Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-02-2021
Exécuté par utilisateur (administrateur) sur UTILISATEUR-PC (Gigabyte Tecohnology Co., Ltd. H61M-DS2V) (22-02-2021 20:00:47)
Exécuté depuis C:\Users\utilisateur\Downloads
Profils chargés: utilisateur
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\116.4.368\QtWebEngineProcess.exe <2>
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fsav32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fssm32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\common\FIH32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\common\FNRB32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\common\FSHDLL32.EXE
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\common\FSMA32.EXE
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [fst_fr_27] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [I17A] => C:\Windows\twain_32\Brimi17a\Common\TwDsUiLaunch.exe [86080 2018-09-13] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\S-1-5-21-4184500421-594040574-1101420209-1000\...\Run: [] => [X]
HKU\S-1-5-21-4184500421-594040574-1101420209-1000\...\MountPoints2: {139f9292-7ac5-11e4-9ab1-902b34166125} - E:\LaunchU3.exe -a
HKU\S-1-5-21-4184500421-594040574-1101420209-1000\...\MountPoints2: {35c136a1-271f-11e2-b288-902b34166125} - "F:\WD SmartWare.exe" autoplay=true
HKLM\...\Windows x64\Print Processors\hpfpp02t: C:\Windows\System32\spool\prtprocs\x64\hpfpp02t.dll [253440 2010-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON Stylus DX7400 Series 64MonitorBE: C:\Windows\system32\E_ILMCDE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\HP BC11 Status Monitor: C:\Windows\system32\hpinkstsBC11LM.dll [329576 2012-05-09] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 7520 series): C:\Windows\system32\HPDiscoPMBC11.dll [717672 2012-05-08] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\hpf3l70w.dll: C:\Windows\system32\hpf3l70w.dll [136704 2009-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpf3l02t: C:\Windows\system32\hpf3l02t.dll [138752 2010-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-19] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {09D42B16-7603-4002-9DB0-442F12C79C5A} - \BoxSoftwareUpdate -> Pas de fichier <==== ATTENTION
Task: {0E71532B-A87E-4868-A56D-50C523A6ACED} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [1923584 2012-10-20] () [Fichier non signé]
Task: {0E8EF5CD-A52C-4F6C-963C-6773CDB937AB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {1C423C1C-2092-42C9-B694-719CD8170EAB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000Core => C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-01-04] (Facebook, Inc. -> Facebook Inc.)
Task: {1FE6772F-3F53-416B-99D6-60C6E45A0EBA} - System32\Tasks\AdobeAAMUpdater-1.0-utilisateur-PC-utilisateur => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {27F89793-DAFA-4E04-B833-A6F2BD7A36C0} - \Desk 365 RunAsStdUser -> Pas de fichier <==== ATTENTION
Task: {39B7482F-9C43-48C8-AD5E-E1166853A47E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-04] (Google Inc -> Google Inc.)
Task: {418D0DD5-37D3-47A3-911B-741FA2B7C25F} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [4078440 2012-05-08] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {50E0AB19-55AD-4A87-B1BC-4B272F02ED5E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [563000 2015-08-26] (Apple Inc. -> Apple Inc.)
Task: {547ACBE3-2218-4476-8B9E-9B125F0A6A7E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-20] (Dropbox, Inc -> Dropbox, Inc.)
Task: {6C26D592-D883-49A8-9486-265FB943810F} - \SoftwareUpdateTaskMachineUA -> Pas de fichier <==== ATTENTION
Task: {894B632E-137C-47CE-9369-83D828C1D866} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000UA => C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-01-04] (Facebook, Inc. -> Facebook Inc.)
Task: {93B4DE5E-B228-4D40-A37C-BB927B9AB507} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {971C9C44-22ED-46C4-AF52-C9EBF73F72B4} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4184500421-594040574-1101420209-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746880 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Task: {979C0511-5F1B-4C5C-B63F-E010809A5660} - \SoftwareUpdateTaskMachineCore -> Pas de fichier <==== ATTENTION
Task: {9C4772BE-4E25-47CE-9C46-A7F1F3AEF8A4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {B1E0F9E9-FDF3-4F58-A361-C8A880947463} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-04] (Google Inc -> Google Inc.)
