Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-08-2020
Exécuté par ARNAUD (administrateur) sur PORT-ARNAUD (Hewlett-Packard HP ProBook 4530s) (16-08-2020 12:12:49)
Exécuté depuis C:\Users\ARNAUD\Documents\vidéos
Profils chargés: ARNAUD
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
() [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
(Advanced Micro Devices Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(ATI Technologies Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(ESI Audiotechnik GmbH -> ESI Audiotechnik) C:\Windows\System32\U46Pan.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Hewlett-Packard) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Hewlett-Packard) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(IDT, Inc.) [Fichier non signé] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [Fichier non signé] C:\Program Files\IDT\WDM\sttray64.exe
(INMUSIC BRANDS, INC -> Denon DJ) C:\Program Files (x86)\Denon DJ\DS1\AudioDevMon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Identity Protection Technology Software -> Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.321.1449.0.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\csrss.exe <2>
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\lsass.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\lsm.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\services.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\smss.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\svchost.exe <15>
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\wininit.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\winlogon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MfeEpePcMonitor] => C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [200704 2013-02-01] () [Fichier non signé]
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2996792 2011-07-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-05-03] (IDT, Inc.) [Fichier non signé]
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [JamInit] => C:\windows\system32\U46Pan.exe [800024 2014-01-07] (ESI Audiotechnik GmbH -> ESI Audiotechnik)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12274688 2011-02-07] (Hewlett-Packard) [Fichier non signé]
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-28] (Advanced Micro Devices, Inc.) [Fichier non signé]
HKLM-x32\...\Run: [DTRun] => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [517456 2010-11-24] (ArcSoft, Inc. -> ArcSoft Inc.)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2012-07-22] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [333728 2012-06-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe [259624 2007-04-16] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [184736 2012-09-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2741616 2011-03-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [GoogleChromeAutoLaunch_70085971AE77113235C27F13157FAE0C] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [7577920 2020-07-22] (ProtonVPN AG -> )
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\windows\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2011-03-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2011-11-10] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> C:\windows\system32\DPLic.dll [2011-08-24] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter EpePcNp64 scecli
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {014536FC-A9CD-4E1E-B537-BBEE6ABB4A76} - System32\Tasks\ESTsoft RunAsStdUser 22681016Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {0446D1AE-2138-49DF-9B9D-90E80CA196B2} - System32\Tasks\Amazon Music Helper => C:\Users\ARNAUD\AppData\Local\Amazon Music\Amazon Music Helper.exe
Task: {05123D94-FE10-4F36-9B94-CBD208DEB6A2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {0E14AE48-4C57-4AB7-B166-2091C8B193DE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {1230A687-C870-46D7-A41F-FDA5E749855D} - System32\Tasks\ESTsoft RunAsStdUser 44730650Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {155BDB92-DE72-443C-B0DE-B36BDF41E1A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {198D0F36-3586-4D8B-AAFA-20F6BBA82E6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-15] (Google Inc -> Google Inc.)
Task: {21536770-7FAE-4E49-8411-08A22ED7E3B4} - System32\Tasks\ESTsoft RunAsStdUser 47678476Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {34D2698A-6281-4074-9AE5-AD5C60831CBE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {3E7D5139-6F10-4DF6-A96D-EF8CE0A4A871} - System32\Tasks\{572BEDE9-F33C-4586-A132-A61A14E1DB39} => C:\windows\system32\pcalua.exe -a "C:\Users\ARNAUD\Music\ZE DOWNLOADS\slsk157NS13e.exe" -d "C:\Users\ARNAUD\Music\ZE DOWNLOADS"
