Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2021
Exécuté par AxelR (administrateur) sur THOMASR-HP (Hewlett-Packard HP Pavilion dv6 Notebook PC) (25-04-2021 09:33:49)
Exécuté depuis C:\Users\AxelR\Desktop
Profils chargés: AxelR
Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Andrea Electronics Corporation) [Fichier non signé] C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros Communications Inc. -> Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Discord Inc. -> Discord Inc.) C:\Users\AxelR\AppData\Local\Discord\app-1.0.9001\Discord.exe <6>
(EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Identity Protection Technology Software -> Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\AxelR\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WaaSMedicAgent.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILGE.EXE
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-06-02] (IDT, Inc.) [Fichier non signé]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Genshin Impact_Launcher] => C:\Program Files\Genshin Impact\launcher.exe
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [D44A50270CFE84CDC4AC056FC91709EFEA37D2B2._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Discord] => C:\Users\AxelR\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-05] (Valve -> Valve Corporation)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON XP-540 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRIE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-12-24] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.85\Installer\chrmstp.exe [2021-04-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7842.105\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2011-10-13] (Atheros Communications Inc. -> Atheros Commnucations) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2011-10-13] (Atheros Communications Inc. -> Atheros Commnucations) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-03-30]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0050CFAA-E03A-40B3-8A4F-9145CEE65623} - System32\Tasks\EPSON XP-215 217 Series Update {E46ECF8B-5A82-422E-A3F5-E8384C63B991} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {063582BD-4C32-41DA-B63F-EF3879D9DFBD} - System32\Tasks\EPSON XP-540 Series Update {1BE88734-BDF4-4D0C-9784-8C92464B3383} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {08AE5C30-1564-4ADD-B446-184B5DC69C8E} - System32\Tasks\{7CDB3C7B-CE17-41D6-ABEC-ADA8D3BDB376} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.27.80.101/fr/go/help.faq.installer?LastError=1603
Task: {0BDCA3FB-769A-42B6-BD72-9ED2051CEFA6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0DE47ED9-320F-49BF-920C-D576A8792E39} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {13D75C33-AAB3-419C-BD65-C7F197C7CBE3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-17] (Google Inc -> Google Inc.)
Task: {1468D089-AF19-4FF9-97C3-68D6788072E3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {15EECC54-46A7-43DA-9A1F-3F360DFAD4AB} - System32\Tasks\{3B177C7D-2BC9-4507-84E6-DB61C7C9572A} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {18E2EECA-56AD-479A-8CC2-95022AF8145E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {190B3DB8-92F8-4903-BF80-8FF7B84AF0D5} - System32\Tasks\{C31FE568-F791-4D8E-83AB-BAF30506A8CE} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {1E936C92-87A7-42B8-9411-CDD494D3FB6D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {1F6E8DB6-F44C-45E2-8E63-401C9531E1BC} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24BAC1AD-7EFA-4CB8-8F8C-BFAE5B40EB36} - System32\Tasks\{2C021864-4B95-480B-A94C-0A05BDF38FFC} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {2C39C993-5941-40D1-9DDD-E28805DB79CE} - System32\Tasks\{ABDA0907-E7D6-4A46-B3EC-E9A68CACFD1F} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {2DAEA57B-6F02-43D9-A391-C70102F5AF3E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2E1630BE-AC55-4CBD-A8A1-8914689752BB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2EF31884-B9F1-40CB-88DC-514D4FEF52D4} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {3215C3E0-E948-4C6C-A46F-9DEF8269D977} - System32\Tasks\{BB4A0DAC-3F70-436E-8D63-4D6D4048A76F} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Microsoft Games\Age of Mythology\UNINSTXP.EXE" -c /runtemp /addremove
