Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2019
Exécuté par Flo (administrateur) sur FLO_HP (Hewlett-Packard HP Pavilion dv6 Notebook PC) (09-09-2019 20:04:33)
Exécuté depuis C:\Users\Flo\Desktop
Profils chargés: Flo (Profils disponibles: Flo)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Learnpulse -> Learnpulse) C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\ATCenterServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\LMAXServerHost.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\MessageCenter.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\MultiCharts64.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\StudyServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\TradingServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\tsServer.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [524800 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-17] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [415680 2012-02-05] (Autodesk, Inc -> Autodesk, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [318520 2010-12-13] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM-x32\...\Run: [ORAHSSSessionManager] => C:\Program Files (x86)\OrangeHSS\SessionManager\SessionManager.exe [107248 2007-12-12] (FRANCE TELECOM -> France Telecom SA)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc. -> Flexera Software, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4283256 2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [Screenpresso] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [12379744 2019-06-11] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [JypVocbl] => C:\Windows\system32\config\systemprofile\AppData\Local\bsxjecuu\jypvocbl.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [vidc.spv1] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\ScreenpressoCodec.dll [167656 2019-06-11] (Learnpulse -> LearnPulse)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [vidc.spv1] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\SysWOW64\ScreenpressoCodec.dll [146664 2019-06-11] (Learnpulse -> LearnPulse)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-09] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2010-08-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2010-07-29] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2011-08-25]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snapfish PictureMover.lnk [2011-08-25]
ShortcutTarget: Snapfish PictureMover.lnk -> C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
AlternateShell:
GroupPolicy: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {07F6231F-1523-4949-AF6E-3008E349CE49} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {1704C73D-8EFE-4801-ACEE-826E7BAFF48C} - System32\Tasks\{6FC9D0DD-0CAD-4527-B552-6B0DAFBC979D} => C:\Windows\system32\pcalua.exe -a "G:\Autocad 2008 fra\Setup.exe" -d "G:\Autocad 2008 fra"
Task: {25F1E8A7-27C4-4BAC-86A4-FDAD8EB1103D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {30F71E1E-775B-4400-93EF-70876B65C551} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {35962F3F-3170-4535-A2CF-68A100B1D3CD} - \AdobeFlashPlayerUpdate -> Pas de fichier <==== ATTENTION
Task: {3C96B6C1-CCDE-41EE-8CD4-E77F003CBE54} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {49A2748F-E751-4A4D-8589-70BCCD4D7D4B} - System32\Tasks\{F8D386A2-3636-4ACE-B350-0B3052CB7FF6} => C:\Windows\system32\pcalua.exe -a "C:\Users\Flo\Desktop\Autocad 2008 fra\Setup.exe" -d "C:\Users\Flo\Desktop\Autocad 2008 fra"
Task: {4A74F74C-1D95-47F0-A86E-4BFF6F25F426} - System32\Tasks\{B9EC8203-73AF-4EE2-A505-977BE3522ECF} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {50252036-EA36-466F-B282-7E452FF00746} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [1457208 2019-08-13] (Adobe Inc. -> Adobe)
Task: {60D69BAE-BF37-44AB-8F4D-4E3AA8280B1F} - System32\Tasks\{0FDDA750-A776-4529-AB9A-878EA8F578F4} => C:\Program Files (x86)\eMule\emule.exe
Task: {62E5835A-41ED-4CE6-97C3-B3C2F34A67C5} - System32\Tasks\{45C9FC8D-FB80-40F7-9975-B6C62902ED01} => C:\Program Files (x86)\eMule\emule.exe
Task: {68200729-04D3-4798-8A66-993891AEF4C2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {71F32F62-3F57-4092-B2F3-721357512CFA} - System32\Tasks\{83EEB635-CB46-4201-945F-1406C05D3593} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {7B6C801A-2AAE-4507-B6DC-BF58D816D5A1} - System32\Tasks\{17D3347C-4753-4E78-9E4A-0268B45E1317} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {7D8C1ADB-7EA9-4549-9525-D949565F3AEC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-01] (Google Inc -> Google Inc.)
Task: {8065206B-2F00-48A7-85A6-DC556B20A066} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {83F385DB-618D-4CC8-A13C-70F7271D69D3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {848BF934-2532-4AE7-A85E-D4BE41D6C50A} - System32\Tasks\HPCeeScheduleForFlo => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [99392 2016-05-12] (Hewlett-Packard Company -> HP Development Company, L.P.)
