Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2021
Exécuté par Jean-Pierre (administrateur) sur DESKTOP-P2T870F (HP 550-129) (03-06-2021 13:01:22)
Exécuté depuis C:\Users\Jean-Pierre\Downloads
Profils chargés: Jean-Pierre
Platform: Windows 10 Home Version 20H2 19042.1023 (X64) Langue: Français (Canada)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Acresso Software Inc. -> Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Seagate\TibMounter\TibMounterMonitor.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <29>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\Floater.exe
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Software\wpCtrl.exe
(Portrait Displays, Inc. -> Portrait Displays Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HookManager.exe
(Portrait Displays, Inc. -> Portrait Displays, Inc) C:\Program Files (x86)\Hewlett-Packard\HP My Display\dthtml.exe
(Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(RedFox) [Fichier non signé] C:\Program Files (x86)\RedFox\CloneCD\CloneCDTray.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
(Symantec Corporation -> Symantec) C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8790264 2016-01-15] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [752280 2019-02-14] (Acronis International GmbH -> )
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Software\wpctrl.exe [694824 2009-03-03] (Portrait Displays, Inc. -> )
HKLM-x32\...\Run: [DT HPC] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2014-06-27] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-09] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-09] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] => C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172320 2021-05-22] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\RedFox\CloneCD\CloneCDTray.exe [57344 2016-03-29] (RedFox) [Fichier non signé]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [kpm_tray.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [629864 2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Seagate\TibMounter\TibMounterMonitor.exe [425864 2019-02-14] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [DiscWizardMonitor.exe] => C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe [4229480 2019-02-14] (Acronis International GmbH -> )
HKLM-x32\...\Run: [Norton Ghost 15.0] => C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2596712 2009-10-01] (Symantec Corporation -> Symantec Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-3143759682-377817134-179207162-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Software Inc. -> Acresso Corporation)
HKU\S-1-5-21-3143759682-377817134-179207162-1001\...\Run: [EPSON Stylus NX200 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIEFA.EXE [221696 2007-12-13] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3143759682-377817134-179207162-1001\...\RunOnce: [Application Restart #1] => C:\Program Files\Nikon\ViewNX-i\ViewNX-i\ViewNX-i.exe [8900216 2020-08-20] (NIKON CORPORATION -> Nikon Corporation)
HKLM\...\Windows x64\Print Processors\Canon PRO-100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBD.DLL [30208 2014-10-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-100 series: C:\WINDOWS\system32\CNMLMBD.DLL [406528 2014-10-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-100 series XPS: C:\WINDOWS\system32\CNMXLMBD.DLL [409088 2016-05-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2014-08-06] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON Stylus NX200 Series 64MonitorBA: C:\WINDOWS\system32\E_ILMEFA.DLL [108032 2007-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-05-25] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0AAF18E0-F735-475C-9725-8953C628CB0B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-27] (Google Inc -> Google Inc.)
Task: {100FC75A-8B7A-4359-AFF0-1A8B0E71E706} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {1D056B10-BE5E-4F59-9F92-95C360447859} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {2A2A4D34-134C-4EC8-8420-72DBE5D01AAD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {42529A05-1E2C-49E7-8C8F-6D415F0A87B3} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {4D8EBB73-403B-4C4D-8E12-02DA818A1FF8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {7268DA0C-5741-437E-9C64-CF63A5A1CA76} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-27] (Google Inc -> Google Inc.)
Task: {7FCA2DCA-EF89-4E56-9A61-30FE6DDECFB4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {8678ABE4-2176-4E02-906D-BE50AE5F744C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {8B9B7A7B-4E55-4B7F-96A3-7E20493B7A92} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8CB3E5E8-FE03-4C6B-AA36-C7160F65DD8C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [352368 2021-05-17] (HP Inc. -> HP Inc.)
Task: {AC4347E1-AAF8-4121-B08D-BCE3FE7DBBF7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {BD168366-3BC9-4CBD-B982-A8E61959B9CF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-04] (Dropbox, Inc -> Dropbox, Inc.)
Task: {C9F714A6-9561-4124-8A81-08666351C43A} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> )
Task: {CF15803E-A469-47C3-8C6C-7D3B522BC445} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\BingPopup\BingPopup.exe [555640 2021-03-25] (HP Inc. -> HP Inc.)
