==== ATTENTION
Task: {EA429C37-D1A5-4391-9B50-D3E500D31977} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {F068CC37-1EC3-4CD4-8F68-C489705B9378} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\jean-michel\Downloads\esetonlinescanner_fra.exe [8173880 2020-01-13] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F11D7235-A4D7-4BD8-98DD-1192188949F0} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\jean-michel\Downloads\esetonlinescanner_fra.exe [8173880 2020-01-13] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F57C25D8-1723-4739-AD61-013073B5DB28} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd -> Piriform Ltd)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Secured Yahoo Powered folem.job => Wscript.exe C:\ProgramData\{00C0C5A3-8A82-4F65-0C44-D12796065AE9}\mono.txt <==== ATTENTION
Task: C:\WINDOWS\Tasks\{3783A945-DE0B-B17B-B32F-282C66FB83A6}.job => C:\Users\JEAN-M~1\AppData\Roaming\Hodohod\SyncTask.exe <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5638be26-585e-4641-8f7d-8cf680f2172e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9155225c-8acf-4879-864b-d42624a0eb90}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-672838544-1472897398-3264222040-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKLM -> DefaultScope {9F5670C0-C6F2-4316-B7BB-DB06F513D5A6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_17_10¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0AyC0A0CtA0DyC0ByC0CtAyE0CyBtN0D0Tzu0StCzzzyyDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyBzy0B0CtC0CzytBtGyEzz0DtAtGtAyB0DzztGtCzy0FyDtG0EyDtByCtB0DtB0DzyyD0CtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyE%26cr%3D1835882507%26a%3Dwbf_chtengin_17_10%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_adsrch_16_40¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyByCyCtB0Dzz0DyDtC0CyDtDtAyE0CyBtN0D0Tzu0StCyByEtBtN1L2XzutAtFtByEtFtByDtFyDyEtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyBtD0CyBtDyE0DzztGyDyDzy0CtG0FtBtD0AtGyEtBtDtBtGyB0CyEtDyB0CtByD0FtCyEyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDyEyDtA%26cr%3D1061530492%26a%3Dwncy_adsrch_16_40%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {9F5670C0-C6F2-4316-B7BB-DB06F513D5A6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_17_10¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0AyC0A0CtA0DyC0ByC0CtAyE0CyBtN0D0Tzu0StCzzzyyDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyBzy0B0CtC0CzytBtGyEzz0DtAtGtAyB0DzztGtCzy0FyDtG0EyDtByCtB0DtB0DzyyD0CtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyE%26cr%3D1835882507%26a%3Dwbf_chtengin_17_10%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {9F5670C0-C6F2-4316-B7BB-DB06F513D5A6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_17_10¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0AyC0A0CtA0DyC0ByC0CtAyE0CyBtN0D0Tzu0StCzzzyyDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyBzy0B0CtC0CzytBtGyEzz0DtAtGtAyB0DzztGtCzy0FyDtG0EyDtByCtB0DtB0DzyyD0CtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyE%26cr%3D1835882507%26a%3Dwbf_chtengin_17_10%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_adsrch_16_40¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyByCyCtB0Dzz0DyDtC0CyDtDtAyE0CyBtN0D0Tzu0StCyByEtBtN1L2XzutAtFtByEtFtByDtFyDyEtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyBtD0CyBtDyE0DzztGyDyDzy0CtG0FtBtD0AtGyEtBtDtBtGyB0CyEtDyB0CtByD0FtCyEyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtDyEyDtA%26cr%3D1061530492%26a%3Dwncy_adsrch_16_40%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {9F5670C0-C6F2-4316-B7BB-DB06F513D5A6} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_17_10¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzutByC0AyC0A0CtA0DyC0ByC0CtAyE0CyBtN0D0Tzu0StCzzzyyDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyBzy0B0CtC0CzytBtGyEzz0DtAtGtAyB0DzztGtCzy0FyDtG0EyDtByCtB0DtB0DzyyD0CtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StB0FzzyBzz0E0A0CtGtAzztD0DtGyEzyzz0AtGzztByByEtG0F0F0EtCyD0E0AyByDtC0F0A2QtN0A0LzuyE%26cr%3D1835882507%26a%3Dwbf_chtengin_17_10%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-672838544-1472897398-3264222040-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-672838544-1472897398-3264222040-1001 -> {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL =
SearchScopes: HKU\S-1-5-21-672838544-1472897398-3264222040-1001 -> {12132D03-3466-47F9-92AE-89F61C89E017} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-672838544-1472897398-3264222040-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-10-18] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-10-18] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-10-18] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-10-18] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-672838544-1472897398-3264222040-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-10-18] (Google Inc -> Google Inc.)