Task: {32DB8081-CEB4-4879-8452-0CFD1D129F84} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {365519CD-92F4-4052-83ED-7A6B6836E234} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {38260919-42FB-4A66-8A59-31A43F1EA97C} - System32\Tasks\{2756333F-5D40-4A35-B545-901528D748F7} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {38634539-130C-4162-9F70-173CD5021049} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {392473AB-A9E3-4B93-9F34-9569C09B404D} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {39F928C0-0CB4-4FAD-A91D-D9D93FA2A556} - System32\Tasks\{EED1523F-0CC0-4B5D-BC7D-AA1C20293082} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {3D7265A6-3CFD-4281-B176-7CCA58DF23C0} - System32\Tasks\{18155C55-931F-423A-A65C-CB60032CF5C6} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {4007CBE7-595E-4A71-A9BE-FA3E662D3550} - System32\Tasks\{789AA71A-EEF7-4529-9626-1F19A8F37B0F} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {415E2A2E-01BB-4D43-B40F-3211F89EA5A8} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A722987-568D-4B23-A89C-C63F1CB529D6} - System32\Tasks\{68AB5DA9-0F2E-4D7D-B044-0E88B9D2BC50} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\ -c -c
Task: {5528F22C-2470-4715-ACAE-E274EF6898C7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {5982E2C4-C32D-4072-B895-C697F87D46EB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5C8F4E85-2115-418F-B10E-2BD50E9D0232} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5CCD78B0-6A0B-40F7-8754-CA169C580A13} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {5E4B54D8-1C72-4BFD-BCB4-C4D249CD6ED4} - System32\Tasks\{1B72B6BD-319F-4DC4-944D-7752E820025A} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.27.64.101/fr/go/help.faq.installer?LastError=1603
Task: {5EBD5875-C963-4F8B-99A6-B69BE044209F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {61438F11-0189-4E2D-8C5C-64F87C311394} - System32\Tasks\EPSON XP-215 217 Series Invitation {E46ECF8B-5A82-422E-A3F5-E8384C63B991} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {699A6464-6181-44C8-88F9-6DA079A9512E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6D987112-BB47-4032-88A0-17F247BAC603} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [38456 2011-09-28] (Hewlett-Packard Company -> )
Task: {717B222D-1186-4A29-A0B9-97F831FA85EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {7213253E-7629-446B-9EAD-044D994809EC} - System32\Tasks\EPSON XP-215 217 Series Invitation {A61742F0-E27A-42B9-BFE6-07D425ADC247} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {74524E34-5346-49A6-A2EB-A94D7355F403} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-28] (Adobe Inc. -> Adobe)
Task: {76F62B56-3EC5-4E99-8E98-3E534315C301} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {79F95F29-5381-489E-8198-F86D07600241} - System32\Tasks\{CFD7BA2F-AFFB-4584-B318-B54C36A52CC3} => C:\Windows\system32\pcalua.exe -a F:\goodies\machine\machine.exe -d F:\ -c -l
Task: {7BCDAD4F-1CB4-48FE-9292-69CDDD900E45} - System32\Tasks\SafeZone scheduled Autoupdate 1458745192 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {7D301DE5-5A34-42E9-8FB9-AAC514E2041D} - System32\Tasks\EPSON XP-215 217 Series Update {A61742F0-E27A-42B9-BFE6-07D425ADC247} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {80B66D77-8CE5-48B1-BCF8-78BB548B56CD} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {80CA7FA6-79A6-40D6-ABE4-6221C1C74ADE} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {811C1EA6-5E7E-40D5-A19B-760D98F26B0C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {83618CD5-B006-4138-A68B-CB20187CC347} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {85D5858F-0AD7-4B5F-A312-550C52ADC3FF} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {85E84CC6-31B3-4798-9C2D-30BC9E0AEA7F} - System32\Tasks\{0D0FB949-3BAC-422A-9F0C-10D511472027} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {87D5212B-2D8A-4C8F-A7CE-DB80BD2576E2} - System32\Tasks\EPSON XP-215 217 Series Update {5D7EAFAB-C527-459E-AF01-733886102C51} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {88588823-F0B5-4B52-8760-6E030CFCE106} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {89A7F529-44D3-4B0F-B7C3-0F8A589D4AFC} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {8C02141B-DDA9-425B-9E88-5421E43F0DBB} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8D863BCF-7B10-4CEE-ADD9-DB7CB02F55A4} - System32\Tasks\{D7347244-E943-411E-BCEC-31519A9B19CB} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {958EAAFD-7040-472D-A162-11514C37ABD9} - System32\Tasks\{A81FCB21-EDE1-4660-B79A-1C87847151E3} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.21.0.100/fr/go/help.faq.installer?LastError=1603
Task: {9AAA8F57-C07F-483E-8280-DEC87DBFE7F1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9F509419-0144-49F7-A0B8-CEE0AECBB91C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A13C391D-1207-467F-A508-77AD715525D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2BA776F-A2E8-4803-91FA-986BEB2F1CA5} - System32\Tasks\{F17A069E-BE6C-44F6-BEE4-2F7B33879CDC} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {A96AE8CE-97EF-4ECE-8A0D-4B27EF3F05C8} - System32\Tasks\{C7F8E831-95C5-4FD1-833F-F7396CF45D2E} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/fr/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {AB02C827-A7AE-4A8E-9B7C-B7699E911F6F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736 2015-10-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {AB2C556B-6739-4193-A766-B65EF242E755} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AC599511-02FC-4F24-9131-68CCCC4BA8A8} - System32\Tasks\{9667C6F5-6F6C-4CEE-A7AF-939AA7342907} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\HPCeeScheduleForAxelR" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d7138f3f49ac46" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3043588755-647529592-3784445252-1000" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\WinZip Update Notifier 1" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\WinZip Update Notifier 2" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\WinZip Update Notifier 3" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B0F61DE5-4785-4D5C-B0CB-8C632F7822DF} - System32\Tasks\{984F75F9-99B3-40EB-81ED-15F1095C9F74} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.7.0.103.161/fr/abandoninstall?page=tsProgressBar
Task: {B143D8C4-45F7-4C67-BD03-BD51ED66017E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B216D6A3-AD76-4657-BE04-F4E75B3AECBE} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {B35AA416-DEBD-4A91-9EA1-6233C5065716} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {B639C808-180E-4BAA-809F-6371E81941A4} - System32\Tasks\{6246C490-B4B6-4780-8FD9-8C7812736F5C} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {B65B751E-19BC-47E2-86CE-EC163DBEC560} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA4F6CA0-6A1B-4F0E-AC93-D969D7C5700D} - System32\Tasks\{D8B4C0C5-9AC8-4D0F-8D82-93482B3F628B} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {BAE6209C-FA76-4443-8825-4FDD5B0C545E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe
Task: {BC287F34-89A6-4B33-B265-84AFCDB56A56} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C1219010-8B04-48E7-B876-AE89E9D57919} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {CAE76A68-1AF1-4F8F-9DAE-8F64F8EDF792} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CB5A3635-7176-4DBF-BB24-8BE843CAB579} - System32\Tasks\{DB717740-CBEF-46A6-BF16-26E1C1DFE375} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {CBD567E6-6E5C-4E4A-93F7-FEC3CC34195F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {CCB3D04C-7D6C-4524-9B1A-78C5AC3400FB} - System32\Tasks\{74221C29-576B-417C-8775-22934F6CB3F4} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {CF509DAF-339C-478C-863C-B73A471CC669} - System32\Tasks\EPSON XP-215 217 Series Invitation {5D7EAFAB-C527-459E-AF01-733886102C51} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {D11FD10B-7C2D-4D7F-8676-C3B416A6C90E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC47918C-0789-45F5-91B2-71A17FFAA395} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-17] (Google Inc -> Google Inc.)
