Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02
Exécuté par Gian-Pietro ANIELLO (administrateur) sur DT39 (Dell Inc. Vostro 3558ti) (14-10-2019 14:29:39)
Exécuté depuis C:\Users\Gian-Pietro ANIELLO\Downloads
Profils chargés: Gian-Pietro ANIELLO (Profils disponibles: Gian-Pietro ANIELLO)
Platform: Windows 10 Home Version 1803 17134.950 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CyberLink Corp. -> ) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.881_none_eada7c8e1d8131a8\TiWorker.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation -> National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\ZHP\ZHPDiag3.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera_crashreporter.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\pcdrwi.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
(Vtech Electronics North America, L.L.C. -> VTech Electronics Limited) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\6021\VTLeapStartHelper.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8712960 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [714160 2015-09-21] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [328736 2018-06-12] (Vtech Electronics North America, L.L.C. -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Spotify] => C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Spotify\Spotify.exe [21025392 2017-11-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Spotify Web Helper] => C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19476424 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83525184 2019-10-03] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\MountPoints2: {1fd51eee-e34b-11e9-8d92-a0d37a42a75b} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\MountPoints2: {699c8b61-bc1e-11e7-8c7a-a0d37a42a75b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GarminExpress] => "C:\Program Files (x86)\Garmin\Express\express.exe" /minimized
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
IFEO\EOSNOTIFY.EXE: [Debugger]
IFEO\MusNotification.exe: [Debugger]
IFEO\MusNotificationUX.exe: [Debugger]
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0963B3A0-3A23-47D7-BA35-B2411ADE69FF} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {1097C610-162E-4AB8-B0A6-621C0FB9D6D0} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {1D3B3A4D-0DE6-44D4-AD4A-8381635F46B8} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [1278456 2017-05-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {2DE2526A-F49B-401D-A759-01824B84BBD7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {389E5E12-4E49-4D25-BB4A-F994C165E668} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {587C142C-CC81-42A3-9DAB-64D99C54AA73} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14554696 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6060642F-FC7A-41A4-8CF6-FD531503AB30} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [121904 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {64F8B1B6-36EE-42D7-92EE-FD75D060EA98} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6668F46F-713A-4531-96EC-4FBF5295CB89} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {7469BCA1-D2BD-4F07-B521-E28A515CEE16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {777197FC-E8FE-4A43-BE9D-16BB4D21B2C9} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {80E56AA2-AE78-4125-B70E-C7D84E9CC518} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8AE92F75-EFBF-45DD-8095-1C845A5B7A70} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {8DB77EF7-DB0B-49B9-9C23-263723A7D807} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {90300F8F-336E-43D8-B9F0-06DCFA4484FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-03] (Google Inc -> Google Inc.)
Task: {920166A7-8AD7-4D89-AD74-E43DEABA426D} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [726488 2019-09-10] (Dell Inc. -> Dell Inc.)
Task: {A1158BC6-E850-41D7-A685-3E311165A0EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2329888-CD12-4E15-BF2D-EF6DE8CBCB47} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-03] (Google Inc -> Google Inc.)
Task: {AEBC7565-DBEA-4420-BEE5-4E6C898DC280} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {AED84C03-F709-4890-A738-1057D1432185} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [110008 2015-08-19] (CyberLink Corp. -> CyberLink)
Task: {B23BB40B-2BD4-4B5D-822A-E16F46C9A95E} - System32\Tasks\SafeZone scheduled Autoupdate 1477051977 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {C8E54B6B-B2F6-40B3-9937-0837448BE97E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE011F02-392D-4C55-9862-B7B21F10B41C} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [340440 2015-01-29] (CyberLink Corp. -> CyberLink Corp.)
