Posté le 17 novembre
Télécharger | Reposter | Largeur fixe



Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Exécuté par domvi (administrateur) sur DESKTOP-GNJQA87 (FUJITSU LIFEBOOK T902) (17-11-2023 07:30:39)
Exécuté depuis C:\Users\domvi\Downloads\FRST64.exe
Profils chargés: domvi
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3684_none_7dfc270e7c9a3a0b\TiWorker.exe
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2022-09-27] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16183056 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS_SWVOL] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1420560 2015-12-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files (x86)\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [447808 2021-08-19] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED)
HKLM-x32\...\Run: [FUJ02B1_Apps] => C:\Program Files (x86)\Fujitsu\FUJ02B1\CheckBatteryPack.exe [376128 2018-09-06] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\...\Run: [MicrosoftEdgeAutoLaunch_7836733F498812A6F01A29A207916941] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1845954419-3934238829-1240228078-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2023-03-05]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {76649D9B-8AEB-4279-8D8F-D0069B7A5F93} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {87ECE5AD-2C84-4526-8911-CC794A768611} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F0D00511-B9CC-4EA3-A52F-83A8755B4D50} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "2c9a03e8-534f-473a-a1f6-8ed33c2ff808" --version "6.17.10746" --silent
Task: {6E192CFE-E261-49E5-90B7-F72A1B395B5A} - System32\Tasks\CCleanerSkipUAC - domvi => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {B4C54646-7536-43B2-B76E-A6591EBF88EE} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2322472 2023-04-06] (CyberLink Corp. -> )
Task: {67547BAB-39CD-40F2-8021-055915091ADA} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2322472 2023-04-06] (CyberLink Corp. -> )
Task: {92DCCB56-E938-41C7-855E-CAD4C8762944} - System32\Tasks\DriverFix => "C:\Program Files (x86)\DriverFix\DriverFix.exe" -auto (Pas de fichier) <==== ATTENTION
Task: {D99F1B51-5D62-473A-9CAB-2533FCC8EA1E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {E9B9AA5A-F650-47E9-9A8E-E83D430FC9D6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F288E714-CBF2-4342-9CB5-C2045AE13658} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7B8BE0B-7302-4F7A-B1DF-0C8AD3B8FF03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {BEF61B7B-EF04-4FE9-999F-A68BC5EB988F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1582166C-ED3E-4918-BC27-A842FB37B43A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63B8A823-4185-470B-A6F3-5ACBD90CC104} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E74A3E37-F9C7-460A-9969-22B450A139B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1109CA2D-5142-4293-BE02-C298DEC28718} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {8B0150E4-06C7-4CCB-AF90-668D105DF70C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {2953C437-E2B5-4DCD-93D4-DC9441D5A31A} - System32\Tasks\WinZip - Outil de déduplication - Documents - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {1FB5691C-3DAD-49F1-9BCA-32EC23BA6130} - System32\Tasks\WinZip - Outil de déduplication - Images - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {4B3B1841-705E-493F-8C43-54CDBD5FAC7E} - System32\Tasks\WinZip - Outil de déduplication - Téléchargements - domvi => C:\Program Files\WinZip\WzBGTToolsManager64.exe [332368 2022-08-19] (Corel Corporation -> WinZip Computing)
Task: {819619F9-9F86-4C4A-A086-5047FF9749BF} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {0659E5A5-33B7-4854-B10B-6D66AA76AE50} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {E94E3CC5-D28C-4414-A43A-E78B5195D49B} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3177592 2022-08-19] (Corel Corporation -> Corel Corporation)
Task: {81B6EDF5-B9A6-4850-A8B8-DDEF8DDC57B8} - System32\Tasks\WinZip Updater - domvi => C:\Program Files\WinZip\WzUpdater.exe [441936 2022-08-19] (Corel Corporation -> )

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f711be5-5b47-40cb-a2f9-0e14baa0458d}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-29]
Edge Extension: (Edge relevant text changes) - C:\Users\domvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-29]

FireFox:
========
FF DefaultProfile: mj3pqdl6.default
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\mj3pqdl6.default [2022-09-21]
FF ProfilePath: C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release [2023-11-17]
FF Homepage: Mozilla\Firefox\Profiles\97cqx4vs.default-release -> hxxps://www.google.com/webhp?hl=fr&sa=X&ved=0ahUKEwjT8_Ou4db8AhWXUqQEHTFkATwQPAgT
FF Extension: (FileCR Assistant) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\***@*** [2023-05-24]
FF Extension: (Dashlane) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\***@*** [2023-11-14]
FF Extension: (I don't care about cookies) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\***@*** [2023-09-28]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\domvi\AppData\Roaming\Mozilla\Firefox\Profiles\97cqx4vs.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-20]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2022-10-08] (Apple Inc. -> Apple Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé]
R2 NativePushService; C:\Users\domvi\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 FUJ02B1; C:\Windows\system32\DRIVERS\FUJ02B1.sys [68536 2018-09-06] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 fuj02e3; C:\Windows\system32\DRIVERS\fuj02e3.sys [182216 2021-08-19] (FUJITSU LIMITED -> FUJITSU LIMITED)
R3 MpKsl6adfe51f; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7569FA26-1D36-4FC1-A989-A164B092BF0C}\MpKslDrv.sys [263560 2023-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 RSP2STOR; C:\Windows\System32\drivers\RtsP2Stor.sys [347224 2022-09-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 WacHIDRouterISDU; C:\Windows\System32\drivers\WacHIDRouterISDU.sys [124664 2022-01-27] (Wacom Co., Ltd. -> Wacom Technology, Corp.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Users\domvi\AppData\Local\Temp\7z01825D94\WinRing0x64.sys [X] <==== ATTENTION