Task: {B8D958AE-A0C3-4BA6-8C39-BC0D12F26F62} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {BD0B1994-0731-4AB6-A104-46229DB9BB8E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {D380B51E-71D1-4577-B5C4-4E3E985BB50F} - System32\Tasks\{8D68F378-9BF3-467C-BBEC-929363F6BC1E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\F-Secure\Uninstall\fsuninst.exe" -c /UninstRegKey:"F-Secure Anti-Virus"
Task: {D52D432E-FD1B-4474-AE53-A1704E558645} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-20] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D8F1C279-93BB-48FB-A942-7AF70FB66C2B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {F95A7594-B710-466A-A078-9B3BA779B675} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd -> Piriform Ltd)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000Core.job => C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000UA.job => C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5DCF73CD-6939-4C34-AC9F-E587EB6D7A4C}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{9F6047D0-8BCC-4132-9814-1107E43E1F63}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-11-04] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (HP Smart Print) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2012-12-15] [] [non signé]
FF HKU\S-1-5-21-4184500421-594040574-1101420209-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] (Apple Inc. -> )
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-18] (Visan Industries -> RocketLife, LLP)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-11-11] (VideoLAN) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4184500421-594040574-1101420209-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\utilisateur\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF Plugin HKU\S-1-5-21-4184500421-594040574-1101420209-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\utilisateur\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)

Chrome:
=======
CHR Profile: C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default [2021-02-22]
CHR Notifications: Default -> hxxps://2.nextyourcontent.com; hxxps://forums.commentcamarche.net; hxxps://www.maisonsdumonde.com; hxxps://www.marmiton.org; hxxps://www.pinterest.fr
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR NewTab: Default -> Not-active:"chrome-extension://moanhhdeiamcbdehdcofplobbjelenep/ntp1.html", Not-active:"chrome-extension://ffkkhnmhakkikpkabfmoejhlohnceknd/ntp1.html", Not-active:"chrome-extension://fdfbclphcjellccklfdjfeodadjigbhh/ntp1.html", Not-active:"chrome-extension://ceopoaldcnmhechacafgagdkklcogkgd/ntp1.html", Not-active:"chrome-extension://cpjbkhbhimkbbekiaelopeddeheljabm/ntp1.html", Not-active:"chrome-extension://imkdmcjnbhoogaaljmahnepgjlbniaoa/newtabproduct.html", Not-active:"chrome-extension://mabloidgodmbnmnhoenmhlcjkfelomgp/newtabproduct.html", Not-active:"chrome-extension://kpocjpoifmommoiiiamepombpeoaehfh/stubby.html"
CHR DefaultSearchURL: Default -> hxxps://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&enableSearch=true&rdrct=no&redirect=CPC
CHR DefaultSearchKeyword: Default -> askwebs
CHR DefaultSuggestURL: Default -> hxxps://ss.search.ask.com/ss?li=ff&sstype=prefix&limit=10&hl=en&q={searchTerms}&enableSearch=true&rdrct=no
CHR Extension: (Slides) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-07]
CHR Extension: (OnlineMapFinder) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceopoaldcnmhechacafgagdkklcogkgd [2020-06-14]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-01]
CHR Extension: (Zoom sur image) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflhmlgnpddoldfkdekfbnambefdfnjg [2018-10-18]
CHR Extension: (MapsGalaxy) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpjbkhbhimkbbekiaelopeddeheljabm [2020-06-11]
CHR Extension: (Adobe Acrobat) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-21]
CHR Extension: (EasyFileConvert) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdfbclphcjellccklfdjfeodadjigbhh [2020-06-12]
CHR Extension: (Sheets) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (File Send Suite (BETA)) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffkkhnmhakkikpkabfmoejhlohnceknd [2021-01-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (MapsGalaxy) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkdmcjnbhoogaaljmahnepgjlbniaoa [2020-06-11]