Task: {CEB0EF84-E0D5-4325-8194-1AD29DDE3502} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [121904 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3C10AA8-290C-4B93-AA99-ADB42FD5B300} - System32\Tasks\Opera scheduled Autoupdate 1479848355 => C:\Program Files (x86)\Opera\launcher.exe [1520152 2019-10-04] (Opera Software AS -> Opera Software)
Task: {D53C14A9-2CD8-4CCA-A1AE-6BA094E9002B} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {E42DAE6C-B7FD-463A-AC89-57A241C61296} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E620A96E-B62F-48F6-B4C0-712F2AFF7B75} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [271864 2017-05-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {ECD2BD9A-2534-477E-93A4-894AEFC8C203} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F92A1493-9497-427C-9AE2-0ED8C2334A01} - System32\Tasks\AdobeAAMUpdater-1.0-DT39-Gian-Pietro ANIELLO => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {FB5503E2-643A-4D41-A1D8-61FCFCAB986E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4ff7e7a2-38c8-43e9-afda-808e11d6c4ec}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5130f6be-1c02-4407-99af-f957b7b64aa8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} hxxps://akamaicdn.webex.com/client/WBXclient-32.15.33-8/webex/ieatgpc1.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-03-06] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: SkypeForBusinessPlugin-15.8 -> C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: SkypeForBusinessPlugin64-15.8 -> C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi-x64.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\mozilla\plugins\npatgpc.dll [2019-01-29]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.fr/?gfe_rd=cr&ei=0bkrVPqtA6iA8Qe8j4CgBA&gws_rd=ssl"
CHR Profile: C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default [2019-10-14]
CHR Extension: (Slides) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-22]
CHR Extension: (Docs) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-22]
CHR Extension: (Google Drive) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-22]
CHR Extension: (YouTube) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-22]
CHR Extension: (Sheets) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Cisco Webex Extension) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2019-07-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642376 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209448 2019-05-21] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3373600 2019-05-21] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218144 2019-05-21] (Dell Inc -> Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc -> Dell Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe [1050952 2019-09-13] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [35976 2019-04-03] (Dell Inc -> )
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237016 2018-03-27] (Dell Inc -> Dell Inc.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [139504 2019-09-23] (SurfRight B.V. -> SurfRight B.V.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [190208 2016-11-11] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373704 2018-02-12] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel(R) Wireless Display -> Intel)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [695136 2011-05-06] (National Instruments Corporation -> National Instruments, Inc.)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [50328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [60568 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-06-12] (Intel Corporation-Wireless Connectivity Solutions -> )
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [53960 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [76488 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [370328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [53952 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell Inc -> Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] (CyberLink Corp. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [48600 2019-09-10] (Dell Inc. -> Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [265784 2017-12-19] (Synaptics Incorporated -> Synaptics Incorporated)
R2 VTLeapStartHelper; C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\6021\VTLeapStartHelper.exe [85024 2018-12-25] (Vtech Electronics North America, L.L.C. -> VTech Electronics Limited)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [566192 2015-08-19] (Waves Inc -> Waves Audio Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-06-12] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
S2 0210601536247000mcinstcleanup; C:\Users\GIAN-P~2\AppData\Local\Temp\021060~1.EXE -cleanup -nolog [X] <==== ATTENTION
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [36728 2019-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSS_SPI; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [113416 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSS_UART2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [155400 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [230144 2016-11-11] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3776792 2015-06-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek Semiconductor Corp -> Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [66104 2017-12-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-10-14 14:29 - 2019-10-14 14:36 - 000037098 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\FRST.txt