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-11-17 07:30 - 2023-11-17 07:31 - 000019155 _____ C:\Users\domvi\Downloads\FRST.txt
2023-11-17 07:30 - 2023-11-17 07:31 - 000000000 ____D C:\FRST
2023-11-17 07:29 - 2023-11-17 07:29 - 002383872 _____ (Farbar) C:\Users\domvi\Downloads\FRST64.exe
2023-11-16 19:33 - 2023-11-16 19:33 - 000000000 ___HD C:\$WinREAgent
2023-11-16 12:47 - 2023-11-16 12:47 - 000098708 _____ C:\Users\domvi\Downloads\archive(6).zip
2023-11-16 12:47 - 2023-11-16 12:47 - 000098708 _____ C:\Users\domvi\Downloads\archive(5).zip
2023-11-12 00:53 - 2023-11-12 00:53 - 000000375 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2023-11-11 11:39 - 2023-11-11 11:39 - 001266502 _____ C:\Users\domvi\Downloads\archive(4).zip
2023-11-08 22:43 - 2023-11-08 22:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-05 13:50 - 2023-11-05 13:50 - 000001036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\V380.lnk
2023-11-05 13:49 - 2023-11-05 13:50 - 000000000 ____D C:\Program Files (x86)\V380
2023-11-05 13:29 - 2023-11-05 13:30 - 034246882 _____ (M@cro-video Technologies Co. ) C:\Users\domvi\Downloads\V380 PC client v380 org(1).exe
2023-11-01 19:20 - 2023-11-01 19:20 - 000000000 _____ C:\Users\domvi\Downloads\hRakxmVw.htm
2023-10-26 17:59 - 2023-10-26 17:59 - 000235065 _____ C:\Users\domvi\Desktop\c1cd9fc05ebc896190a84cb64892a4972dd6b9cc.jpeg
2023-10-26 17:58 - 2023-10-26 17:58 - 003465223 _____ C:\Users\domvi\Desktop\bbaa7672277394a890d554511bfb7f95cb94d74c.jpeg
2023-10-26 17:58 - 2023-10-26 17:58 - 000213766 _____ C:\Users\domvi\Desktop\bbaa7672277394a890d554511bfb7f95cb94d74c_2_919x688.jpeg

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-11-17 07:29 - 2022-09-21 14:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-17 07:28 - 2022-09-21 15:50 - 000000000 ____D C:\Users\domvi\AppData\Roaming\WTablet
2023-11-17 07:28 - 2022-09-21 14:18 - 000000000 __SHD C:\Users\domvi\IntelGraphicsProfiles
2023-11-17 07:28 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-17 07:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-11-17 07:28 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-16 20:24 - 2022-09-21 13:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-11-16 19:52 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-11-16 19:27 - 2022-09-21 14:22 - 000000000 ____D C:\Windows\system32\MRT
2023-11-16 19:24 - 2022-09-21 14:22 - 182871392 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-11-16 18:23 - 2022-09-21 16:17 - 000000000 ____D C:\Program Files\CCleaner
2023-11-15 00:10 - 2022-09-21 16:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2023-11-15 00:10 - 2022-09-21 14:17 - 000000000 ____D C:\Users\domvi\AppData\Local\Publishers
2023-11-15 00:10 - 2019-12-07 10:14 - 000000167 _____ C:\Windows\win.ini
2023-11-14 18:25 - 2022-09-21 13:32 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2023-11-14 18:25 - 2019-12-07 15:50 - 000756530 _____ C:\Windows\system32\perfh00C.dat
2023-11-14 18:25 - 2019-12-07 15:50 - 000142300 _____ C:\Windows\system32\perfc00C.dat
2023-11-14 18:25 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-11-12 18:59 - 2022-09-21 14:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-11 11:39 - 2022-09-21 13:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-09 00:39 - 2022-09-21 14:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-07 20:36 - 2022-09-21 13:28 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-11-04 14:01 - 2022-09-21 14:16 - 000000000 ____D C:\Users\domvi\AppData\Local\Packages
2023-10-31 20:21 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-10-30 19:21 - 2022-09-21 13:28 - 000003688 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-30 19:21 - 2022-09-21 13:28 - 000003564 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-26 20:21 - 2022-09-21 14:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-25 19:50 - 2022-09-21 16:18 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-10-25 19:50 - 2022-09-21 16:18 - 000003476 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-10-25 19:50 - 2022-09-21 16:18 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job

==================== Fichiers à la racine de certains dossiers ========

2023-08-11 16:46 - 2023-08-11 16:46 - 000001067 _____ () C:\Users\domvi\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.