CHR Extension: (Itineraire - Offres shopping) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlincbpgbkpbjepghokdnhnnpphmegig [2017-06-13]
CHR Extension: (EasyPDFCombine) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpocjpoifmommoiiiamepombpeoaehfh [2020-06-14]
CHR Extension: (Ask Web Search) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgfehfbnofiffladdncogfobimealokp [2020-09-01]
CHR Extension: (EasyDocMerge) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabloidgodmbnmnhoenmhlcjkfelomgp [2020-06-16]
CHR Extension: (MyMapsExpress) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\moanhhdeiamcbdehdcofplobbjelenep [2020-06-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-30]
CHR HKU\S-1-5-21-4184500421-594040574-1101420209-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-07-25] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-20] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-20] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-02-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 F-Secure Gatekeeper Handler Starter; C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe [220912 2012-06-26] (F-Secure Corporation -> F-Secure Corporation)
R3 F-Secure Network Request Broker; C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE [188144 2012-06-26] (F-Secure Corporation -> F-Secure Corporation)
R2 FSMA; C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE [188144 2012-06-26] (F-Secure Corporation -> F-Secure Corporation)
R2 HPSLPSVC; C:\Users\utilisateur\AppData\Local\Temp\7zS0B30\hpslpsvc64.dll [1039360 2012-08-27] (Hewlett-Packard Co.) [Fichier non signé] <==== ATTENTION
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Fichier non signé]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé]
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 F-Secure Filter; C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSfilter.sys [41072 2012-06-26] (F-Secure Corporation -> )
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys [202176 2013-07-10] (F-Secure Corporation -> F-Secure Corporation)
S4 F-Secure Recognizer; C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSrec.sys [26352 2012-06-26] (F-Secure Corporation -> )
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [49504 2019-02-05] (F-Secure Corporation -> )
R0 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [33408 2013-05-05] (F-Secure Corporation -> )
R1 fsvista; C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys [14064 2012-06-26] (F-Secure Corporation -> )
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2013-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [151184 2016-03-10] (NGO -> MBB)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-22 20:00 - 2021-02-22 20:01 - 000027432 _____ C:\Users\utilisateur\Downloads\FRST.txt
2021-02-22 19:59 - 2021-02-22 19:59 - 002301440 _____ (Farbar) C:\Users\utilisateur\Downloads\FRST64 (1).exe
2021-02-22 19:54 - 2021-02-22 20:01 - 000000000 ____D C:\FRST
2021-02-22 19:53 - 2021-02-22 19:53 - 002301440 _____ (Farbar) C:\Users\utilisateur\Downloads\FRST64.exe
2021-02-22 18:20 - 2021-02-22 18:20 - 009553488 _____ C:\Users\utilisateur\Downloads\drive-download-20210222T172025Z-001.zip
2021-02-22 17:49 - 2021-02-22 17:58 - 000002898 _____ C:\Windows\system32\Tasks\AutoKMS
2021-02-22 17:13 - 2021-02-22 17:13 - 000003208 _____ C:\Windows\system32\Tasks\{8D68F378-9BF3-467C-BBEC-929363F6BC1E}
2021-02-21 18:50 - 2021-02-21 18:50 - 000048687 _____ C:\Users\utilisateur\Downloads\AttestationDroits (1).pdf
2021-02-21 18:48 - 2021-02-21 18:48 - 000010269 _____ C:\Users\utilisateur\Downloads\DetailMessage (1).pdf
2021-02-19 10:26 - 2021-02-19 10:26 - 000000000 ____D C:\51029fefe51f8d485256
2021-02-17 14:30 - 2021-02-17 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-02-15 20:07 - 2021-02-15 20:07 - 000047744 _____ C:\Users\utilisateur\Downloads\Relevé CB - 00519150296 - 29012021.pdf
2021-02-14 20:50 - 2021-02-14 20:50 - 000000000 ____D C:\27a70ddf9ae2a7e53b8e73ca0e28bb73
2021-02-14 20:48 - 2021-02-14 20:49 - 003798534 _____ C:\Users\utilisateur\Downloads\Notification_prise_en_charge_ALD.pdf