2019-10-14 14:27 - 2019-10-14 14:27 - 001616384 _____ (Farbar) C:\Users\Gian-Pietro ANIELLO\Downloads\FRST64.exe
2019-10-14 12:42 - 2019-10-14 12:42 - 000206347 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\ZHPDiag.txt
2019-10-14 12:12 - 2019-10-14 12:17 - 000000881 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\ZHPDiag.lnk
2019-10-14 12:10 - 2019-10-14 12:10 - 003257728 _____ (Nicolas Coolman) C:\Users\Gian-Pietro ANIELLO\Downloads\ZHPDiag3.exe
2019-10-14 09:00 - 2019-10-14 09:00 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002489 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002489 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2019-10-14 08:59 - 2019-10-14 09:00 - 000002477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-10-11 08:23 - 2019-10-11 08:23 - 000074133 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Etiquettes-FV40003328.pdf
2019-10-10 10:41 - 2019-10-10 10:41 - 000001385 _____ C:\Users\Public\Desktop\Skype.lnk
2019-10-10 10:41 - 2019-10-10 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-10-10 10:36 - 2019-10-10 10:38 - 068883560 _____ (Skype Technologies S.A.) C:\Users\Gian-Pietro ANIELLO\Downloads\Skype-8.53.0.85.exe
2019-10-09 09:32 - 2019-10-09 07:31 - 000073241 ____N C:\Users\Gian-Pietro ANIELLO\Downloads\FACT 19-0116 gian P Aniello- ride 22 +.pdf
2019-10-09 09:32 - 2019-10-09 07:31 - 000064078 ____N C:\Users\Gian-Pietro ANIELLO\Downloads\IBAN cymbales.pdf
2019-10-09 09:31 - 2019-10-09 09:31 - 000137611 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\facture_22_.zip
2019-10-04 08:48 - 2019-10-04 08:48 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-04 08:48 - 2019-10-04 08:48 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-04 08:48 - 2019-10-04 08:48 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-09-30 13:40 - 2019-09-30 13:40 - 000115973 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Avis_d_impot_2019_sur_les_revenus_2018.pdf
2019-09-27 08:50 - 2019-09-27 08:45 - 000251077 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\TEST MASTER PROPOSAL 190927vnk65.xlsm
2019-09-26 15:38 - 2019-09-26 11:32 - 000251895 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\Explications doc PROPOSAL.pptx
2019-09-23 09:28 - 2019-09-23 09:28 - 000002016 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2019-09-23 09:28 - 2019-09-23 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2019-09-23 09:28 - 2019-09-23 09:28 - 000000000 ____D C:\Program Files\HitmanPro
2019-09-23 09:15 - 2019-09-23 10:10 - 000000000 ____D C:\ProgramData\HitmanPro
2019-09-23 09:13 - 2019-09-23 09:13 - 011576808 _____ (SurfRight B.V.) C:\Users\Gian-Pietro ANIELLO\Downloads\HitmanPro_x64 (1).exe
2019-09-23 09:11 - 2019-09-23 09:16 - 011539456 _____ (SurfRight B.V.) C:\Users\Gian-Pietro ANIELLO\Downloads\HitmanPro_x64.exe
2019-09-16 13:35 - 2019-09-16 13:35 - 000082476 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Papa_Was_A_Rolling_Stone.pdf
2019-09-16 08:41 - 2019-09-16 08:41 - 000000000 _____ C:\WINDOWS\invcol.tmp
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-10-14 14:34 - 2018-09-06 15:37 - 000000000 ____D C:\FRST
2019-10-14 14:34 - 2017-05-03 08:52 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\Fichiers Outlook
2019-10-14 13:21 - 2018-05-28 20:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-14 12:42 - 2017-12-26 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\ZHP
2019-10-14 12:24 - 2017-12-26 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Local\ZHP
2019-10-14 12:24 - 2017-07-29 11:57 - 000000212 _____ C:\Users\Gian-Pietro
2019-10-14 12:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-14 09:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Registration
2019-10-14 08:54 - 2017-08-06 13:32 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-14 08:54 - 2016-10-21 12:23 - 000000000 __SHD C:\Users\Gian-Pietro ANIELLO\IntelGraphicsProfiles
2019-10-14 08:53 - 2016-06-17 14:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-10-14 08:51 - 2018-05-28 20:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-11 15:27 - 2017-12-28 11:28 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Local\Packages
2019-10-11 08:23 - 2018-01-03 01:02 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-11 08:23 - 2018-01-03 01:02 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-10 10:41 - 2016-10-24 08:54 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Skype
2019-10-08 15:15 - 2018-05-28 20:10 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO
2019-10-08 14:31 - 2016-06-17 22:47 - 000000000 ____D C:\ProgramData\Dell
2019-10-08 08:37 - 2018-05-28 20:38 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-08 08:37 - 2018-05-28 20:38 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-08 08:37 - 2016-10-21 14:11 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-07 10:39 - 2018-09-02 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\vlc
2019-10-07 10:00 - 2018-05-28 20:38 - 000003974 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1479848355
2019-10-07 10:00 - 2017-07-01 10:58 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2019-10-07 10:00 - 2016-11-22 22:51 - 000000000 ____D C:\Program Files (x86)\Opera