Task: {48130316-DDCD-4AEB-AD14-FF0B1F461E44} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {4E473A84-3101-4588-9FDD-8B3B1B724B87} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [3129184 2012-09-24] (Piriform Ltd -> Piriform Ltd)
Task: {55C1F002-92F4-4C67-8883-58B2195EDEC4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-14] (Adobe Inc. -> Adobe)
Task: {6B962732-DB5B-4304-8FD8-B59D952B3B53} - System32\Tasks\ESTsoft RunAsStdUser 88666428Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {6F6CAE51-E2CB-4369-B1F9-7DF1C8786728} - System32\Tasks\ESTsoft RunAsStdUser 3578943Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {8462ADC6-A612-4B5B-BF7E-46A794109E20} - System32\Tasks\ESTsoft RunAsStdUser 117879347Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {8E64DAA5-2C0F-496B-9855-183D735A0E36} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [123600 2020-07-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {8F325944-A017-4BC5-A714-14B3D5ACADF5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {A805B5B0-881B-48D5-891E-67781EFD3D8C} - System32\Tasks\ESTsoft RunAsStdUser 491091Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {B048C0AD-5127-46F9-ABEC-F3F822F50F8C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-14] (Adobe Inc. -> Adobe)
Task: {B3058F38-537F-499E-920B-7736097824ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {BA96AAB0-C627-479F-A062-C984B873D42A} - System32\Tasks\{7AC6E4A6-9356-4F65-A63C-0B87832EBAD9} => C:\windows\system32\pcalua.exe -a C:\ProgramData\DivX\Setup\DivXSetup.exe -c /uninstall
Task: {BEB14861-04AB-463F-ABDC-71E194DC6599} - System32\Tasks\ESTsoft RunAsStdUser 122949270Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {BF84CF24-87C1-434E-A643-44DCF6705798} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7DB450D-45C3-4631-B8EE-F237D9B27263} - System32\Tasks\HPCeeScheduleForPORT-ARNAUD$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {E6800DAC-0C6E-4D1B-9428-483CABA40E57} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {EDADC8AF-6595-4CDD-8577-561A8E98CDC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-15] (Google Inc -> Google Inc.)
Task: {F0E848A8-2899-4106-8576-78BA497D7EDD} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F4D14630-07BC-474B-BCA1-FB56DDBEAE24} - System32\Tasks\ESTsoft RunAsStdUser 65825199Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {F96B1789-D62E-4F13-957E-1DD070D48886} - System32\Tasks\ESTsoft RunAsStdUser 81737800Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {FCA5FC37-F5E8-4CDC-BF45-62A7BD232771} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\HPCeeScheduleForPORT-ARNAUD$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{393359C4-20D8-4F52-854F-9DB67BDC048C}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{B40D771E-6928-4518-B5E8-0C91FACC53ED}: [NameServer] 208.67.222.123,208.67.220.123
Tcpip\..\Interfaces\{B40D771E-6928-4518-B5E8-0C91FACC53ED}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKU\S-1-5-21-737187478-4146427945-3856860433-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07] (Hewlett-Packard) [Fichier non signé]
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Profile: C:\Users\ARNAUD\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-28]
FireFox:
========
FF DefaultProfile: 9m7eumxt.default-1586353339232
FF ProfilePath: C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232 [2020-08-16]
FF DownloadDir: C:\Users\ARNAUD\Documents\vidéos
FF Extension: (Video DownloadHelper) - C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-05-01]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-08-07]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (Extension DigitalPersona) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2014-01-24] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-14] (Adobe Inc. -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default [2020-08-16]
CHR Extension: (Slides) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-15]
CHR Extension: (Docs) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-15]
CHR Extension: (Google Drive) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-15]
CHR Extension: (YouTube) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (AHA Music - Recherche de chanson pour navigateur) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-07-05]