Task: {8803BF3F-67D8-4671-A894-A65C884A7F39} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {8F64A4EE-0B4E-4305-A6BF-C2301D97543A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {8F909605-C994-4334-A7E3-BB2E7CA10AF3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {A8E0430D-43CD-482C-8657-06862AD74624} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AAA63CFC-B78A-4F46-BEB6-98B14A95F368} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-13] (Adobe Inc. -> Adobe)
Task: {C049D860-0AD0-4C75-A534-BEB6FF904980} - System32\Tasks\{49D0B5FE-71DE-4E35-A5E9-0A4B4F6B7E24} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {C437A840-C61E-49DF-841F-00FFF6503B7B} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-11-17] (Hewlett-Packard Company -> )
Task: {C83C001C-1D62-4FA0-B795-372EF29A7102} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {D7769658-7362-42BF-A222-EE724F902042} - \AdobeFlashPlayerUpdate 2 -> Pas de fichier <==== ATTENTION
Task: {DC94B741-6930-4F0E-A6EA-E90BDCC0A2A4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {F2615C22-54F1-4093-8090-84157E2B155D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-01] (Google Inc -> Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\HPCeeScheduleForFlo.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CD030D23-4973-44ED-BD83-DAD744F9F8E4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E793A05A-91EF-492F-9342-4140EB34E7CA}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FDE14F8E-9C57-434B-AECB-3D397F66C288}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1410231484-3059246620-443982372-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2010-12-15] (AuthenTec, Inc. -> HP)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IEExtension.VDownloaderBHO -> {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -> C:\Windows\assembly\GAC_MSIL\IEExtension\1.0.0.876__c8e1c1f3d6d8e203\IEExtension.dll [2012-04-21] (Vitzo) [Fichier non signé]
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2010-12-15] (AuthenTec, Inc. -> HP)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-1410231484-3059246620-443982372-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
FireFox:
========
FF ProfilePath: C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default [2019-09-09]
FF Extension: (Avira Browser Safety) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\abs@avira.com [2016-12-17] [hxxps://download.avira.com/package/abs/firefox/update-webext.rdf]
FF Extension: (collectorbroceliandfr) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\collector@broceliand.fr [2014-09-05] [Legacy] [non signé]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2014-01-17] [Legacy] [non signé]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-17] [Legacy] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\AVAST Software\Avast\WebRep\FF [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\webbooster@iminent.com.xpi [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\0efc9c38-1ec7-49ed-8915-53a48b6b7600@e7f17679-2a42-4659-83c5-7ba961fdf75a.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\d8222698-19e5-4827-b79e-0a077ea8eb7a@7b662f6d-3899-41e4-8864-6393447568da.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com [non trouvé(e)]
FF HKLM-x32\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files (x86)\VDownloader\Addons\FireFox => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll [2019-08-13] (Adobe Inc. -> )
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-01-05] (Sun Microsystems, Inc.) [Fichier non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll [2019-08-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2010-08-18] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 -> C:\Windows\SysWOW64\npDeployJava1.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-08] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-07-19] (VideoLAN) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1410231484-3059246620-443982372-1001: vitzo.com/VDownloader -> C:\Program Files (x86)\VDownloader\Addons\npVDownloader.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default [2019-09-09]
CHR Extension: (Slides) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-01]
CHR Extension: (Docs) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-01]
CHR Extension: (Google Drive) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-09]
CHR Extension: (YouTube) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-20]
CHR Extension: (Adobe Acrobat) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-17]
CHR Extension: (Sheets) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-01]
CHR Extension: (Protection Web Avira) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-08-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-15]
CHR Extension: (Website Logon) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhfpefkeidlhbjljfdojcnngjbddgein [2016-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-08]
CHR Extension: (Gmail) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-09]