2019-10-07 09:10 - 2018-05-28 20:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-04 16:41 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-04 16:34 - 2017-09-08 16:10 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\DUFOURNIER
2019-10-04 12:28 - 2016-12-05 18:13 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\Perso
2019-10-04 08:56 - 2019-08-06 08:36 - 000000000 ___RD C:\Users\Gian-Pietro ANIELLO\OneDrive
2019-10-04 08:56 - 2018-05-28 20:38 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1522434549-2725168364-1566747796-1001
2019-10-04 08:56 - 2018-05-28 20:10 - 000002449 _____ C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-24 11:56 - 2016-11-14 17:23 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Desktop\DUFOURNIER
2019-09-23 09:48 - 2019-07-17 09:02 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-09-16 08:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-16 08:47 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-16 08:40 - 2016-06-17 13:56 - 000000000 ____D C:\ProgramData\PCDr
2019-09-16 08:34 - 2018-05-28 20:04 - 000439712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
==================== Fichiers à la racine de certains dossiers ================
2018-10-01 08:46 - 2018-10-01 08:46 - 000000000 _____ () C:\Users\Gian-Pietro ANIELLO\AppData\Local\oobelibMkey.log
2016-11-24 23:42 - 2016-11-24 23:42 - 000003469 _____ () C:\Users\Gian-Pietro ANIELLO\AppData\Local\recently-used.xbel
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================
Exécuté par Gian-Pietro ANIELLO (administrateur) sur DT39 (Dell Inc. Vostro 3558ti) (14-10-2019 14:29:39)
Exécuté depuis C:\Users\Gian-Pietro ANIELLO\Downloads
Profils chargés: Gian-Pietro ANIELLO (Profils disponibles: Gian-Pietro ANIELLO)
Platform: Windows 10 Home Version 1803 17134.950 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CyberLink Corp. -> ) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.881_none_eada7c8e1d8131a8\TiWorker.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation -> National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\ZHP\ZHPDiag3.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\63.0.3368.107\opera_crashreporter.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\pcdrwi.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Vtech Electronics North America, L.L.C. -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe
(Vtech Electronics North America, L.L.C. -> VTech Electronics Limited) C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\6021\VTLeapStartHelper.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8712960 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [714160 2015-09-21] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [328736 2018-06-12] (Vtech Electronics North America, L.L.C. -> )
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Spotify] => C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Spotify\Spotify.exe [21025392 2017-11-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Spotify Web Helper] => C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19476424 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83525184 2019-10-03] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\MountPoints2: {1fd51eee-e34b-11e9-8d92-a0d37a42a75b} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\...\MountPoints2: {699c8b61-bc1e-11e7-8c7a-a0d37a42a75b} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GarminExpress] => "C:\Program Files (x86)\Garmin\Express\express.exe" /minimized
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
IFEO\EOSNOTIFY.EXE: [Debugger]
IFEO\MusNotification.exe: [Debugger]
IFEO\MusNotificationUX.exe: [Debugger]
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0963B3A0-3A23-47D7-BA35-B2411ADE69FF} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {1097C610-162E-4AB8-B0A6-621C0FB9D6D0} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {1D3B3A4D-0DE6-44D4-AD4A-8381635F46B8} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [1278456 2017-05-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {2DE2526A-F49B-401D-A759-01824B84BBD7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {389E5E12-4E49-4D25-BB4A-F994C165E668} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {587C142C-CC81-42A3-9DAB-64D99C54AA73} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14554696 2018-11-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6060642F-FC7A-41A4-8CF6-FD531503AB30} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [121904 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {64F8B1B6-36EE-42D7-92EE-FD75D060EA98} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {6668F46F-713A-4531-96EC-4FBF5295CB89} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {7469BCA1-D2BD-4F07-B521-E28A515CEE16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {777197FC-E8FE-4A43-BE9D-16BB4D21B2C9} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {80E56AA2-AE78-4125-B70E-C7D84E9CC518} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8AE92F75-EFBF-45DD-8095-1C845A5B7A70} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {8DB77EF7-DB0B-49B9-9C23-263723A7D807} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {90300F8F-336E-43D8-B9F0-06DCFA4484FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-03] (Google Inc -> Google Inc.)