Task: {DFBB2664-B168-41CA-85BE-5A07BC5DA846} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {E09E6328-658B-4066-9015-B93DDCF191FC} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {E39995BF-7E29-432C-97C5-3FA120AF0EEC} - System32\Tasks\HPCeeScheduleForAxelR => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800 2011-07-15] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {E9C9D4BE-2E90-42AC-8D4D-5C78A52DBC9C} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {EDB973A2-4791-41AB-8930-68697262E146} - System32\Tasks\{7AF0E2EC-A135-46D7-8774-BE4A1CED428B} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {F0FBF003-52D6-45D2-8F32-98A8D9FCE7C3} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F5515870-97AC-4FB1-B8B3-BA2D308D3F61} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {F840C762-2B21-44F7-A20A-1EDE8AE0EFE6} - System32\Tasks\{EAD92410-33CA-4839-AF86-12160B23D9D1} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {F93E9064-6870-4639-B8C6-C8A40CA0AB71} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {FE5BDAB3-1981-4164-BE1A-F9B10B7F85EC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {5D7EAFAB-C527-459E-AF01-733886102C51}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {A61742F0-E27A-42B9-BFE6-07D425ADC247}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {E46ECF8B-5A82-422E-A3F5-E8384C63B991}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {5D7EAFAB-C527-459E-AF01-733886102C51}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{5D7EAFAB-C527-459E-AF01-733886102C51} /F:UpdateWORKGROUP\AXELR-HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {A61742F0-E27A-42B9-BFE6-07D425ADC247}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{A61742F0-E27A-42B9-BFE6-07D425ADC247} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {E46ECF8B-5A82-422E-A3F5-E8384C63B991}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{E46ECF8B-5A82-422E-A3F5-E8384C63B991} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-540 Series Update {1BE88734-BDF4-4D0C-9784-8C92464B3383}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE:/EXE:{1BE88734-BDF4-4D0C-9784-8C92464B3383} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\HPCeeScheduleForAxelR.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{24EB46D4-94D3-4E4A-B011-2C8CBD7F0A8F}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\AxelR\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-24]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\AxelR\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-04-18]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: b1fskn28.default
FF ProfilePath: C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default [2021-03-31]
FF Homepage: Mozilla\Firefox\Profiles\b1fskn28.default -> hxxps://www.malwarebytes.org/restorebrowser/0d2bb041¶m1=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%3D¶m2=NGVdNatdLWB5
FF NewTab: Mozilla\Firefox\Profiles\b1fskn28.default -> about:newtab
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\sp@avast.com.xpi [2019-02-19]
FF Extension: (Avast Online Security) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\wrc@avast.com.xpi [2018-07-27]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-01-26]
FF SearchPlugin: C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\searchplugins\search provided by bing.xml [2016-10-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default [2021-04-25]
CHR Notifications: Default -> hxxps://www.cnetfrance.fr
CHR StartupUrls: Default -> "hxxp://www.yahoo.fr/"
CHR Extension: (Website Logon) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\debkinhcgejcbfgjiaalomcmkedjmiaa [2012-08-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Battlefield Play4Free) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-22]
CHR HKU\S-1-5-21-3043588755-647529592-3784445252-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]
CHR HKLM-x32\...\Chrome\Extension: [debkinhcgejcbfgjiaalomcmkedjmiaa] - C:\Program Files (x86)\HP SimplePass 2012\tschrome.crx [2011-08-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
HKLM\SYSTEM\CurrentControlSet\Services\aswSP <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswMonFlt <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswSnx <==== ATTENTION (Rootkit!)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128 2015-10-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-28] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation) [Fichier non signé]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé]