CHR Extension: (Sheets) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-06]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-14] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2013-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [486224 2011-11-10] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 DS1AudioDevMon; C:\Program Files (x86)\Denon DJ\DS1\AudioDevMon.exe [2395408 2015-04-29] (INMUSIC BRANDS, INC -> Denon DJ)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [476728 2011-09-05] (Hewlett-Packard Company -> Hewlett-Packard Company)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-06-17] (Freemake) [Fichier non signé]
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-01-28] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HPFSService; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [320000 2011-02-07] (Hewlett-Packard) [Fichier non signé]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [523680 2012-06-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [Fichier non signé]
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1323008 2013-02-01] () [Fichier non signé]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
R3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2013-05-03] (IDT, Inc.) [Fichier non signé]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AgereSoftModem; C:\windows\System32\DRIVERS\agrsm64.sys [1146880 2009-06-10] (Microsoft Windows -> LSI Corp)
R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [9319424 2011-03-28] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 Bulk; C:\windows\System32\Drivers\HDJBulk.sys [192000 2011-03-15] (© Guillemot R&D, 2010. All rights reserved.) [Fichier non signé]
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [63336 2011-02-07] (Hewlett-Packard Company -> Hewlett-Packard Company)
S3 DJDS1; C:\windows\System32\DRIVERS\DenonDJDS1.sys [549648 2015-04-29] (INMUSIC BRANDS, INC -> Denon DJ)
S3 HDJAsioK; C:\windows\System32\Drivers\HDJAsioK.sys [261632 2011-03-15] (© Guillemot R&D, 2010. All rights reserved.) [Fichier non signé]
S3 HDJMidi; C:\windows\System32\DRIVERS\HDJMidi.sys [240640 2011-03-15] (© Guillemot R&D, 2011. All rights reserved.) [Fichier non signé]
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 MpKslDrv; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10C91EB4-EFA6-4F3D-B693-54F697E520AC}\MpKslDrv.sys [73952 2020-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [80384 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win7\ProtonVPN.SplitTunnelDriver.sys [22456 2020-06-03] (ProtonVPN AG -> Proton Technologies AG)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1863720 2012-06-01] (SONIX TECHNOLOGY CO. , LTD -> )
R3 STHDA; C:\windows\System32\DRIVERS\stwrt64.sys [543744 2013-05-03] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 tapprotonvpn; C:\windows\System32\DRIVERS\tapprotonvpn.sys [39864 2020-04-06] (ProtonVPN AG -> The OpenVPN Project)
S3 U46WDM1_01; C:\windows\System32\DRIVERS\U46wdm.sys [35608 2014-01-07] (ESI Audiotechnik GmbH -> )
S1 U46_AA; C:\windows\System32\DRIVERS\U46DRV.sys [64280 2014-01-07] (ESI Audiotechnik GmbH -> )
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ===================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-08-16 12:11 - 2020-08-16 12:23 - 000000000 ___DC C:\FRST
2020-08-15 17:49 - 2020-08-15 17:49 - 000370942 _____ C:\Users\ARNAUD\Desktop\ZHPDiag.txt
2020-08-15 16:45 - 2020-08-15 16:45 - 000000783 _____ C:\Users\ARNAUD\Desktop\ZHPSuite.lnk
2020-08-15 16:45 - 2020-08-15 16:45 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\ZHP
2020-08-15 11:34 - 2020-08-15 11:34 - 000002561 _____ C:\Users\Public\Desktop\Serato DJ Pro .lnk
2020-08-15 11:34 - 2020-08-15 11:34 - 000002561 _____ C:\ProgramData\Desktop\Serato DJ Pro .lnk
2020-08-15 11:34 - 2020-08-15 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serato
2020-08-15 11:25 - 2020-08-15 11:25 - 000000000 ____D C:\Program Files\Serato
2020-08-15 07:25 - 2020-08-15 08:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-08-08 13:22 - 2020-08-08 13:40 - 000000000 ____D C:\ProgramData\ProtonVPN
2020-08-08 13:14 - 2020-08-08 13:14 - 000001157 _____ C:\Users\Public\Desktop\ProtonVPN.lnk
2020-08-08 13:14 - 2020-08-08 13:14 - 000001157 _____ C:\ProgramData\Desktop\ProtonVPN.lnk
2020-08-08 13:13 - 2020-08-08 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2020-08-08 13:11 - 2020-08-08 13:40 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\ProtonVPN
2020-08-08 13:11 - 2020-08-08 13:13 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2020-08-08 10:14 - 2020-08-08 10:14 - 000000952 _____ C:\Users\ARNAUD\Desktop\Telegram.lnk
2020-08-08 10:14 - 2020-08-08 10:14 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2020-07-28 23:56 - 2020-07-28 23:56 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2020-07-28 18:45 - 2020-07-29 18:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-08-16 12:12 - 2020-05-10 16:16 - 000000000 ____D C:\Users\ARNAUD\Documents\vidéos