2021-02-14 20:35 - 2021-02-14 20:35 - 000048687 _____ C:\Users\utilisateur\Downloads\AttestationDroits.pdf
2021-02-14 20:31 - 2021-02-14 20:31 - 000010269 _____ C:\Users\utilisateur\Downloads\DetailMessage.pdf
2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-02-14 04:12 - 2021-02-14 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-02-10 15:47 - 2021-02-10 15:47 - 000000000 ____D C:\79aa816bf592a1836c31
2021-01-25 17:12 - 2021-02-14 04:12 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-01-25 09:43 - 2021-01-25 09:43 - 000000000 ____D C:\87607b902c310db3b55c2cc6f9737b8c
2021-01-25 09:19 - 2021-01-25 09:19 - 000328993 _____ C:\Users\utilisateur\Downloads\CamScanner 01-22-2021 14.22_1.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-22 19:57 - 2009-07-14 05:45 - 000021696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-02-22 19:57 - 2009-07-14 05:45 - 000021696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-02-22 19:10 - 2018-09-20 21:51 - 000001196 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-02-22 18:17 - 2013-01-04 15:12 - 000000952 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000UA.job
2021-02-22 17:58 - 2012-10-20 11:48 - 000000268 _____ C:\Windows\Tasks\AutoKMS.job
2021-02-22 17:57 - 2020-03-11 08:25 - 000008192 _____ C:\Windows\SysWOW64\WDPABKP.dat
2021-02-22 17:57 - 2018-09-20 21:51 - 000001192 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-02-22 17:57 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-22 17:47 - 2013-05-05 10:41 - 000000000 ____D C:\Program Files (x86)\F-Secure
2021-02-22 17:45 - 2014-06-22 15:37 - 000000000 ____D C:\Windows\pss
2021-02-22 17:22 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-02-22 17:20 - 2014-04-10 07:33 - 000000000 ____D C:\ProgramData\McAfee
2021-02-22 17:19 - 2012-11-04 19:03 - 000000000 ____D C:\Program Files (x86)\Yahoo!
2021-02-22 16:57 - 2018-07-25 18:48 - 000000000 ___RD C:\Users\utilisateur\iCloudDrive
2021-02-22 16:52 - 2018-09-20 20:56 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-22 16:52 - 2018-02-14 10:56 - 000002047 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk
2021-02-22 16:40 - 2012-10-20 11:37 - 000003984 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{F5B58360-7FE3-4235-9CCC-38A43CB8D6A4}
2021-02-21 18:51 - 2015-02-19 09:50 - 000000000 ____D C:\Users\utilisateur\Documents\dossier médical
2021-02-21 18:03 - 2013-04-22 08:18 - 000000000 ____D C:\Users\utilisateur\Documents\courriers
2021-02-21 15:17 - 2013-01-04 15:12 - 000000930 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4184500421-594040574-1101420209-1000Core.job
2021-02-20 20:26 - 2012-11-11 18:35 - 000000000 ____D C:\Users\utilisateur\Documents\comptes
2021-02-20 19:57 - 2020-03-09 18:43 - 000008030 _____ C:\Windows\BRRBCOM.INI
2021-02-17 14:31 - 2018-09-20 21:51 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-02-15 19:36 - 2012-10-20 11:20 - 000124704 _____ C:\Users\utilisateur\AppData\Local\GDIPFONTCACHEV1.DAT
2021-02-15 19:35 - 2015-08-20 13:38 - 000000000 ____D C:\Users\utilisateur\Documents\inventaires
2021-02-10 15:45 - 2014-12-24 15:23 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-02-01 12:32 - 2013-04-26 14:19 - 000000000 ____D C:\Users\utilisateur\Documents\petis-enfants
2021-01-25 10:05 - 2018-09-20 21:51 - 000004192 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-25 10:05 - 2018-09-20 21:51 - 000003940 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore

==================== Fichiers à la racine de certains dossiers ========

2019-10-09 14:05 - 2019-10-09 14:05 - 009256960 _____ () C:\Program Files (x86)\GUTDD73.tmp
2017-04-26 13:14 - 2017-04-26 13:14 - 000000671 _____ () C:\Users\utilisateur\AppData\Roaming\AdobeWLCMR2Cache.dat
2012-11-04 20:50 - 2012-11-04 20:50 - 000000697 _____ () C:\Users\utilisateur\AppData\Roaming\ConvAPIPlugin.log
2015-07-02 10:47 - 2015-07-02 10:47 - 000000036 _____ () C:\Users\utilisateur\AppData\Roaming\SuYZkvrV.tmp
2012-10-28 08:43 - 2019-01-16 20:40 - 000016384 _____ () C:\Users\utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2018-07-17 10:37
==================== Fin de FRST.txt ========================