Edge:
======
DownloadDir: C:\Users\jean-michel\Downloads

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/","hxxps://www.google.fr/"
CHR Notifications: Default -> hxxps://espace-client.sfr.fr
CHR Profile: C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default [2020-01-14]
CHR Extension: (Slides) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-06]
CHR Extension: (Docs) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-06]
CHR Extension: (Google Drive) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-09]
CHR Extension: (YouTube) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-09]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-16]
CHR Extension: (Avast Online Security) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\jean-michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AESMService; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3715208 2015-12-14] (Intel(R) Corporation -> Intel Corporation)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-20] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-31] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-31] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2152.121\elevation_service.exe [970088 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 connect2hotspot; C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680 2017-02-08] (Lenovo -> Lenovo)
R3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [604280 2016-01-13] (Intel Corporation - pGFX -> Intel Corporation)
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [176640 2015-09-15] () [Fichier non signé]
R2 DolphinCBarSrv2; C:\WINDOWS\system32\dolsrvcbar2.exe [489984 2017-10-18] (Dolphin Computer Access Ltd.) [Fichier non signé]
R2 DolStart; C:\WINDOWS\system32\dol_start.exe [123960 2017-10-18] (Dolphin Computer Access -> Dolphin Computer Access Ltd.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [529696 2019-04-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [354936 2016-01-13] (Intel Corporation - pGFX -> Intel Corporation)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [77208 2019-09-23] (Lenovo -> Lenovo Group Ltd.)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-08-16] () [Fichier non signé]
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-10-28] (Intel Corporation-Wireless Connectivity Solutions -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-10-28] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [262432 2019-04-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7708160 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek Semiconductor Corp -> Realtek )
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-01-13] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S3 TTDrv; C:\KOPLAYER\vbox\TTDrv.sys [261104 2015-12-22] (Fuzhou kaopu Network Co.,Ltd -> Oracle Corporation) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-14 10:02 - 2020-01-14 10:03 - 000032402 _____ C:\Users\jean-michel\Downloads\FRST.txt
2020-01-14 10:01 - 2020-01-14 10:02 - 000000000 ____D C:\FRST
2020-01-14 10:00 - 2020-01-14 10:00 - 002573312 _____ (Farbar) C:\Users\jean-michel\Downloads\FRST64.exe
2020-01-14 09:19 - 2020-01-14 09:19 - 000000000 ___HD C:\OneDriveTemp
2020-01-13 18:17 - 2020-01-13 18:17 - 002573312 _____ (Farbar) C:\Users\jean-michel\Downloads\Non confirmé 585453.crdownload
2020-01-13 16:58 - 2020-01-13 16:58 - 000003836 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-01-13 16:58 - 2020-01-13 16:58 - 000003394 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-01-13 16:41 - 2020-01-13 16:41 - 000000782 _____ C:\Users\jean-michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-01-13 16:41 - 2020-01-13 16:41 - 000000683 _____ C:\Users\jean-michel\Desktop\ESET Online Scanner.lnk
2020-01-13 16:41 - 2020-01-13 16:41 - 000000000 ____D C:\Users\jean-michel\AppData\Local\ESET
2020-01-13 16:40 - 2020-01-13 16:40 - 008173880 _____ (ESET spol. s r.o.) C:\Users\jean-michel\Downloads\esetonlinescanner_fra.exe
2020-01-13 16:17 - 2020-01-13 16:17 - 000456128 _____ C:\Users\jean-michel\AppData\Local\census.cache
2020-01-13 16:17 - 2020-01-13 16:17 - 000122698 _____ C:\Users\jean-michel\AppData\Local\ars.cache
2020-01-13 12:01 - 2020-01-13 12:01 - 002405672 _____ (Trend Micro Inc.) C:\Users\jean-michel\Downloads\HousecallLauncher64.exe