R2 FPLService; C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [260424 2011-08-26] (AuthenTec, Inc. -> HP)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2013-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-26] (Malwarebytes Inc -> Malwarebytes)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [64512 2009-07-14] (Microsoft Windows -> Hewlett-Packard)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [301568 2011-06-02] (IDT, Inc.) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-10-13] (Atheros Communications Inc. -> Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 clwvd; C:\WINDOWS\System32\DRIVERS\clwvd.sys [31088 2010-07-28] (CyberLink -> CyberLink Corporation)
S3 intelkmd; C:\WINDOWS\System32\DRIVERS\igdpmd64.sys [12289472 2011-08-09] (Intel Corporation) [Fichier non signé]
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220600 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-18] (Malwarebytes Inc -> Malwarebytes)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [232792 2021-03-08] (Valve Corp. -> Valve Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-04-25 09:33 - 2021-04-25 09:38 - 000044157 _____ C:\Users\AxelR\Desktop\FRST.txt
2021-04-24 18:42 - 2021-04-25 09:36 - 000000000 ____D C:\FRST
2021-04-24 18:42 - 2021-04-24 18:40 - 002298368 _____ (Farbar) C:\Users\AxelR\Desktop\FRST64.exe
2021-04-24 18:40 - 2021-04-24 18:40 - 002298368 _____ (Farbar) C:\Users\AxelR\Downloads\FRST64.exe
2021-04-24 18:26 - 2021-04-24 18:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-24 18:26 - 2021-04-24 18:26 - 000000992 _____ C:\Users\Public\Desktop\Steam.lnk
2021-04-24 18:26 - 2021-04-24 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-04-24 18:25 - 2021-04-24 18:25 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup (2).exe
2021-04-24 14:59 - 2021-04-24 15:14 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\ZHP
2021-04-24 14:59 - 2021-04-24 14:59 - 000000905 _____ C:\Users\AxelR\Desktop\ZHPSuite.lnk
2021-04-24 14:59 - 2021-04-24 14:59 - 000000000 ____D C:\Users\AxelR\AppData\Local\ZHP
2021-04-24 14:59 - 2021-04-24 14:45 - 003468440 _____ (Nicolas Coolman) C:\Users\AxelR\Desktop\ZHPSuite.exe
2021-04-24 14:45 - 2021-04-24 14:45 - 003468440 _____ (Nicolas Coolman) C:\Users\AxelR\Downloads\ZHPSuite.exe
2021-04-20 08:26 - 2021-04-20 08:26 - 001300792 _____ C:\Users\AxelR\Downloads\video0-1.mp4
2021-04-18 14:23 - 2021-04-18 14:23 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-14 11:56 - 2021-04-14 11:56 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-14 11:54 - 2021-04-14 11:54 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-14 11:53 - 2021-04-14 11:53 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 07:15 - 2021-04-24 12:50 - 000003368 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7138f3f49ac46
2021-04-11 17:25 - 2021-04-23 20:26 - 000000000 ____D C:\Users\AxelR\BrawlhallaReplays
2021-04-11 17:22 - 2021-04-11 17:23 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\BrawlhallaAir
2021-04-11 14:23 - 2021-03-08 10:29 - 000232792 _____ (Valve Corporation) C:\WINDOWS\system32\Drivers\steamxbox.sys
2021-04-11 14:17 - 2021-04-11 14:17 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup.exe
2021-04-11 14:17 - 2021-04-11 14:17 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup (1).exe
2021-04-11 07:51 - 2021-04-11 07:51 - 000000000 ____D C:\Users\AxelR\AppData\LocalLow\miHoYo
2021-04-09 12:58 - 2021-04-09 12:58 - 001262864 _____ C:\Users\AxelR\Downloads\¡Despierta! ¡Desayuna!.1.mp4
2021-04-09 12:54 - 2021-04-09 12:54 - 000000000 ____D C:\Users\AxelR\AppData\Local\miHoYo
2021-04-09 12:48 - 2021-04-09 12:49 - 124745448 _____ (miHoYo) C:\Users\AxelR\Downloads\GenshinImpact_install_20210323145008 (1).exe
2021-04-09 12:45 - 2021-04-09 12:46 - 124745448 _____ (miHoYo) C:\Users\AxelR\Downloads\GenshinImpact_install_20210323145008.exe
2021-04-09 11:09 - 2021-04-09 11:10 - 075693160 _____ (miHoYo) C:\Users\AxelR\Downloads\Non confirmé 286527.crdownload
2021-04-08 18:29 - 2021-04-08 18:30 - 053575680 _____ C:\Users\AxelR\Downloads\Hextech Repair Tool.msi
2021-04-07 10:58 - 2021-04-07 10:58 - 000008352 _____ C:\Users\AxelR\Downloads\1815-70 vote Thomas ROBIN 4e4.odt
2021-04-07 10:43 - 2021-04-07 10:43 - 000000801 _____ C:\Users\AxelR\Downloads\Objets 3D - Raccourci.lnk
2021-04-07 09:50 - 2021-04-07 09:50 - 000022475 _____ C:\Users\AxelR\Desktop\1815-70 vote Thomas ROBIN 4e4.odt
2021-04-04 15:32 - 2021-04-04 15:32 - 000001996 _____ C:\Users\AxelR\Desktop\Zoom.lnk
2021-04-04 15:28 - 2021-04-04 15:28 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-04-04 15:27 - 2021-04-04 17:18 - 000734964 _____ C:\Users\AxelR\Desktop\praxino.odp