Task: {D39726FB-D9F1-4762-8E51-26B176B6F1F3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {EC49635E-9BC8-43A3-98F4-47F092E2F1D8} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog9 17 %windir%\system32\vsocklib.dll => Pas de fichier
Winsock: Catalog9 18 %windir%\system32\vsocklib.dll => Pas de fichier
Winsock: Catalog9-x64 17 %windir%\system32\vsocklib.dll => Pas de fichier
Winsock: Catalog9-x64 18 %windir%\system32\vsocklib.dll => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 192.168.0.106 8.8.8.8
Tcpip\..\Interfaces\{6e595058-54f2-4b58-899f-c4de75deb649}: [DhcpNameServer] 192.168.0.106 8.8.8.8
Tcpip\..\Interfaces\{a72c8183-eb40-45c7-a86a-6e1aeb37cce7}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b7c79939-5d12-4312-9a30-1b90de97349b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e8eebdfb-c3d8-49bc-837b-989fe09c8df3}: [DhcpNameServer] 192.168.0.1 24.201.245.77 24.200.0.1

Edge:
=======
DownloadDir: C:\Users\Jean-Pierre\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-02-16]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Jean-Pierre\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-03]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2020-02-26]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default [2021-06-03]
CHR Session Restore: Default -> est activé.
CHR Extension: (Slides) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-03]
CHR Extension: (Kaspersky Protection 19.0) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\amkpcclbbgegoafihnpgomddadjhcadd [2021-06-03]
CHR Extension: (Docs) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-29]
CHR Extension: (YouTube) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-27]
CHR Extension: (Recherche Google) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-27]
CHR Extension: (Email this page (by Google)) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbeoemfhkdniadbojeencpkgmobndpai [2016-01-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-07]
CHR Extension: (Sheets) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-03]
CHR Extension: (Conjugaison française - extension) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\goppknomocjclmklldbjpilkcbafdclh [2016-02-19]
CHR Extension: (Send Page) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\higemadklcnjhjpgcbnnbpgeeippjjcp [2018-06-21]
CHR Extension: (HP Network Check Launcher) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2019-02-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-15]
CHR Extension: (Gmail) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-29]
CHR Extension: (Chrome Media Router) - C:\Users\Jean-Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-03]
CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe [1155536 2019-02-14] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\avp.exe [619640 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-04] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-04] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-05-22] (Dropbox, Inc -> Dropbox, Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2014-06-27] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2016-01-28] (Macrovision Europe Ltd.) [Fichier non signé]
S3 GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1571336 2009-09-21] (Symantec Corporation -> Symantec)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\x64\vssbridge64.exe [414352 2018-12-07] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354008 2019-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [646520 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-26] (Symantec Corporation -> Symantec Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Seagate\MobileBackupServer\mobile_backup_server.exe [3004128 2019-02-14] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Seagate\DiscWizard\mobile_backup_status_server.exe [1761008 2019-02-14] (Acronis International GmbH -> )
R2 Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4584288 2009-10-01] (Symantec Corporation -> Symantec Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
R3 Symantec SymSnap VSS Provider; C:\WINDOWS\system32\dllhost.exe /Processid:{293E15E3-45EB-4000-A343-2CB22085BF55} [21312 2021-02-16] (Microsoft Windows -> Microsoft Corporation)
R3 SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2009-09-21] (Symantec Corporation -> Symantec)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe [493280 2017-08-04] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc. -> SlySoft, Inc.)