2020-01-13 12:01 - 2020-01-13 12:01 - 000000036 _____ C:\Users\jean-michel\AppData\Local\housecall.guid.cache
2020-01-11 11:55 - 2020-01-11 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2020-01-11 11:55 - 2020-01-11 11:55 - 000000000 ____D C:\Program Files\Dolby
2020-01-11 11:51 - 2015-11-29 16:15 - 006358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 002983216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 002554488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 000938800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2020-01-11 11:51 - 2015-11-29 16:15 - 000523568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 000385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 000074872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-11 11:51 - 2015-11-29 16:15 - 000062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-11 11:51 - 2015-11-26 05:17 - 006057004 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-11 11:50 - 2020-01-11 11:54 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-01-11 11:49 - 2015-12-01 23:44 - 011228816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2020-01-11 11:49 - 2015-11-29 18:14 - 042914096 _____ C:\WINDOWS\system32\nvcompiler.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 037881976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 022346360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 018487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 018391160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 016561128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 015933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 015839200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 014844112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 013533416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 012870192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 012040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 003540544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 002876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 002496816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 001016360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000877872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000689968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000500872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000422568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-01-11 11:49 - 2015-11-29 18:14 - 000369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-12-27 13:25 - 2019-12-27 13:25 - 000076973 _____ C:\Users\jean-michel\Downloads\facture_9003603958_2019-12-10.pdf
2019-12-24 17:22 - 2019-12-24 19:59 - 000000000 ____D C:\ProgramData\ZohoMeeting
2019-12-24 17:21 - 2019-12-24 19:59 - 000000000 ____D C:\Program Files (x86)\ZohoMeeting
2019-12-24 17:21 - 2019-12-24 17:22 - 000000000 ____D C:\Users\jean-michel\AppData\Local\ZohoMeeting
2019-12-24 17:21 - 2019-12-24 17:21 - 000855056 _____ (ZOHO Corporation) C:\Users\jean-michel\Downloads\ZA_Connect.exe
2019-12-24 13:18 - 2019-12-24 13:18 - 000000000 ____D C:\Users\jean-michel\AppData\Local\Splashtop
2019-12-24 13:14 - 2020-01-13 18:04 - 000000000 ____D C:\ProgramData\Splashtop
2019-12-24 13:13 - 2019-12-09 16:09 - 000311216 _____ (Splashtop Inc.) C:\WINDOWS\system32\SRCredentialProvider.dll
2019-12-24 13:12 - 2019-12-24 13:12 - 031907808 _____ (Splashtop Inc.) C:\Users\jean-michel\Downloads\Splashtop_Streamer_Win_INSTALLER_v3.3.6.0.exe
2019-12-24 12:12 - 2019-12-24 12:16 - 000000000 ____D C:\Users\jean-michel\AppData\Local\TeamViewer
2019-12-24 12:08 - 2019-12-24 12:08 - 026367048 _____ (TeamViewer Germany GmbH) C:\Users\jean-michel\Downloads\TeamViewer_Setup.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-01-14 09:57 - 2019-09-23 19:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-14 09:56 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-14 09:20 - 2018-04-24 09:03 - 000000000 ____D C:\Users\jean-michel\AppData\Local\AVAST Software
2020-01-14 09:19 - 2017-12-10 01:50 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-01-14 09:19 - 2016-10-08 15:06 - 000000000 ___RD C:\Users\jean-michel\OneDrive
2020-01-14 09:19 - 2016-10-08 15:04 - 000000000 __SHD C:\Users\jean-michel\IntelGraphicsProfiles