2020-08-16 12:07 - 2009-07-14 06:45 - 000029184 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-16 12:07 - 2009-07-14 06:45 - 000029184 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-16 01:01 - 2016-11-16 22:53 - 000000000 ____D C:\Users\ARNAUD\AppData\LocalLow\Mozilla
2020-08-15 17:49 - 2017-08-18 22:32 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\ZHP
2020-08-15 17:25 - 2011-05-03 20:02 - 000151956 _____ C:\windows\system32\perfc00C.dat
2020-08-15 17:25 - 2011-05-03 20:02 - 000036720 _____ C:\windows\system32\perfh00C.dat
2020-08-15 17:25 - 2009-07-14 07:13 - 000957758 _____ C:\windows\system32\PerfStringBackup.INI
2020-08-15 17:25 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2020-08-15 17:18 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-08-15 17:17 - 2018-09-18 14:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-15 15:23 - 2012-12-02 15:37 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\vlc
2020-08-15 10:49 - 2015-08-12 11:46 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-15 08:30 - 2020-06-15 12:15 - 000000000 ____D C:\Users\ARNAUD\Documents\FACEBOOK DRAWING
2020-08-14 18:27 - 2020-07-15 07:52 - 006247480 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2020-08-14 18:27 - 2018-03-13 14:48 - 000004642 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-08-14 18:27 - 2012-07-28 16:04 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-08-14 18:27 - 2012-07-28 16:04 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-08-14 18:27 - 2012-07-28 16:04 - 000004484 _____ C:\windows\system32\Tasks\Adobe Flash Player Updater
2020-08-14 18:27 - 2012-07-28 16:04 - 000000000 ____D C:\windows\system32\Macromed
2020-08-14 18:27 - 2011-05-03 20:24 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-08-10 21:55 - 2018-05-02 12:44 - 000000000 ____D C:\Users\ARNAUD\Documents\divers
2020-08-10 20:41 - 2018-04-20 06:59 - 000000000 ____D C:\Users\ARNAUD\Documents\séances & book
2020-08-10 17:05 - 2020-05-22 16:13 - 000000000 ____D C:\Users\ARNAUD\Documents\FOYER A FAIRE
2020-08-08 21:25 - 2012-07-22 13:31 - 000000000 ____D C:\ProgramData\TEMP
2020-08-08 13:44 - 2020-07-10 09:41 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\Telegram Desktop
2020-08-07 23:32 - 2012-07-18 19:35 - 000003208 _____ C:\windows\system32\Tasks\HPCeeScheduleForPORT-ARNAUD$
2020-08-07 23:32 - 2012-07-18 19:35 - 000000350 _____ C:\windows\Tasks\HPCeeScheduleForPORT-ARNAUD$.job
2020-08-04 00:12 - 2018-04-20 06:46 - 000000000 ____D C:\Users\ARNAUD\Documents\spirituals
2020-07-30 20:27 - 2018-10-15 13:09 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-30 20:27 - 2018-10-15 13:09 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-30 20:27 - 2018-10-15 13:09 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-26 09:21 - 2020-04-24 13:18 - 000000000 ____D C:\Users\ARNAUD\Documents\FOYER MUSICS
2020-07-20 02:48 - 2009-07-14 07:08 - 000032496 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-07-18 13:51 - 2012-08-19 13:23 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\CrashDumps
==================== Fichiers à la racine de certains dossiers ========
2013-02-17 05:27 - 2013-02-17 05:27 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2012-07-22 11:46 - 2012-07-22 11:48 - 000102296 _____ () C:\Users\ARNAUD\AppData\Roaming\QWInstall.log
2012-08-19 13:47 - 2015-02-12 22:54 - 000001519 _____ () C:\Users\ARNAUD\AppData\Roaming\SAS7_000.DAT
2013-05-11 01:20 - 2013-05-11 01:20 - 000004608 _____ () C:\Users\ARNAUD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-12 19:18 - 2012-10-12 19:18 - 000007605 _____ () C:\Users\ARNAUD\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2020-08-05 10:22
==================== Fin de FRST.txt ========================
Exécuté par ARNAUD (administrateur) sur PORT-ARNAUD (Hewlett-Packard HP ProBook 4530s) (16-08-2020 12:12:49)
Exécuté depuis C:\Users\ARNAUD\Documents\vidéos
Profils chargés: ARNAUD
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
() [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
(Advanced Micro Devices Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(ATI Technologies Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(ESI Audiotechnik GmbH -> ESI Audiotechnik) C:\Windows\System32\U46Pan.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Hewlett-Packard) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Hewlett-Packard) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