2021-04-04 11:31 - 2021-04-04 11:31 - 001373484 _____ C:\Users\AxelR\Downloads\Praxinoscope vidéo.avi
2021-04-04 11:31 - 2021-04-04 11:31 - 000003584 _____ C:\Users\AxelR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-04-04 11:28 - 2021-04-04 11:28 - 000131590 _____ C:\Users\AxelR\Downloads\Praxinoscope vidéo.webm
2021-04-04 11:05 - 2021-04-04 11:05 - 000000000 ____D C:\Users\Public\Documents\sun
2021-04-04 10:53 - 2021-04-04 10:53 - 000001060 _____ C:\Users\Public\Desktop\LibreOffice 7.1.lnk
2021-04-04 10:53 - 2021-04-04 10:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1
2021-04-04 10:40 - 2021-04-04 10:45 - 328597504 _____ C:\Users\AxelR\Downloads\LibreOffice_7.1.2_Win_x64 (3).msi
2021-04-04 09:21 - 2021-04-04 09:25 - 328597504 _____ C:\Users\AxelR\Downloads\LibreOffice_7.1.2_Win_x64.msi
2021-03-31 13:41 - 2021-03-31 13:40 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-03-31 13:41 - 2021-03-31 13:40 - 000216376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1e26bc81f57b2be1.tmp
2021-03-31 07:07 - 2021-03-31 07:07 - 000001108 _____ C:\Users\AxelR\Desktop\Techno bases, techniques - Raccourci.lnk
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\StateSlots
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\Cheats
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\Battery
2021-03-30 12:22 - 2021-03-30 12:25 - 268435456 _____ C:\Users\AxelR\Downloads\IE1FR (4).nds
2021-03-30 12:21 - 2021-03-30 12:21 - 000000000 ____D C:\Users\AxelR\Downloads\Roms
2021-03-30 12:17 - 2021-03-31 20:43 - 000001543 _____ C:\Users\AxelR\Downloads\desmume.ini
2021-03-30 12:16 - 2021-04-01 19:27 - 000000000 ____D C:\Users\AxelR\Downloads\DeSmuME_0.9.12_29.09.2020_64_Bits (2)
2021-03-30 12:16 - 2021-03-30 12:16 - 005184220 _____ C:\Users\AxelR\Downloads\Non confirmé 796198.crdownload
2021-03-30 12:14 - 2021-04-24 12:50 - 000002686 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2021-03-30 12:14 - 2021-04-24 12:50 - 000002684 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2021-03-30 12:14 - 2021-04-24 12:50 - 000002684 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2021-03-30 12:14 - 2021-03-30 12:17 - 000000000 ____D C:\Users\AxelR\AppData\Local\WinZip
2021-03-30 12:14 - 2021-03-30 12:14 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2021-03-30 12:14 - 2021-03-30 12:14 - 000001987 _____ C:\Users\Public\Desktop\WinZip.lnk
2021-03-30 12:14 - 2021-03-30 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2021-03-30 12:14 - 2021-03-30 12:14 - 000000000 ____D C:\Program Files\WinZip
2021-03-29 12:14 - 2021-03-29 12:14 - 000000000 ____D C:\Users\AxelR\AppData\Local\D3DSCache
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-04-25 09:37 - 2021-02-08 14:02 - 000000000 ____D C:\Users\AxelR\AppData\Local\Discord
2021-04-25 09:37 - 2021-01-08 18:40 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\discord
2021-04-25 09:32 - 2012-08-25 18:45 - 000000000 ____D C:\Users\AxelR\AppData\LocalLow\AuthenTec
2021-04-25 09:29 - 2021-03-07 21:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-25 09:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-25 09:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-25 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-25 09:28 - 2019-02-17 16:41 - 000000000 ____D C:\Program Files\CCleaner
2021-04-24 17:55 - 2012-08-29 16:31 - 000000000 ____D C:\Users\AxelR\AppData\Local\CrashDumps
2021-04-24 17:14 - 2021-03-07 22:34 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3043588755-647529592-3784445252-1000
2021-04-24 17:14 - 2021-03-07 22:07 - 000002441 _____ C:\Users\AxelR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-24 17:14 - 2020-03-26 18:54 - 000000000 ___RD C:\Users\AxelR\OneDrive
2021-04-24 16:56 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-24 15:03 - 2020-03-26 17:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-24 15:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-04-24 14:53 - 2010-11-21 05:27 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-04-24 14:52 - 2021-03-07 22:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-04-24 14:52 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-04-24 14:52 - 2012-08-27 19:15 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-24 14:50 - 2018-09-17 20:10 - 000000000 ____D C:\Users\AxelR\AppData\Local\AVAST Software
2021-04-24 14:41 - 2020-03-26 17:36 - 000000000 ____D C:\Users\AxelR\AppData\Local\Packages
2021-04-24 14:41 - 2012-11-23 16:16 - 000000000 ____D C:\Users\AxelR\AppData\Local\Unity