2020-01-13 16:50 - 2018-04-24 09:00 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2020-01-13 12:09 - 2017-02-11 13:17 - 000000000 ____D C:\Users\jean-michel\AppData\Local\CrashDumps
2020-01-13 11:43 - 2018-04-24 09:03 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2020-01-12 17:07 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-12 17:07 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-12 15:31 - 2016-11-20 18:06 - 000000000 ____D C:\Users\jean-michel\Documents\compte etc
2020-01-11 12:26 - 2016-10-11 21:27 - 000000000 ____D C:\Users\jean-michel\Desktop\raccourcis inutilisés
2020-01-11 12:24 - 2016-10-08 15:04 - 000018018 _____ C:\WINDOWS\system32\results.xml
2020-01-11 12:12 - 2019-09-23 19:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-11 12:12 - 2017-08-20 17:32 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-11 12:11 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-11 11:56 - 2019-09-23 19:21 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-11 11:56 - 2019-03-19 13:00 - 000791936 _____ C:\WINDOWS\system32\perfh00C.dat
2020-01-11 11:56 - 2019-03-19 13:00 - 000150004 _____ C:\WINDOWS\system32\perfc00C.dat
2020-01-11 11:56 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-11 11:55 - 2017-08-11 23:10 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-01-11 11:55 - 2017-08-11 23:10 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-01-11 11:55 - 2016-03-18 15:24 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-01-11 11:54 - 2017-08-11 23:10 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-01-11 11:53 - 2017-12-10 01:50 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2020-01-11 11:53 - 2017-08-11 23:11 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2020-01-11 11:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Help
2020-01-11 11:51 - 2017-08-11 23:11 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-01-11 11:50 - 2017-08-11 23:11 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-01-11 11:50 - 2016-03-18 15:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-01-11 11:46 - 2016-03-18 14:59 - 000000000 ____D C:\Users\Public\Documents\Lenovo
2020-01-11 11:46 - 2016-03-18 14:59 - 000000000 ____D C:\ProgramData\Documents\Lenovo
2020-01-10 13:58 - 2017-10-18 10:58 - 000000000 ____D C:\ProgramData\AVAST Software
2020-01-10 12:51 - 2017-08-09 16:49 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-10 12:49 - 2019-09-23 19:28 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-01-09 17:47 - 2019-09-23 19:28 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-09 17:47 - 2019-09-23 19:28 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-09 17:47 - 2019-09-23 19:28 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-672838544-1472897398-3264222040-1001
2020-01-09 17:47 - 2019-09-23 19:28 - 000002222 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-01-09 17:47 - 2019-09-23 19:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-01-08 17:05 - 2017-12-10 01:51 - 000000000 ____D C:\Users\jean-michel\AppData\Local\Packages
2019-12-24 21:20 - 2019-09-23 19:02 - 000294720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-12-24 19:48 - 2017-08-09 17:24 - 000007636 _____ C:\Users\jean-michel\AppData\Local\Resmon.ResmonCfg
2019-12-24 12:12 - 2017-10-17 17:43 - 000000000 ____D C:\Users\jean-michel\AppData\Roaming\TeamViewer
2019-12-15 11:43 - 2019-11-17 14:52 - 000000000 ____D C:\Users\jean-michel\AppData\Local\D3DSCache

==================== Fichiers à la racine de certains dossiers ========

2017-04-03 16:00 - 2017-04-03 16:00 - 000000034 _____ () C:\ProgramData\PWg8uYut.dat
2016-10-08 23:03 - 2016-10-08 23:03 - 000000042 _____ () C:\Users\jean-michel\AppData\Roaming\WB.CFG
2020-01-13 16:17 - 2020-01-13 16:17 - 000122698 _____ () C:\Users\jean-michel\AppData\Local\ars.cache
2020-01-13 16:17 - 2020-01-13 16:17 - 000456128 _____ () C:\Users\jean-michel\AppData\Local\census.cache
2020-01-13 12:01 - 2020-01-13 12:01 - 000000036 _____ () C:\Users\jean-michel\AppData\Local\housecall.guid.cache
2017-08-09 17:24 - 2019-12-24 19:48 - 000007636 _____ () C:\Users\jean-michel\AppData\Local\Resmon.ResmonCfg
2017-05-11 19:51 - 2018-07-22 09:58 - 000000034 _____ () C:\Users\jean-michel\AppData\Local\SuperNova_exit_error.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================