CHR Extension: (Chrome Media Router) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-26]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1410231484-3059246620-443982372-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nhfpefkeidlhbjljfdojcnngjbddgein] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2010-11-17]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [203776 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [354304 2010-12-09] (Advanced Micro Devices, Inc.) [Fichier non signé]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [194496 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc. -> Autodesk, Inc.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé]
R2 FPLService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [249672 2010-12-15] (AuthenTec, Inc. -> HP)
S2 FTRTSVC; C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [65536 2007-12-11] (France Telecom SA) [Fichier non signé]
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-08-16] (Hewlett-Packard Company) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation -> Microsoft Corporation)
R2 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
S3 RoxMediaDBVHS; C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe [1112720 2012-07-31] (Corel Corporation -> Corel Corporation)
S2 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation -> Microsoft Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [275968 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 19de4dcb96150b3.exe; C:\Users\Flo\AppData\Local\2093e245fbe93dad5fff155f253813b0\19de4dcb96150b3.exe [X]
S2 AddonFileMotion.exe; C:\Users\Flo\AppData\Local\AddonFileMotion\AddonFileMotion.exe [X]
S2 ArchiveIconRuntime.exe; C:\Users\Flo\AppData\Local\ArchiveIconRuntime\ArchiveIconRuntime.exe [X]
S2 DashboardDOSRepository.exe; C:\Users\Flo\AppData\Local\cfaf0733f55495e7b9845d0f6ad46c9f\DashboardDOSRepository.exe [X]
S2 Direct3dMemoryWiget.exe; C:\Users\Flo\AppData\Local\Direct3dMemoryWiget\Direct3dMemoryWiget.exe [X]
S2 HP Health Check Service; "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]
S2 HPClientSvc; "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe" [X]
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43320 2010-08-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdiox64; C:\Windows\System32\DRIVERS\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [8121344 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [291328 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie64.sys [16440 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2010-08-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-07] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2013-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [80384 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-10-16] (Corel Corporation -> Corel Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [520192 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64A.sys [738328 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64A.sys [1226136 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [38528 2010-04-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S2 hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [X]
S3 PCAMp50a64; System32\Drivers\PCAMp50a64.sys [X]
S3 PCASp50a64; System32\Drivers\PCASp50a64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-09 20:04 - 2019-09-09 20:10 - 000040978 _____ C:\Users\Flo\Desktop\FRST.txt
2019-09-09 19:54 - 2019-09-09 20:03 - 001614848 _____ (Farbar) C:\Users\Flo\Desktop\FRST64.exe
2019-09-09 19:51 - 2019-09-09 19:53 - 000000000 ____D C:\Users\Flo\Downloads\FRST-OlderVersion
2019-09-08 14:02 - 2019-09-08 14:02 - 000001523 _____ C:\Users\Flo\Desktop\malware.txt
2019-09-08 13:31 - 2019-09-08 13:31 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-08 13:31 - 2019-09-08 13:31 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-08 13:31 - 2019-09-08 13:31 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-07 18:29 - 2019-09-07 18:33 - 000000816 _____ C:\Users\Flo\Desktop\ZHPDiag.lnk
2019-09-07 18:02 - 2019-09-08 13:30 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-07 18:01 - 2019-09-07 18:01 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-07 18:01 - 2019-09-07 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-07 18:01 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-07 16:27 - 2019-09-07 16:27 - 000005772 _____ C:\Users\Flo\Desktop\AdwCleaner[S00].txt
2019-09-07 16:26 - 2019-09-07 16:29 - 000000000 ____D C:\AdwCleaner
2019-09-07 16:25 - 2019-09-07 16:25 - 000016669 _____ C:\Users\Flo\Desktop\ZHPCleaner (R).txt
2019-09-07 16:16 - 2019-09-07 16:16 - 000021351 _____ C:\Users\Flo\Desktop\ZHPCleaner (S).txt
2019-09-07 15:49 - 2019-09-07 15:49 - 000000826 _____ C:\Users\Flo\Desktop\ZHPCleaner.lnk
2019-09-07 15:46 - 2019-09-07 15:47 - 007622344 _____ (Malwarebytes) C:\Users\Flo\Desktop\adwcleaner_7.4.1.exe
2019-09-07 15:40 - 2019-09-07 15:41 - 003126144 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPCleaner.exe
2019-09-07 15:02 - 2019-09-07 15:10 - 000056364 _____ C:\Users\Flo\Downloads\Addition.txt