(IDT, Inc.) [Fichier non signé] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [Fichier non signé] C:\Program Files\IDT\WDM\sttray64.exe
(INMUSIC BRANDS, INC -> Denon DJ) C:\Program Files (x86)\Denon DJ\DS1\AudioDevMon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Identity Protection Technology Software -> Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.321.1449.0.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\csrss.exe <2>
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\lsass.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\lsm.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\services.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\smss.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\svchost.exe <15>
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\wininit.exe
(Microsoft Corporation) [Fichier non signé] C:\Windows\System32\winlogon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MfeEpePcMonitor] => C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [200704 2013-02-01] () [Fichier non signé]
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2996792 2011-07-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2013-05-03] (IDT, Inc.) [Fichier non signé]
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [JamInit] => C:\windows\system32\U46Pan.exe [800024 2014-01-07] (ESI Audiotechnik GmbH -> ESI Audiotechnik)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [12274688 2011-02-07] (Hewlett-Packard) [Fichier non signé]
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-28] (Advanced Micro Devices, Inc.) [Fichier non signé]
HKLM-x32\...\Run: [DTRun] => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [517456 2010-11-24] (ArcSoft, Inc. -> ArcSoft Inc.)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2012-07-22] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [333728 2012-06-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking11\Ereg\Ereg.exe [259624 2007-04-16] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [184736 2012-09-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2741616 2011-03-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [GoogleChromeAutoLaunch_70085971AE77113235C27F13157FAE0C] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [7577920 2020-07-22] (ProtonVPN AG -> )
HKU\S-1-5-21-737187478-4146427945-3856860433-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\windows\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2011-03-04] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
HKLM\Software\...\Winlogon\GPExtensions: [{8D90E7E9-6F48-4e24-85E0-596C8E6C4639}] -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCmsGPOClient.dll [2011-11-10] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{D75A25CD-0CCA-4C3C-A5E6-94039CC03B72}] -> C:\windows\system32\DPLic.dll [2011-08-24] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
Lsa: [Notification Packages] DPPassFilter EpePcNp64 scecli
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {014536FC-A9CD-4E1E-B537-BBEE6ABB4A76} - System32\Tasks\ESTsoft RunAsStdUser 22681016Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {0446D1AE-2138-49DF-9B9D-90E80CA196B2} - System32\Tasks\Amazon Music Helper => C:\Users\ARNAUD\AppData\Local\Amazon Music\Amazon Music Helper.exe
Task: {05123D94-FE10-4F36-9B94-CBD208DEB6A2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {0E14AE48-4C57-4AB7-B166-2091C8B193DE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {1230A687-C870-46D7-A41F-FDA5E749855D} - System32\Tasks\ESTsoft RunAsStdUser 44730650Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {155BDB92-DE72-443C-B0DE-B36BDF41E1A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {198D0F36-3586-4D8B-AAFA-20F6BBA82E6D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-15] (Google Inc -> Google Inc.)
Task: {21536770-7FAE-4E49-8411-08A22ED7E3B4} - System32\Tasks\ESTsoft RunAsStdUser 47678476Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {34D2698A-6281-4074-9AE5-AD5C60831CBE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {3E7D5139-6F10-4DF6-A96D-EF8CE0A4A871} - System32\Tasks\{572BEDE9-F33C-4586-A132-A61A14E1DB39} => C:\windows\system32\pcalua.exe -a "C:\Users\ARNAUD\Music\ZE DOWNLOADS\slsk157NS13e.exe" -d "C:\Users\ARNAUD\Music\ZE DOWNLOADS"
Task: {48130316-DDCD-4AEB-AD14-FF0B1F461E44} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {4E473A84-3101-4588-9FDD-8B3B1B724B87} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [3129184 2012-09-24] (Piriform Ltd -> Piriform Ltd)
Task: {55C1F002-92F4-4C67-8883-58B2195EDEC4} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-14] (Adobe Inc. -> Adobe)