S3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc. -> SlySoft, Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2019-12-05] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 GenericMount; C:\WINDOWS\System32\drivers\GenericMount.sys [54320 2009-09-21] (Symantec Corporation -> Symantec Corporation)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [75600 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [126288 2019-08-06] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [91472 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29208 2017-03-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [237160 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1192040 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP19.0.0\Bases\klids.sys [245304 2021-04-14] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1168488 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58704 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [60536 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [60784 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50304 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [46416 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-04-03] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-05-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [104576 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [184960 2019-04-16] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [218736 2020-05-19] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-03] (Malwarebytes Inc -> Malwarebytes)
R1 MpKsl79584539; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{409EF191-1ED7-4A81-AFF7-220195F03343}\MpKsl79584539.sys [58120 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 symsnap; C:\WINDOWS\System32\DRIVERS\symsnap.sys [170032 2009-09-21] (Symantec Corporation -> StorageCraft)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2019-12-05] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2019-12-05] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2019-12-05] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2019-12-05] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 VProEventMonitor; C:\WINDOWS\system32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation -> Symantec Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-03 13:01 - 2021-06-03 13:02 - 000035341 _____ C:\Users\Jean-Pierre\Downloads\FRST.txt
2021-06-03 12:59 - 2021-06-03 13:01 - 000000000 ____D C:\FRST
2021-06-03 12:59 - 2021-06-03 12:59 - 002300416 _____ (Farbar) C:\Users\Jean-Pierre\Downloads\FRST64 (1).exe
2021-06-03 12:58 - 2021-06-03 12:58 - 002300416 _____ (Farbar) C:\Users\Jean-Pierre\Downloads\FRST64.exe
2021-06-03 12:51 - 2021-06-03 12:51 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-03 11:53 - 2021-06-03 11:53 - 000003668 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2021-06-03 11:32 - 2021-06-03 11:32 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-DESKTOP-P2T870F-Windows-10-Home-(64-bit).dat
2021-06-03 11:32 - 2021-06-03 11:32 - 000000000 ____D C:\RegBackup
2021-06-03 11:29 - 2021-06-03 11:29 - 000000000 ____D C:\Users\Jean-Pierre\Desktop\repair windows
2021-06-03 11:28 - 2021-06-03 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2021-06-03 11:28 - 2021-06-03 11:28 - 000000000 ____D C:\Program Files\7-Zip
2021-06-03 11:28 - 2011-10-24 13:35 - 000000000 ____D C:\Users\Jean-Pierre\Downloads\Tweaking.com - Windows Repair
2021-06-03 11:27 - 2021-06-03 11:27 - 000425304 _____ (Secure By Design Inc.) C:\Users\Jean-Pierre\Downloads\Ninite 7Zip Installer.exe
2021-06-03 11:26 - 2021-06-03 11:26 - 047890929 _____ C:\Users\Jean-Pierre\Downloads\tweaking.com_windows_repair_aio.zip
2021-06-03 10:39 - 2021-06-03 10:39 - 006611920 _____ (EnigmaSoft Limited) C:\Users\Jean-Pierre\Downloads\SpyHunter-5.10-5-6608-Installer.exe
2021-06-03 10:14 - 2021-06-03 10:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-06-03 10:13 - 2021-06-03 12:51 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\CrashDumps
2021-06-03 10:01 - 2021-06-03 10:01 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-03 10:01 - 2021-06-03 10:01 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-06-03 10:01 - 2021-06-03 10:01 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-03 10:00 - 2021-06-03 10:00 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-03 10:00 - 2021-06-03 10:00 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-03 10:00 - 2021-06-03 10:00 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-03 10:00 - 2021-06-03 10:00 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-03 10:00 - 2021-06-03 10:00 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-03 10:00 - 2021-06-03 10:00 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-06-03 10:00 - 2021-06-03 10:00 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-06-03 10:00 - 2021-06-03 10:00 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-06-03 10:00 - 2021-06-03 10:00 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-03 10:00 - 2021-06-03 10:00 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-03 10:00 - 2021-06-03 10:00 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-03 10:00 - 2021-06-03 10:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-03 10:00 - 2021-06-03 10:00 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-03 10:00 - 2021-06-03 10:00 - 000011327 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-03 09:59 - 2021-06-03 09:59 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-03 09:59 - 2021-06-03 09:59 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-06-03 09:59 - 2021-06-03 09:59 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-03 09:59 - 2021-06-03 09:59 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-03 09:59 - 2021-06-03 09:59 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-03 09:59 - 2021-06-03 09:59 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-03 09:59 - 2021-06-03 09:59 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-06-03 09:59 - 2021-06-03 09:59 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-06-03 09:59 - 2021-06-03 09:59 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-03 09:59 - 2021-06-03 09:59 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-06-03 09:27 - 2021-06-03 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-06-03 09:26 - 2021-06-03 09:26 - 002080712 _____ (Malwarebytes) C:\Users\Jean-Pierre\Downloads\MBSetup (1).exe
2021-06-03 09:23 - 2021-06-03 09:23 - 002080712 _____ (Malwarebytes) C:\Users\Jean-Pierre\Downloads\MBSetup.exe
2021-06-03 09:23 - 2021-06-03 09:23 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-03 09:23 - 2021-06-03 09:23 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-03 09:23 - 2021-06-03 09:23 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-06-03 09:23 - 2021-06-03 09:23 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-06-03 09:23 - 2021-06-03 09:23 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-03 09:23 - 2021-06-03 09:23 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-03 09:23 - 2021-06-03 09:23 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Local\mbam
2021-06-03 09:23 - 2021-06-03 09:23 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-03 09:23 - 2021-06-03 09:23 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-03 09:22 - 2021-06-03 09:22 - 008534696 _____ (Malwarebytes) C:\Users\Jean-Pierre\Downloads\adwcleaner_8.2.exe
2021-06-03 09:22 - 2021-06-03 09:22 - 000000000 ____D C:\AdwCleaner
2021-05-25 17:14 - 2021-05-25 17:14 - 000047183 _____ C:\Users\Jean-Pierre\Documents\TR _ Confirmation de la réservation pour FRANCE TREMBLAY.eml
2021-05-22 09:52 - 2021-05-22 09:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-05-22 09:52 - 2021-05-22 09:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-05-22 09:52 - 2021-05-22 09:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-05-22 09:52 - 2021-05-22 09:52 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-05-04 18:40 - 2021-05-04 18:40 - 000000000 ____D C:\Users\Jean-Pierre\Documents\Zoom
2021-05-04 18:39 - 2021-05-04 18:39 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-05-04 18:38 - 2021-05-04 18:40 - 000000000 ____D C:\Users\Jean-Pierre\AppData\Roaming\Zoom
2021-05-04 18:37 - 2021-05-04 18:37 - 000125168 _____ (Zoom Video Communications, Inc.) C:\Users\Jean-Pierre\Downloads\Zoom_cm_fo42anktZ9vvrZo4_mUYaC1VbvsrKXoyfS2muz51ORY2unBZrumURj@woKKYA+6SYEusX-8_kd9e2a1333084a19f_.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-03 12:59 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\Registration
2021-06-03 12:54 - 2021-02-16 23:11 - 001672018 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-03 12:54 - 2019-12-07 11:06 - 000737688 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-03 12:54 - 2019-12-07 11:06 - 000135570 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-03 12:54 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-03 12:51 - 2020-08-14 09:33 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2021-06-03 12:51 - 2020-08-14 09:33 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2021-06-03 12:51 - 2020-08-14 09:33 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2021-06-03 12:51 - 2017-09-22 18:48 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-03 12:51 - 2016-09-07 09:07 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-06-03 12:51 - 2016-01-27 13:19 - 000000000 __SHD C:\Users\Jean-Pierre\IntelGraphicsProfiles
2021-06-03 12:50 - 2021-02-16 23:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-03 12:50 - 2021-02-16 22:56 - 002329736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-03 12:50 - 2021-02-16 22:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-03 12:50 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-03 12:50 - 2019-12-07 05:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-03 12:50 - 2019-12-07 05:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-06-03 12:48 - 2021-02-16 22:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-03 11:53 - 2017-08-03 09:12 - 000000000 ____D C:\Users\Jean-Pierre\Documents\Punta Cana
2021-06-03 11:53 - 2017-07-10 08:50 - 000000000 ____D C:\Users\Jean-Pierre\Documents\Les Jacques
2021-06-03 11:53 - 2017-06-27 10:51 - 000000000 ___RD C:\Users\Jean-Pierre\3D Objects
2021-06-03 11:53 - 2016-12-23 20:12 - 000000000 ____D C:\Users\Jean-Pierre\Documents\Robert A.M. Stern Architects, LLP_files