2019-09-07 14:57 - 2019-09-07 15:10 - 000045104 _____ C:\Users\Flo\Downloads\FRST.txt
2019-09-07 14:55 - 2019-09-09 19:51 - 001614848 _____ (Farbar) C:\Users\Flo\Downloads\FRST64.exe
2019-09-07 14:08 - 2019-09-08 21:04 - 000382656 _____ C:\Users\Flo\Desktop\ZHPDiag.txt
2019-09-07 13:50 - 2019-09-07 13:52 - 003040640 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPDiag3 (1).exe
2019-09-07 13:44 - 2019-09-07 13:45 - 003040640 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPDiag3.exe
2019-09-07 12:46 - 2019-09-09 20:04 - 000000000 ____D C:\FRST
2019-08-30 14:10 - 2019-08-30 14:10 - 000089025 _____ C:\Users\Flo\Downloads\INVFR-20190806-59203.pdf
2019-08-30 13:36 - 2019-08-30 13:36 - 000373000 _____ C:\Users\Flo\Downloads\msds_UAN_FR Ameropa.pdf
2019-08-18 09:25 - 2019-08-18 09:28 - 005533928 _____ (IT-Finance ) C:\Users\Flo\Downloads\AdvancedCharts-Setup-win64.exe
2019-08-17 14:05 - 2019-08-17 14:05 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Google
2019-08-17 13:32 - 2019-08-17 13:32 - 000004048 _____ C:\Users\Flo\Desktop\leger.mcd
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-09 19:47 - 2011-11-23 12:47 - 000000000 ____D C:\Users\Flo\AppData\LocalLow\AuthenTec
2019-09-09 13:36 - 2019-08-01 13:14 - 000003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForFlo
2019-09-09 13:36 - 2019-08-01 13:14 - 000000324 _____ C:\Windows\Tasks\HPCeeScheduleForFlo.job
2019-09-09 08:16 - 2009-07-14 06:45 - 000026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-09 08:16 - 2009-07-14 06:45 - 000026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-08 21:04 - 2019-06-11 08:23 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ZHP
2019-09-08 14:12 - 2018-11-22 09:21 - 000000000 ____D C:\ProgramData\firebird
2019-09-08 13:33 - 2011-01-06 04:02 - 000813674 _____ C:\Windows\system32\perfh00C.dat
2019-09-08 13:33 - 2011-01-06 04:02 - 000174998 _____ C:\Windows\system32\perfc00C.dat
2019-09-08 13:33 - 2009-07-14 07:13 - 001854542 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-08 13:33 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-09-08 13:30 - 2011-12-03 14:36 - 000000000 ____D C:\Users\Flo\AppData\Local\CrashDumps
2019-09-08 13:25 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-08 13:01 - 2011-01-05 19:53 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-09-08 13:01 - 2010-12-03 03:30 - 000000000 ____D C:\Program Files\Hewlett-Packard
2019-09-08 13:00 - 2011-11-23 12:49 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Hewlett-Packard
2019-09-08 13:00 - 2011-01-05 20:08 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-09-07 19:49 - 2011-01-05 19:54 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-07 18:02 - 2018-11-10 19:25 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-07 16:30 - 2011-11-23 12:49 - 000000000 ____D C:\Users\Flo\AppData\Local\Hewlett-Packard
2019-09-07 16:29 - 2011-01-05 20:08 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-09-07 15:49 - 2019-06-11 08:23 - 000000000 ____D C:\Users\Flo\AppData\Local\ZHP
2019-09-07 12:40 - 2019-07-26 13:09 - 000270916 _____ C:\Users\Flo\Desktop\germany1 20pts.wsp
2019-09-07 12:40 - 2019-07-26 13:09 - 000144217 _____ C:\Users\Flo\Desktop\germany 20pts.wsp
2019-09-07 12:40 - 2019-06-05 13:21 - 000210213 _____ C:\Users\Flo\Desktop\Untitled-7.wsp
2019-09-02 18:56 - 2019-06-07 12:18 - 000000000 ____D C:\Users\Flo\AppData\Local\ElevatedDiagnostics
2019-08-23 17:52 - 2017-12-22 17:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-18 09:42 - 2019-07-26 13:09 - 000214083 _____ C:\Users\Flo\Desktop\Untitled-4.wsp
2019-08-17 21:05 - 2019-07-26 13:09 - 000125407 _____ C:\Users\Flo\Desktop\Untitled-5.wsp
2019-08-17 13:44 - 2018-08-26 12:41 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-08-13 19:10 - 2018-03-14 22:13 - 000004626 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-08-13 19:10 - 2014-02-04 20:46 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-08-13 19:10 - 2013-01-21 14:15 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-08-13 19:10 - 2011-11-24 09:31 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-13 19:10 - 2011-11-23 19:47 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers ================
2012-01-23 21:16 - 2012-01-23 21:16 - 000000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2011-12-10 23:24 - 2011-12-10 23:24 - 000000008 _____ () C:\Users\Flo\AppData\Roaming\c4yu98lghe44udpa.dat
2012-02-06 11:51 - 2012-09-04 13:19 - 000007168 _____ () C:\Users\Flo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-12-03 14:45 - 2011-12-03 14:45 - 000000000 _____ () C:\Users\Flo\AppData\Local\gdsmebpe.log
2011-12-03 14:36 - 2012-01-06 10:10 - 000000024 _____ () C:\Users\Flo\AppData\Local\kasnpejk.log
2011-12-03 14:36 - 2011-12-21 17:42 - 000339648 _____ () C:\Users\Flo\AppData\Local\lqwblbqh.log
2011-12-03 14:45 - 2012-01-06 10:03 - 000217179 _____ () C:\Users\Flo\AppData\Local\mqmqjiqx.log
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-09-01 20:12
==================== Fin de FRST.txt ============================