Task: {920166A7-8AD7-4D89-AD74-E43DEABA426D} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [726488 2019-09-10] (Dell Inc. -> Dell Inc.)
Task: {A1158BC6-E850-41D7-A685-3E311165A0EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2329888-CD12-4E15-BF2D-EF6DE8CBCB47} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-03] (Google Inc -> Google Inc.)
Task: {AEBC7565-DBEA-4420-BEE5-4E6C898DC280} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1430176 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {AED84C03-F709-4890-A738-1057D1432185} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [110008 2015-08-19] (CyberLink Corp. -> CyberLink)
Task: {B23BB40B-2BD4-4B5D-822A-E16F46C9A95E} - System32\Tasks\SafeZone scheduled Autoupdate 1477051977 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {C8E54B6B-B2F6-40B3-9937-0837448BE97E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE011F02-392D-4C55-9862-B7B21F10B41C} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [340440 2015-01-29] (CyberLink Corp. -> CyberLink Corp.)
Task: {CEB0EF84-E0D5-4325-8194-1AD29DDE3502} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [121904 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3C10AA8-290C-4B93-AA99-ADB42FD5B300} - System32\Tasks\Opera scheduled Autoupdate 1479848355 => C:\Program Files (x86)\Opera\launcher.exe [1520152 2019-10-04] (Opera Software AS -> Opera Software)
Task: {D53C14A9-2CD8-4CCA-A1AE-6BA094E9002B} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {E42DAE6C-B7FD-463A-AC89-57A241C61296} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E620A96E-B62F-48F6-B4C0-712F2AFF7B75} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [271864 2017-05-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {ECD2BD9A-2534-477E-93A4-894AEFC8C203} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F92A1493-9497-427C-9AE2-0ED8C2334A01} - System32\Tasks\AdobeAAMUpdater-1.0-DT39-Gian-Pietro ANIELLO => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {FB5503E2-643A-4D41-A1D8-61FCFCAB986E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4ff7e7a2-38c8-43e9-afda-808e11d6c4ec}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5130f6be-1c02-4407-99af-f957b7b64aa8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-1522434549-2725168364-1566747796-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-02] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} hxxps://akamaicdn.webex.com/client/WBXclient-32.15.33-8/webex/ieatgpc1.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-03-06] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: SkypeForBusinessPlugin-15.8 -> C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1522434549-2725168364-1566747796-1001: SkypeForBusinessPlugin64-15.8 -> C:\Users\Gian-Pietro ANIELLO\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi-x64.dll [2015-06-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\mozilla\plugins\npatgpc.dll [2019-01-29]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.fr/?gfe_rd=cr&ei=0bkrVPqtA6iA8Qe8j4CgBA&gws_rd=ssl"
CHR Profile: C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default [2019-10-14]
CHR Extension: (Slides) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-22]
CHR Extension: (Docs) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-22]
CHR Extension: (Google Drive) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-22]
CHR Extension: (YouTube) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-22]
CHR Extension: (Sheets) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22]
CHR Extension: (Cisco Webex Extension) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2019-07-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\Gian-Pietro ANIELLO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-23]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-01-05] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642376 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209448 2019-05-21] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3373600 2019-05-21] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218144 2019-05-21] (Dell Inc -> Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc -> Dell Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7033.2285\DSAPI.exe [1050952 2019-09-13] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [35976 2019-04-03] (Dell Inc -> )