2021-06-03 11:28 - 2020-12-16 15:07 - 000000000 ____D C:\ProgramData\WinZip
2021-06-03 11:02 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-03 10:18 - 2021-02-16 23:36 - 000004184 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{BCAE5D1F-84BB-4DDB-BC7B-D046476C7959}
2021-06-03 10:14 - 2017-12-26 18:43 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-06-03 10:13 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-03 10:13 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-03 10:07 - 2019-12-07 11:07 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-06-03 10:07 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-03 10:03 - 2019-12-07 11:09 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-06-03 09:59 - 2021-02-16 23:00 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-06-03 09:50 - 2016-01-27 13:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-03 09:47 - 2016-01-27 13:08 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-03 09:28 - 2016-04-04 15:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-06-03 09:23 - 2019-12-07 05:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-03 09:21 - 2021-02-16 23:36 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3143759682-377817134-179207162-1001
2021-06-03 09:21 - 2021-02-16 23:02 - 000002434 _____ C:\Users\Jean-Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-03 09:21 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-06-03 09:21 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-06-03 09:21 - 2016-01-27 12:40 - 000000000 ___RD C:\Users\Jean-Pierre\OneDrive
2021-06-03 09:13 - 2021-02-16 23:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-05-26 15:40 - 2021-02-16 23:02 - 000000000 ____D C:\Users\Jean-Pierre
2021-05-26 15:36 - 2016-04-04 15:30 - 000001228 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-26 15:36 - 2016-04-04 15:30 - 000001224 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-25 18:28 - 2016-01-27 12:44 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-25 18:28 - 2016-01-27 12:44 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-24 09:42 - 2021-04-07 11:13 - 000000000 ____D C:\Users\Jean-Pierre\Documents\Kijiji
2021-05-23 16:38 - 2021-04-07 09:58 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-05-12 06:06 - 2017-04-14 05:37 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-04 17:21 - 2021-02-16 23:36 - 000004288 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-04 17:21 - 2021-02-16 23:36 - 000004056 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore

==================== Fichiers à la racine de certains dossiers ========

2016-01-28 17:05 - 2016-10-14 09:09 - 000000268 ___RH () C:\Users\Jean-Pierre\AppData\Roaming\manual
2021-03-25 10:41 - 2021-03-25 10:54 - 000028160 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSBase64Plugin9498.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000059904 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSEncryptPlugin9498.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000040960 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSMainPlugin9503.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000025088 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSNetworkPlugin9498.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000031744 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSProcessPlugin9498.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000031232 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSQTFileTransferPlugin9471.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000068608 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSQTMoviePlugin9492.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000026624 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSRegistrationPlugin9499.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000053248 ____H () C:\Users\Jean-Pierre\AppData\Roaming\MBSWinPlugin9492.dll
2021-03-25 10:40 - 2021-03-25 10:54 - 000088576 ____H () C:\Users\Jean-Pierre\AppData\Roaming\rbap550.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000029184 ____H () C:\Users\Jean-Pierre\AppData\Roaming\RBInternetEncodings550.dll
2021-03-25 10:40 - 2021-03-25 10:54 - 000074240 ____H () C:\Users\Jean-Pierre\AppData\Roaming\rbqt550.DLL
2021-03-25 10:40 - 2021-03-25 10:54 - 000038912 ____H () C:\Users\Jean-Pierre\AppData\Roaming\RBShell550.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 000653924 ____H () C:\Users\Jean-Pierre\AppData\Roaming\RBSSLSocket550.dll
2021-03-25 10:41 - 2021-03-25 10:54 - 001166772 ____H () C:\Users\Jean-Pierre\AppData\Roaming\RBXML550.dll
2018-01-03 09:27 - 2018-01-03 09:27 - 000000268 ___RH () C:\Users\Jean-Pierre\AppData\Roaming\Woodwinds
2016-01-28 17:07 - 2016-07-25 15:48 - 000000000 _____ () C:\Users\Jean-Pierre\AppData\Roaming\Work - Home
2018-01-03 09:27 - 2018-01-03 09:27 - 000000268 ___RH () C:\Users\Jean-Pierre\AppData\Roaming\Workflows
2016-03-03 17:25 - 2019-04-10 09:37 - 000005632 _____ () C:\Users\Jean-Pierre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-09-07 10:03 - 2016-09-07 10:03 - 000000017 _____ () C:\Users\Jean-Pierre\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================