Exécuté par Flo (administrateur) sur FLO_HP (Hewlett-Packard HP Pavilion dv6 Notebook PC) (09-09-2019 20:04:33)
Exécuté depuis C:\Users\Flo\Desktop
Profils chargés: Flo (Profils disponibles: Flo)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Learnpulse -> Learnpulse) C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\ATCenterServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\LMAXServerHost.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\MessageCenter.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\MultiCharts64.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\StudyServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\TradingServer.exe
(TS Support) [Fichier non signé] C:\Program Files\TS Support\MultiCharts64\tsServer.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [524800 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-17] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [415680 2012-02-05] (Autodesk, Inc -> Autodesk, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297272 2017-12-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [318520 2010-12-13] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
HKLM-x32\...\Run: [ORAHSSSessionManager] => C:\Program Files (x86)\OrangeHSS\SessionManager\SessionManager.exe [107248 2007-12-12] (FRANCE TELECOM -> France Telecom SA)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc. -> Flexera Software, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4283256 2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [Screenpresso] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [12379744 2019-06-11] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1410231484-3059246620-443982372-1001\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [JypVocbl] => C:\Windows\system32\config\systemprofile\AppData\Local\bsxjecuu\jypvocbl.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [vidc.spv1] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\ScreenpressoCodec.dll [167656 2019-06-11] (Learnpulse -> LearnPulse)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [vidc.spv1] => C:\Users\Flo\AppData\Local\Learnpulse\Screenpresso\SysWOW64\ScreenpressoCodec.dll [146664 2019-06-11] (Learnpulse -> LearnPulse)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-09] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2010-08-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2010-07-29] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2011-08-25]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snapfish PictureMover.lnk [2011-08-25]
ShortcutTarget: Snapfish PictureMover.lnk -> C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
AlternateShell:
GroupPolicy: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {07F6231F-1523-4949-AF6E-3008E349CE49} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {1704C73D-8EFE-4801-ACEE-826E7BAFF48C} - System32\Tasks\{6FC9D0DD-0CAD-4527-B552-6B0DAFBC979D} => C:\Windows\system32\pcalua.exe -a "G:\Autocad 2008 fra\Setup.exe" -d "G:\Autocad 2008 fra"
Task: {25F1E8A7-27C4-4BAC-86A4-FDAD8EB1103D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {30F71E1E-775B-4400-93EF-70876B65C551} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {35962F3F-3170-4535-A2CF-68A100B1D3CD} - \AdobeFlashPlayerUpdate -> Pas de fichier <==== ATTENTION
Task: {3C96B6C1-CCDE-41EE-8CD4-E77F003CBE54} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {49A2748F-E751-4A4D-8589-70BCCD4D7D4B} - System32\Tasks\{F8D386A2-3636-4ACE-B350-0B3052CB7FF6} => C:\Windows\system32\pcalua.exe -a "C:\Users\Flo\Desktop\Autocad 2008 fra\Setup.exe" -d "C:\Users\Flo\Desktop\Autocad 2008 fra"
Task: {4A74F74C-1D95-47F0-A86E-4BFF6F25F426} - System32\Tasks\{B9EC8203-73AF-4EE2-A505-977BE3522ECF} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {50252036-EA36-466F-B282-7E452FF00746} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [1457208 2019-08-13] (Adobe Inc. -> Adobe)
Task: {60D69BAE-BF37-44AB-8F4D-4E3AA8280B1F} - System32\Tasks\{0FDDA750-A776-4529-AB9A-878EA8F578F4} => C:\Program Files (x86)\eMule\emule.exe
Task: {62E5835A-41ED-4CE6-97C3-B3C2F34A67C5} - System32\Tasks\{45C9FC8D-FB80-40F7-9975-B6C62902ED01} => C:\Program Files (x86)\eMule\emule.exe
Task: {68200729-04D3-4798-8A66-993891AEF4C2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {71F32F62-3F57-4092-B2F3-721357512CFA} - System32\Tasks\{83EEB635-CB46-4201-945F-1406C05D3593} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {7B6C801A-2AAE-4507-B6DC-BF58D816D5A1} - System32\Tasks\{17D3347C-4753-4E78-9E4A-0268B45E1317} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {7D8C1ADB-7EA9-4549-9525-D949565F3AEC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-01] (Google Inc -> Google Inc.)
Task: {8065206B-2F00-48A7-85A6-DC556B20A066} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {83F385DB-618D-4CC8-A13C-70F7271D69D3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {848BF934-2532-4AE7-A85E-D4BE41D6C50A} - System32\Tasks\HPCeeScheduleForFlo => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [99392 2016-05-12] (Hewlett-Packard Company -> HP Development Company, L.P.)