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237016 2018-03-27] (Dell Inc -> Dell Inc.)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [139504 2019-09-23] (SurfRight B.V. -> SurfRight B.V.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [190208 2016-11-11] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373704 2018-02-12] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel(R) Wireless Display -> Intel)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [695136 2011-05-06] (National Instruments Corporation -> National Instruments, Inc.)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [50328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [60568 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-06-12] (Intel Corporation-Wireless Connectivity Solutions -> )
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [53960 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [76488 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [370328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [53952 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell Inc -> Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-14] (CyberLink Corp. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-10-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [48600 2019-09-10] (Dell Inc. -> Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [265784 2017-12-19] (Synaptics Incorporated -> Synaptics Incorporated)
R2 VTLeapStartHelper; C:\Program Files (x86)\VTech\DownloadManager\Applications\AppAccessory\6021\VTLeapStartHelper.exe [85024 2018-12-25] (Vtech Electronics North America, L.L.C. -> VTech Electronics Limited)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [566192 2015-08-19] (Waves Inc -> Waves Audio Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-06-12] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
S2 0210601536247000mcinstcleanup; C:\Users\GIAN-P~2\AppData\Local\Temp\021060~1.EXE -cleanup -nolog [X] <==== ATTENTION
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [36728 2019-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSS_SPI; C:\WINDOWS\System32\drivers\iaLPSS_SPI.sys [113416 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSS_UART2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [155400 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [230144 2016-11-11] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3776792 2015-06-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek Semiconductor Corp -> Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [66104 2017-12-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-10-14 14:29 - 2019-10-14 14:36 - 000037098 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\FRST.txt
2019-10-14 14:27 - 2019-10-14 14:27 - 001616384 _____ (Farbar) C:\Users\Gian-Pietro ANIELLO\Downloads\FRST64.exe
2019-10-14 12:42 - 2019-10-14 12:42 - 000206347 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\ZHPDiag.txt
2019-10-14 12:12 - 2019-10-14 12:17 - 000000881 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\ZHPDiag.lnk
2019-10-14 12:10 - 2019-10-14 12:10 - 003257728 _____ (Nicolas Coolman) C:\Users\Gian-Pietro ANIELLO\Downloads\ZHPDiag3.exe
2019-10-14 09:00 - 2019-10-14 09:00 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002489 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002489 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-10-14 09:00 - 2019-10-14 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2019-10-14 08:59 - 2019-10-14 09:00 - 000002477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-10-11 08:23 - 2019-10-11 08:23 - 000074133 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Etiquettes-FV40003328.pdf
2019-10-10 10:41 - 2019-10-10 10:41 - 000001385 _____ C:\Users\Public\Desktop\Skype.lnk
2019-10-10 10:41 - 2019-10-10 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-10-10 10:36 - 2019-10-10 10:38 - 068883560 _____ (Skype Technologies S.A.) C:\Users\Gian-Pietro ANIELLO\Downloads\Skype-8.53.0.85.exe
2019-10-09 09:32 - 2019-10-09 07:31 - 000073241 ____N C:\Users\Gian-Pietro ANIELLO\Downloads\FACT 19-0116 gian P Aniello- ride 22 +.pdf
2019-10-09 09:32 - 2019-10-09 07:31 - 000064078 ____N C:\Users\Gian-Pietro ANIELLO\Downloads\IBAN cymbales.pdf
2019-10-09 09:31 - 2019-10-09 09:31 - 000137611 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\facture_22_.zip
2019-10-04 08:48 - 2019-10-04 08:48 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-04 08:48 - 2019-10-04 08:48 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-04 08:48 - 2019-10-04 08:48 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-09-30 13:40 - 2019-09-30 13:40 - 000115973 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Avis_d_impot_2019_sur_les_revenus_2018.pdf
2019-09-27 08:50 - 2019-09-27 08:45 - 000251077 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\TEST MASTER PROPOSAL 190927vnk65.xlsm