2021-04-24 14:40 - 2015-09-20 18:17 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Samsung
2021-04-24 14:40 - 2015-09-20 18:17 - 000000000 ____D C:\Users\AxelR\AppData\Local\Samsung
2021-04-24 14:40 - 2015-09-20 18:11 - 000000000 ____D C:\Program Files (x86)\Samsung
2021-04-24 14:40 - 2011-11-08 13:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-04-24 14:36 - 2012-08-29 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2021-04-24 14:36 - 2011-11-08 12:46 - 000000000 ____D C:\Program Files (x86)\HP Games
2021-04-24 14:35 - 2020-04-30 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-04-24 14:35 - 2014-10-30 10:53 - 000000000 ____D C:\Riot Games
2021-04-24 14:20 - 2021-03-07 22:23 - 001923814 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-24 14:20 - 2019-12-07 16:49 - 000833030 _____ C:\WINDOWS\system32\perfh00C.dat
2021-04-24 14:20 - 2019-12-07 16:49 - 000167760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-04-24 14:20 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-24 14:13 - 2021-03-07 22:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-24 14:13 - 2021-03-07 22:07 - 000000000 ____D C:\Users\AxelR
2021-04-24 14:13 - 2021-01-26 10:47 - 000000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForAxelR.job
2021-04-24 14:11 - 2021-03-07 21:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-24 14:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-04-24 13:03 - 2020-06-28 20:01 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-24 12:50 - 2021-03-07 22:34 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-24 12:50 - 2021-03-07 22:34 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-24 12:50 - 2021-03-07 22:34 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-24 12:50 - 2021-03-07 22:34 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-24 12:50 - 2021-03-07 22:34 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-24 12:50 - 2021-03-07 22:34 - 000002790 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForAxelR
2021-04-24 12:50 - 2021-03-07 22:34 - 000002310 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-04-23 09:17 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-04-21 10:52 - 2020-09-30 08:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-20 11:11 - 2014-10-30 10:55 - 000000000 ____D C:\ProgramData\Riot Games
2021-04-14 18:01 - 2021-03-07 21:59 - 000491584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-14 11:51 - 2021-03-07 22:04 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 11:06 - 2021-02-03 14:39 - 000000000 ___HD C:\$WinREAgent
2021-04-14 10:56 - 2013-07-14 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 10:52 - 2012-11-16 16:40 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-06 16:13 - 2019-02-21 13:06 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-04 15:28 - 2020-04-03 16:50 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Zoom
2021-04-04 10:52 - 2020-11-15 10:26 - 000000000 ____D C:\Program Files\LibreOffice
2021-03-31 19:36 - 2020-04-30 13:37 - 000000000 ____D C:\Users\AxelR\AppData\Local\Riot Games
2021-03-31 13:41 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-31 13:40 - 2020-10-18 09:10 - 000177872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw56078c55ed4c91f2.tmp
2021-03-31 13:40 - 2020-04-15 08:26 - 000524416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswe9cc584b75cc2fee.tmp
2021-03-31 13:40 - 2019-02-19 19:15 - 000250328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8b31bb5f84780ee5.tmp
2021-03-31 13:40 - 2019-02-19 19:15 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7665bee88d72023a.tmp
2021-03-31 13:40 - 2013-03-10 12:24 - 000041304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd17b3c8e3abc8eda.tmp
2021-03-31 13:40 - 2013-03-10 12:23 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1b9ba4915fce8987.tmp
2021-03-31 13:40 - 2013-03-10 12:23 - 000083368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswfd4f5cc411eee2d4.tmp
2021-03-31 13:40 - 2012-08-27 19:16 - 000466696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw6c7f99891af13080.tmp
2021-03-31 13:40 - 2012-08-27 19:16 - 000107808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw706769a33de76e3d.tmp
2021-03-31 13:39 - 2019-02-19 19:15 - 000365520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb9ee324890de8f02.tmp
2021-03-31 13:39 - 2019-02-19 19:15 - 000035680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswdba80f8a5e9d3e7d.tmp
2021-03-31 13:39 - 2017-11-16 21:27 - 000208552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw151601a7e87c63b0.tmp