Task: {8803BF3F-67D8-4671-A894-A65C884A7F39} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {8F64A4EE-0B4E-4305-A6BF-C2301D97543A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {8F909605-C994-4334-A7E3-BB2E7CA10AF3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {A8E0430D-43CD-482C-8657-06862AD74624} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {AAA63CFC-B78A-4F46-BEB6-98B14A95F368} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-13] (Adobe Inc. -> Adobe)
Task: {C049D860-0AD0-4C75-A534-BEB6FF904980} - System32\Tasks\{49D0B5FE-71DE-4E35-A5E9-0A4B4F6B7E24} => C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
Task: {C437A840-C61E-49DF-841F-00FFF6503B7B} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456 2010-11-17] (Hewlett-Packard Company -> )
Task: {C83C001C-1D62-4FA0-B795-372EF29A7102} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {D7769658-7362-42BF-A222-EE724F902042} - \AdobeFlashPlayerUpdate 2 -> Pas de fichier <==== ATTENTION
Task: {DC94B741-6930-4F0E-A6EA-E90BDCC0A2A4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {F2615C22-54F1-4093-8090-84157E2B155D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-01] (Google Inc -> Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\HPCeeScheduleForFlo.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CD030D23-4973-44ED-BD83-DAD744F9F8E4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E793A05A-91EF-492F-9342-4140EB34E7CA}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FDE14F8E-9C57-434B-AECB-3D397F66C288}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1410231484-3059246620-443982372-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2010-12-15] (AuthenTec, Inc. -> HP)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-05] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IEExtension.VDownloaderBHO -> {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -> C:\Windows\assembly\GAC_MSIL\IEExtension\1.0.0.876__c8e1c1f3d6d8e203\IEExtension.dll [2012-04-21] (Vitzo) [Fichier non signé]
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2010-12-15] (AuthenTec, Inc. -> HP)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-1410231484-3059246620-443982372-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
FireFox:
========
FF ProfilePath: C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default [2019-09-09]
FF Extension: (Avira Browser Safety) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\abs@avira.com [2016-12-17] [hxxps://download.avira.com/package/abs/firefox/update-webext.rdf]
FF Extension: (collectorbroceliandfr) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\collector@broceliand.fr [2014-09-05] [Legacy] [non signé]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2014-01-17] [Legacy] [non signé]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-17] [Legacy] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\AVAST Software\Avast\WebRep\FF [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\webbooster@iminent.com.xpi [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\0efc9c38-1ec7-49ed-8915-53a48b6b7600@e7f17679-2a42-4659-83c5-7ba961fdf75a.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\d8222698-19e5-4827-b79e-0a077ea8eb7a@7b662f6d-3899-41e4-8864-6393447568da.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\1qhp7enq.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com [non trouvé(e)]
FF HKLM-x32\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files (x86)\VDownloader\Addons\FireFox => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll [2019-08-13] (Adobe Inc. -> )
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-01-05] (Sun Microsystems, Inc.) [Fichier non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll [2019-08-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2010-08-18] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 -> C:\Windows\SysWOW64\npDeployJava1.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll [2012-07-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-05-08] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-07-19] (VideoLAN) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1410231484-3059246620-443982372-1001: vitzo.com/VDownloader -> C:\Program Files (x86)\VDownloader\Addons\npVDownloader.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default [2019-09-09]
CHR Extension: (Slides) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-01]
CHR Extension: (Docs) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-01]
CHR Extension: (Google Drive) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-09]
CHR Extension: (YouTube) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-20]
CHR Extension: (Adobe Acrobat) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-17]
CHR Extension: (Sheets) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-01]
CHR Extension: (Protection Web Avira) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-08-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-15]
CHR Extension: (Website Logon) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhfpefkeidlhbjljfdojcnngjbddgein [2016-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-08]
CHR Extension: (Gmail) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-09]