Task: {6B962732-DB5B-4304-8FD8-B59D952B3B53} - System32\Tasks\ESTsoft RunAsStdUser 88666428Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {6F6CAE51-E2CB-4369-B1F9-7DF1C8786728} - System32\Tasks\ESTsoft RunAsStdUser 3578943Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {8462ADC6-A612-4B5B-BF7E-46A794109E20} - System32\Tasks\ESTsoft RunAsStdUser 117879347Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {8E64DAA5-2C0F-496B-9855-183D735A0E36} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [123600 2020-07-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {8F325944-A017-4BC5-A714-14B3D5ACADF5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {A805B5B0-881B-48D5-891E-67781EFD3D8C} - System32\Tasks\ESTsoft RunAsStdUser 491091Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {B048C0AD-5127-46F9-ABEC-F3F822F50F8C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-14] (Adobe Inc. -> Adobe)
Task: {B3058F38-537F-499E-920B-7736097824ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {BA96AAB0-C627-479F-A062-C984B873D42A} - System32\Tasks\{7AC6E4A6-9356-4F65-A63C-0B87832EBAD9} => C:\windows\system32\pcalua.exe -a C:\ProgramData\DivX\Setup\DivXSetup.exe -c /uninstall
Task: {BEB14861-04AB-463F-ABDC-71E194DC6599} - System32\Tasks\ESTsoft RunAsStdUser 122949270Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {BF84CF24-87C1-434E-A643-44DCF6705798} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7DB450D-45C3-4631-B8EE-F237D9B27263} - System32\Tasks\HPCeeScheduleForPORT-ARNAUD$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {E6800DAC-0C6E-4D1B-9428-483CABA40E57} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {EDADC8AF-6595-4CDD-8577-561A8E98CDC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-15] (Google Inc -> Google Inc.)
Task: {F0E848A8-2899-4106-8576-78BA497D7EDD} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F4D14630-07BC-474B-BCA1-FB56DDBEAE24} - System32\Tasks\ESTsoft RunAsStdUser 65825199Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {F96B1789-D62E-4F13-957E-1DD070D48886} - System32\Tasks\ESTsoft RunAsStdUser 81737800Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe [4292440 2010-04-21] (ESTsoft Corp. -> ESTsoft Corp.)
Task: {FCA5FC37-F5E8-4CDC-BF45-62A7BD232771} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\HPCeeScheduleForPORT-ARNAUD$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{393359C4-20D8-4F52-854F-9DB67BDC048C}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{B40D771E-6928-4518-B5E8-0C91FACC53ED}: [NameServer] 208.67.222.123,208.67.220.123
Tcpip\..\Interfaces\{B40D771E-6928-4518-B5E8-0C91FACC53ED}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKU\S-1-5-21-737187478-4146427945-3856860433-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07] (Hewlett-Packard) [Fichier non signé]
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Profile: C:\Users\ARNAUD\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-28]
FireFox:
========
FF DefaultProfile: 9m7eumxt.default-1586353339232
FF ProfilePath: C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232 [2020-08-16]
FF DownloadDir: C:\Users\ARNAUD\Documents\vidéos
FF Extension: (Video DownloadHelper) - C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-05-01]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ARNAUD\AppData\Roaming\Mozilla\Firefox\Profiles\9m7eumxt.default-1586353339232\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-08-07]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (Extension DigitalPersona) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2014-01-24] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-14] (Adobe Inc. -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default [2020-08-16]
CHR Extension: (Slides) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-15]
CHR Extension: (Docs) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-15]
CHR Extension: (Google Drive) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-15]
CHR Extension: (YouTube) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-15]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-08-07]
CHR Extension: (AHA Music - Recherche de chanson pour navigateur) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-07-05]
CHR Extension: (Sheets) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\ARNAUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-06]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-14] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2013-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [486224 2011-11-10] (DigitalPersona, Inc. -> DigitalPersona, Inc.)