2019-09-26 15:38 - 2019-09-26 11:32 - 000251895 _____ C:\Users\Gian-Pietro ANIELLO\Desktop\Explications doc PROPOSAL.pptx
2019-09-23 09:28 - 2019-09-23 09:28 - 000002016 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2019-09-23 09:28 - 2019-09-23 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2019-09-23 09:28 - 2019-09-23 09:28 - 000000000 ____D C:\Program Files\HitmanPro
2019-09-23 09:15 - 2019-09-23 10:10 - 000000000 ____D C:\ProgramData\HitmanPro
2019-09-23 09:13 - 2019-09-23 09:13 - 011576808 _____ (SurfRight B.V.) C:\Users\Gian-Pietro ANIELLO\Downloads\HitmanPro_x64 (1).exe
2019-09-23 09:11 - 2019-09-23 09:16 - 011539456 _____ (SurfRight B.V.) C:\Users\Gian-Pietro ANIELLO\Downloads\HitmanPro_x64.exe
2019-09-16 13:35 - 2019-09-16 13:35 - 000082476 _____ C:\Users\Gian-Pietro ANIELLO\Downloads\Papa_Was_A_Rolling_Stone.pdf
2019-09-16 08:41 - 2019-09-16 08:41 - 000000000 _____ C:\WINDOWS\invcol.tmp
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-10-14 14:34 - 2018-09-06 15:37 - 000000000 ____D C:\FRST
2019-10-14 14:34 - 2017-05-03 08:52 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\Fichiers Outlook
2019-10-14 13:21 - 2018-05-28 20:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-14 12:42 - 2017-12-26 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\ZHP
2019-10-14 12:24 - 2017-12-26 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Local\ZHP
2019-10-14 12:24 - 2017-07-29 11:57 - 000000212 _____ C:\Users\Gian-Pietro
2019-10-14 12:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-14 09:00 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Registration
2019-10-14 08:54 - 2017-08-06 13:32 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-14 08:54 - 2016-10-21 12:23 - 000000000 __SHD C:\Users\Gian-Pietro ANIELLO\IntelGraphicsProfiles
2019-10-14 08:53 - 2016-06-17 14:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-10-14 08:51 - 2018-05-28 20:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-11 15:27 - 2017-12-28 11:28 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Local\Packages
2019-10-11 08:23 - 2018-01-03 01:02 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-11 08:23 - 2018-01-03 01:02 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-10 10:41 - 2016-10-24 08:54 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Skype
2019-10-08 15:15 - 2018-05-28 20:10 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO
2019-10-08 14:31 - 2016-06-17 22:47 - 000000000 ____D C:\ProgramData\Dell
2019-10-08 08:37 - 2018-05-28 20:38 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-08 08:37 - 2018-05-28 20:38 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-08 08:37 - 2016-10-21 14:11 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-07 10:39 - 2018-09-02 21:31 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\vlc
2019-10-07 10:00 - 2018-05-28 20:38 - 000003974 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1479848355
2019-10-07 10:00 - 2017-07-01 10:58 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2019-10-07 10:00 - 2016-11-22 22:51 - 000000000 ____D C:\Program Files (x86)\Opera
2019-10-07 09:10 - 2018-05-28 20:38 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-04 16:41 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-04 16:34 - 2017-09-08 16:10 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\DUFOURNIER
2019-10-04 12:28 - 2016-12-05 18:13 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Documents\Perso
2019-10-04 08:56 - 2019-08-06 08:36 - 000000000 ___RD C:\Users\Gian-Pietro ANIELLO\OneDrive
2019-10-04 08:56 - 2018-05-28 20:38 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1522434549-2725168364-1566747796-1001
2019-10-04 08:56 - 2018-05-28 20:10 - 000002449 _____ C:\Users\Gian-Pietro ANIELLO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-24 11:56 - 2016-11-14 17:23 - 000000000 ____D C:\Users\Gian-Pietro ANIELLO\Desktop\DUFOURNIER
2019-09-23 09:48 - 2019-07-17 09:02 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-09-16 08:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-16 08:47 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-16 08:40 - 2016-06-17 13:56 - 000000000 ____D C:\ProgramData\PCDr
2019-09-16 08:34 - 2018-05-28 20:04 - 000439712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
==================== Fichiers à la racine de certains dossiers ================
2018-10-01 08:46 - 2018-10-01 08:46 - 000000000 _____ () C:\Users\Gian-Pietro ANIELLO\AppData\Local\oobelibMkey.log
2016-11-24 23:42 - 2016-11-24 23:42 - 000003469 _____ () C:\Users\Gian-Pietro ANIELLO\AppData\Local\recently-used.xbel
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================