CHR Extension: (Chrome Media Router) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-26]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1410231484-3059246620-443982372-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nhfpefkeidlhbjljfdojcnngjbddgein] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2010-11-17]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [203776 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [354304 2010-12-09] (Advanced Micro Devices, Inc.) [Fichier non signé]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [194496 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc. -> Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc. -> Autodesk, Inc.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé]
R2 FPLService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [249672 2010-12-15] (AuthenTec, Inc. -> HP)
S2 FTRTSVC; C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [65536 2007-12-11] (France Telecom SA) [Fichier non signé]
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-08-16] (Hewlett-Packard Company) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation -> Microsoft Corporation)
R2 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
S3 RoxMediaDBVHS; C:\Program Files (x86)\Common Files\Roxio Shared\VHStoDVD\SharedCOM\RoxMediaDBVHS.exe [1112720 2012-07-31] (Corel Corporation -> Corel Corporation)
S2 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation -> Microsoft Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [275968 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 19de4dcb96150b3.exe; C:\Users\Flo\AppData\Local\2093e245fbe93dad5fff155f253813b0\19de4dcb96150b3.exe [X]
S2 AddonFileMotion.exe; C:\Users\Flo\AppData\Local\AddonFileMotion\AddonFileMotion.exe [X]
S2 ArchiveIconRuntime.exe; C:\Users\Flo\AppData\Local\ArchiveIconRuntime\ArchiveIconRuntime.exe [X]
S2 DashboardDOSRepository.exe; C:\Users\Flo\AppData\Local\cfaf0733f55495e7b9845d0f6ad46c9f\DashboardDOSRepository.exe [X]
S2 Direct3dMemoryWiget.exe; C:\Users\Flo\AppData\Local\Direct3dMemoryWiget\Direct3dMemoryWiget.exe [X]
S2 HP Health Check Service; "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe" [X]
S2 HPClientSvc; "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe" [X]
S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43320 2010-08-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdiox64; C:\Windows\System32\DRIVERS\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [8121344 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [291328 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 AtiPcie; C:\Windows\System32\DRIVERS\AtiPcie64.sys [16440 2010-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2010-08-12] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-07] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-09-08] (Malwarebytes Corporation -> Malwarebytes)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2013-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [80384 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-10-16] (Corel Corporation -> Corel Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [520192 2010-12-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA64A.sys [738328 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM64A.sys [1226136 2012-05-04] (Kworld Computer Co., Ltd. -> eMPIA Technology, Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [38528 2010-04-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S2 hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [X]
S3 PCAMp50a64; System32\Drivers\PCAMp50a64.sys [X]
S3 PCASp50a64; System32\Drivers\PCASp50a64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-09 20:04 - 2019-09-09 20:10 - 000040978 _____ C:\Users\Flo\Desktop\FRST.txt
2019-09-09 19:54 - 2019-09-09 20:03 - 001614848 _____ (Farbar) C:\Users\Flo\Desktop\FRST64.exe
2019-09-09 19:51 - 2019-09-09 19:53 - 000000000 ____D C:\Users\Flo\Downloads\FRST-OlderVersion
2019-09-08 14:02 - 2019-09-08 14:02 - 000001523 _____ C:\Users\Flo\Desktop\malware.txt
2019-09-08 13:31 - 2019-09-08 13:31 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-08 13:31 - 2019-09-08 13:31 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-08 13:31 - 2019-09-08 13:31 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-07 18:29 - 2019-09-07 18:33 - 000000816 _____ C:\Users\Flo\Desktop\ZHPDiag.lnk
2019-09-07 18:02 - 2019-09-08 13:30 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-07 18:01 - 2019-09-07 18:01 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-07 18:01 - 2019-09-07 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-07 18:01 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-07 16:27 - 2019-09-07 16:27 - 000005772 _____ C:\Users\Flo\Desktop\AdwCleaner[S00].txt
2019-09-07 16:26 - 2019-09-07 16:29 - 000000000 ____D C:\AdwCleaner
2019-09-07 16:25 - 2019-09-07 16:25 - 000016669 _____ C:\Users\Flo\Desktop\ZHPCleaner (R).txt
2019-09-07 16:16 - 2019-09-07 16:16 - 000021351 _____ C:\Users\Flo\Desktop\ZHPCleaner (S).txt
2019-09-07 15:49 - 2019-09-07 15:49 - 000000826 _____ C:\Users\Flo\Desktop\ZHPCleaner.lnk
2019-09-07 15:46 - 2019-09-07 15:47 - 007622344 _____ (Malwarebytes) C:\Users\Flo\Desktop\adwcleaner_7.4.1.exe