R2 DS1AudioDevMon; C:\Program Files (x86)\Denon DJ\DS1\AudioDevMon.exe [2395408 2015-04-29] (INMUSIC BRANDS, INC -> Denon DJ)
S3 FLCDLOCK; c:\Windows\SysWOW64\flcdlock.exe [476728 2011-09-05] (Hewlett-Packard Company -> Hewlett-Packard Company)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-06-17] (Freemake) [Fichier non signé]
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [133688 2011-01-28] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 HPFSService; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [320000 2011-02-07] (Hewlett-Packard) [Fichier non signé]
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [523680 2012-06-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [Fichier non signé]
R2 McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [1323008 2013-02-01] () [Fichier non signé]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-07-22] (ProtonVPN AG -> )
R3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-07-22] (ProtonVPN AG -> )
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [323072 2013-05-03] (IDT, Inc.) [Fichier non signé]
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [502464 2010-11-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AgereSoftModem; C:\windows\System32\DRIVERS\agrsm64.sys [1146880 2009-06-10] (Microsoft Windows -> LSI Corp)
R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [9319424 2011-03-28] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [32192 2010-11-11] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 Bulk; C:\windows\System32\Drivers\HDJBulk.sys [192000 2011-03-15] (© Guillemot R&D, 2010. All rights reserved.) [Fichier non signé]
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [63336 2011-02-07] (Hewlett-Packard Company -> Hewlett-Packard Company)
S3 DJDS1; C:\windows\System32\DRIVERS\DenonDJDS1.sys [549648 2015-04-29] (INMUSIC BRANDS, INC -> Denon DJ)
S3 HDJAsioK; C:\windows\System32\Drivers\HDJAsioK.sys [261632 2011-03-15] (© Guillemot R&D, 2010. All rights reserved.) [Fichier non signé]
S3 HDJMidi; C:\windows\System32\DRIVERS\HDJMidi.sys [240640 2011-03-15] (© Guillemot R&D, 2011. All rights reserved.) [Fichier non signé]
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 MpKslDrv; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10C91EB4-EFA6-4F3D-B693-54F697E520AC}\MpKslDrv.sys [73952 2020-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [80384 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win7\ProtonVPN.SplitTunnelDriver.sys [22456 2020-06-03] (ProtonVPN AG -> Proton Technologies AG)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1863720 2012-06-01] (SONIX TECHNOLOGY CO. , LTD -> )
R3 STHDA; C:\windows\System32\DRIVERS\stwrt64.sys [543744 2013-05-03] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 tapprotonvpn; C:\windows\System32\DRIVERS\tapprotonvpn.sys [39864 2020-04-06] (ProtonVPN AG -> The OpenVPN Project)
S3 U46WDM1_01; C:\windows\System32\DRIVERS\U46wdm.sys [35608 2014-01-07] (ESI Audiotechnik GmbH -> )
S1 U46_AA; C:\windows\System32\DRIVERS\U46DRV.sys [64280 2014-01-07] (ESI Audiotechnik GmbH -> )
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ===================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-08-16 12:11 - 2020-08-16 12:23 - 000000000 ___DC C:\FRST
2020-08-15 17:49 - 2020-08-15 17:49 - 000370942 _____ C:\Users\ARNAUD\Desktop\ZHPDiag.txt
2020-08-15 16:45 - 2020-08-15 16:45 - 000000783 _____ C:\Users\ARNAUD\Desktop\ZHPSuite.lnk
2020-08-15 16:45 - 2020-08-15 16:45 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\ZHP
2020-08-15 11:34 - 2020-08-15 11:34 - 000002561 _____ C:\Users\Public\Desktop\Serato DJ Pro .lnk
2020-08-15 11:34 - 2020-08-15 11:34 - 000002561 _____ C:\ProgramData\Desktop\Serato DJ Pro .lnk
2020-08-15 11:34 - 2020-08-15 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serato
2020-08-15 11:25 - 2020-08-15 11:25 - 000000000 ____D C:\Program Files\Serato
2020-08-15 07:25 - 2020-08-15 08:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-08-08 13:22 - 2020-08-08 13:40 - 000000000 ____D C:\ProgramData\ProtonVPN
2020-08-08 13:14 - 2020-08-08 13:14 - 000001157 _____ C:\Users\Public\Desktop\ProtonVPN.lnk
2020-08-08 13:14 - 2020-08-08 13:14 - 000001157 _____ C:\ProgramData\Desktop\ProtonVPN.lnk
2020-08-08 13:13 - 2020-08-08 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2020-08-08 13:11 - 2020-08-08 13:40 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\ProtonVPN
2020-08-08 13:11 - 2020-08-08 13:13 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2020-08-08 10:14 - 2020-08-08 10:14 - 000000952 _____ C:\Users\ARNAUD\Desktop\Telegram.lnk
2020-08-08 10:14 - 2020-08-08 10:14 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2020-07-28 23:56 - 2020-07-28 23:56 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2020-07-28 18:45 - 2020-07-29 18:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-08-16 12:12 - 2020-05-10 16:16 - 000000000 ____D C:\Users\ARNAUD\Documents\vidéos
2020-08-16 12:07 - 2009-07-14 06:45 - 000029184 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-16 12:07 - 2009-07-14 06:45 - 000029184 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-16 01:01 - 2016-11-16 22:53 - 000000000 ____D C:\Users\ARNAUD\AppData\LocalLow\Mozilla
2020-08-15 17:49 - 2017-08-18 22:32 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\ZHP
2020-08-15 17:25 - 2011-05-03 20:02 - 000151956 _____ C:\windows\system32\perfc00C.dat
2020-08-15 17:25 - 2011-05-03 20:02 - 000036720 _____ C:\windows\system32\perfh00C.dat
2020-08-15 17:25 - 2009-07-14 07:13 - 000957758 _____ C:\windows\system32\PerfStringBackup.INI
2020-08-15 17:25 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2020-08-15 17:18 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-08-15 17:17 - 2018-09-18 14:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-08-15 15:23 - 2012-12-02 15:37 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\vlc
2020-08-15 10:49 - 2015-08-12 11:46 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-15 08:30 - 2020-06-15 12:15 - 000000000 ____D C:\Users\ARNAUD\Documents\FACEBOOK DRAWING
2020-08-14 18:27 - 2020-07-15 07:52 - 006247480 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2020-08-14 18:27 - 2018-03-13 14:48 - 000004642 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-08-14 18:27 - 2012-07-28 16:04 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-08-14 18:27 - 2012-07-28 16:04 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-08-14 18:27 - 2012-07-28 16:04 - 000004484 _____ C:\windows\system32\Tasks\Adobe Flash Player Updater
2020-08-14 18:27 - 2012-07-28 16:04 - 000000000 ____D C:\windows\system32\Macromed
2020-08-14 18:27 - 2011-05-03 20:24 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-08-10 21:55 - 2018-05-02 12:44 - 000000000 ____D C:\Users\ARNAUD\Documents\divers
2020-08-10 20:41 - 2018-04-20 06:59 - 000000000 ____D C:\Users\ARNAUD\Documents\séances & book
2020-08-10 17:05 - 2020-05-22 16:13 - 000000000 ____D C:\Users\ARNAUD\Documents\FOYER A FAIRE
2020-08-08 21:25 - 2012-07-22 13:31 - 000000000 ____D C:\ProgramData\TEMP
2020-08-08 13:44 - 2020-07-10 09:41 - 000000000 ____D C:\Users\ARNAUD\AppData\Roaming\Telegram Desktop
2020-08-07 23:32 - 2012-07-18 19:35 - 000003208 _____ C:\windows\system32\Tasks\HPCeeScheduleForPORT-ARNAUD$
2020-08-07 23:32 - 2012-07-18 19:35 - 000000350 _____ C:\windows\Tasks\HPCeeScheduleForPORT-ARNAUD$.job
2020-08-04 00:12 - 2018-04-20 06:46 - 000000000 ____D C:\Users\ARNAUD\Documents\spirituals
2020-07-30 20:27 - 2018-10-15 13:09 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-30 20:27 - 2018-10-15 13:09 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-30 20:27 - 2018-10-15 13:09 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-07-26 09:21 - 2020-04-24 13:18 - 000000000 ____D C:\Users\ARNAUD\Documents\FOYER MUSICS
2020-07-20 02:48 - 2009-07-14 07:08 - 000032496 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-07-18 13:51 - 2012-08-19 13:23 - 000000000 ____D C:\Users\ARNAUD\AppData\Local\CrashDumps
==================== Fichiers à la racine de certains dossiers ========
2013-02-17 05:27 - 2013-02-17 05:27 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2012-07-22 11:46 - 2012-07-22 11:48 - 000102296 _____ () C:\Users\ARNAUD\AppData\Roaming\QWInstall.log
2012-08-19 13:47 - 2015-02-12 22:54 - 000001519 _____ () C:\Users\ARNAUD\AppData\Roaming\SAS7_000.DAT
2013-05-11 01:20 - 2013-05-11 01:20 - 000004608 _____ () C:\Users\ARNAUD\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-12 19:18 - 2012-10-12 19:18 - 000007605 _____ () C:\Users\ARNAUD\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2020-08-05 10:22
==================== Fin de FRST.txt ========================