2019-09-07 15:40 - 2019-09-07 15:41 - 003126144 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPCleaner.exe
2019-09-07 15:02 - 2019-09-07 15:10 - 000056364 _____ C:\Users\Flo\Downloads\Addition.txt
2019-09-07 14:57 - 2019-09-07 15:10 - 000045104 _____ C:\Users\Flo\Downloads\FRST.txt
2019-09-07 14:55 - 2019-09-09 19:51 - 001614848 _____ (Farbar) C:\Users\Flo\Downloads\FRST64.exe
2019-09-07 14:08 - 2019-09-08 21:04 - 000382656 _____ C:\Users\Flo\Desktop\ZHPDiag.txt
2019-09-07 13:50 - 2019-09-07 13:52 - 003040640 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPDiag3 (1).exe
2019-09-07 13:44 - 2019-09-07 13:45 - 003040640 _____ (Nicolas Coolman) C:\Users\Flo\Downloads\ZHPDiag3.exe
2019-09-07 12:46 - 2019-09-09 20:04 - 000000000 ____D C:\FRST
2019-08-30 14:10 - 2019-08-30 14:10 - 000089025 _____ C:\Users\Flo\Downloads\INVFR-20190806-59203.pdf
2019-08-30 13:36 - 2019-08-30 13:36 - 000373000 _____ C:\Users\Flo\Downloads\msds_UAN_FR Ameropa.pdf
2019-08-18 09:25 - 2019-08-18 09:28 - 005533928 _____ (IT-Finance ) C:\Users\Flo\Downloads\AdvancedCharts-Setup-win64.exe
2019-08-17 14:05 - 2019-08-17 14:05 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Google
2019-08-17 13:32 - 2019-08-17 13:32 - 000004048 _____ C:\Users\Flo\Desktop\leger.mcd
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-09 19:47 - 2011-11-23 12:47 - 000000000 ____D C:\Users\Flo\AppData\LocalLow\AuthenTec
2019-09-09 13:36 - 2019-08-01 13:14 - 000003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForFlo
2019-09-09 13:36 - 2019-08-01 13:14 - 000000324 _____ C:\Windows\Tasks\HPCeeScheduleForFlo.job
2019-09-09 08:16 - 2009-07-14 06:45 - 000026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-09 08:16 - 2009-07-14 06:45 - 000026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-08 21:04 - 2019-06-11 08:23 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ZHP
2019-09-08 14:12 - 2018-11-22 09:21 - 000000000 ____D C:\ProgramData\firebird
2019-09-08 13:33 - 2011-01-06 04:02 - 000813674 _____ C:\Windows\system32\perfh00C.dat
2019-09-08 13:33 - 2011-01-06 04:02 - 000174998 _____ C:\Windows\system32\perfc00C.dat
2019-09-08 13:33 - 2009-07-14 07:13 - 001854542 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-08 13:33 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-09-08 13:30 - 2011-12-03 14:36 - 000000000 ____D C:\Users\Flo\AppData\Local\CrashDumps
2019-09-08 13:25 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-08 13:01 - 2011-01-05 19:53 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-09-08 13:01 - 2010-12-03 03:30 - 000000000 ____D C:\Program Files\Hewlett-Packard
2019-09-08 13:00 - 2011-11-23 12:49 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Hewlett-Packard
2019-09-08 13:00 - 2011-01-05 20:08 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-09-07 19:49 - 2011-01-05 19:54 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-07 18:02 - 2018-11-10 19:25 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-07 16:30 - 2011-11-23 12:49 - 000000000 ____D C:\Users\Flo\AppData\Local\Hewlett-Packard
2019-09-07 16:29 - 2011-01-05 20:08 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-09-07 15:49 - 2019-06-11 08:23 - 000000000 ____D C:\Users\Flo\AppData\Local\ZHP
2019-09-07 12:40 - 2019-07-26 13:09 - 000270916 _____ C:\Users\Flo\Desktop\germany1 20pts.wsp
2019-09-07 12:40 - 2019-07-26 13:09 - 000144217 _____ C:\Users\Flo\Desktop\germany 20pts.wsp
2019-09-07 12:40 - 2019-06-05 13:21 - 000210213 _____ C:\Users\Flo\Desktop\Untitled-7.wsp
2019-09-02 18:56 - 2019-06-07 12:18 - 000000000 ____D C:\Users\Flo\AppData\Local\ElevatedDiagnostics
2019-08-23 17:52 - 2017-12-22 17:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-18 09:42 - 2019-07-26 13:09 - 000214083 _____ C:\Users\Flo\Desktop\Untitled-4.wsp
2019-08-17 21:05 - 2019-07-26 13:09 - 000125407 _____ C:\Users\Flo\Desktop\Untitled-5.wsp
2019-08-17 13:44 - 2018-08-26 12:41 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-08-13 19:10 - 2018-03-14 22:13 - 000004626 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-08-13 19:10 - 2014-02-04 20:46 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-08-13 19:10 - 2013-01-21 14:15 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-08-13 19:10 - 2011-11-24 09:31 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-13 19:10 - 2011-11-23 19:47 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers ================
2012-01-23 21:16 - 2012-01-23 21:16 - 000000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2011-12-10 23:24 - 2011-12-10 23:24 - 000000008 _____ () C:\Users\Flo\AppData\Roaming\c4yu98lghe44udpa.dat
2012-02-06 11:51 - 2012-09-04 13:19 - 000007168 _____ () C:\Users\Flo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-12-03 14:45 - 2011-12-03 14:45 - 000000000 _____ () C:\Users\Flo\AppData\Local\gdsmebpe.log
2011-12-03 14:36 - 2012-01-06 10:10 - 000000024 _____ () C:\Users\Flo\AppData\Local\kasnpejk.log
2011-12-03 14:36 - 2011-12-21 17:42 - 000339648 _____ () C:\Users\Flo\AppData\Local\lqwblbqh.log
2011-12-03 14:45 - 2012-01-06 10:03 - 000217179 _____ () C:\Users\Flo\AppData\Local\mqmqjiqx.log
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-09-01 20:12
==================== Fin de FRST.txt ============================