2021-03-31 13:39 - 2012-08-27 19:16 - 000850120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbd7d81555e4c3f04.tmp
2021-03-30 20:05 - 2021-03-14 18:00 - 000000000 ____D C:\Program Files\AZ-Launcher
2021-03-30 20:05 - 2021-01-02 20:15 - 000000000 ____D C:\Users\AxelR\AppData\Local\Bluestacks
2021-03-30 12:15 - 2016-10-20 18:49 - 000000000 ____D C:\ProgramData\WinZip
2021-03-29 17:54 - 2015-08-29 14:58 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\.minecraft
==================== Fichiers à la racine de certains dossiers ========
2021-03-14 20:24 - 2021-03-14 20:24 - 000000924 _____ () C:\Users\AxelR\AppData\Roaming\AdobeWLCMR2Cache.dat
2016-11-19 17:52 - 2017-02-01 16:52 - 000000245 _____ () C:\Users\AxelR\AppData\Roaming\WB.CFG
2021-04-04 11:31 - 2021-04-04 11:31 - 000003584 _____ () C:\Users\AxelR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par AxelR (administrateur) sur THOMASR-HP (Hewlett-Packard HP Pavilion dv6 Notebook PC) (25-04-2021 09:33:49)
Exécuté depuis C:\Users\AxelR\Desktop
Profils chargés: AxelR
Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Andrea Electronics Corporation) [Fichier non signé] C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros Communications Inc. -> Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe
(AuthenTec, Inc. -> HP) C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Discord Inc. -> Discord Inc.) C:\Users\AxelR\AppData\Local\Discord\app-1.0.9001\Discord.exe <6>
(EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Identity Protection Technology Software -> Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\AxelR\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WaaSMedicAgent.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILGE.EXE
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-06-02] (IDT, Inc.) [Fichier non signé]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Genshin Impact_Launcher] => C:\Program Files\Genshin Impact\launcher.exe
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [D44A50270CFE84CDC4AC056FC91709EFEA37D2B2._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Discord] => C:\Users\AxelR\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-05] (Valve -> Valve Corporation)
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3043588755-647529592-3784445252-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON XP-540 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRIE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-12-24] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.85\Installer\chrmstp.exe [2021-04-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7842.105\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2011-10-13] (Atheros Communications Inc. -> Atheros Commnucations) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2011-10-13] (Atheros Communications Inc. -> Atheros Commnucations) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2021-03-30]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0050CFAA-E03A-40B3-8A4F-9145CEE65623} - System32\Tasks\EPSON XP-215 217 Series Update {E46ECF8B-5A82-422E-A3F5-E8384C63B991} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {063582BD-4C32-41DA-B63F-EF3879D9DFBD} - System32\Tasks\EPSON XP-540 Series Update {1BE88734-BDF4-4D0C-9784-8C92464B3383} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {08AE5C30-1564-4ADD-B446-184B5DC69C8E} - System32\Tasks\{7CDB3C7B-CE17-41D6-ABEC-ADA8D3BDB376} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.27.80.101/fr/go/help.faq.installer?LastError=1603
Task: {0BDCA3FB-769A-42B6-BD72-9ED2051CEFA6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0DE47ED9-320F-49BF-920C-D576A8792E39} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {13D75C33-AAB3-419C-BD65-C7F197C7CBE3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-17] (Google Inc -> Google Inc.)
Task: {1468D089-AF19-4FF9-97C3-68D6788072E3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {15EECC54-46A7-43DA-9A1F-3F360DFAD4AB} - System32\Tasks\{3B177C7D-2BC9-4507-84E6-DB61C7C9572A} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {18E2EECA-56AD-479A-8CC2-95022AF8145E} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {190B3DB8-92F8-4903-BF80-8FF7B84AF0D5} - System32\Tasks\{C31FE568-F791-4D8E-83AB-BAF30506A8CE} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {1E936C92-87A7-42B8-9411-CDD494D3FB6D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {1F6E8DB6-F44C-45E2-8E63-401C9531E1BC} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {24BAC1AD-7EFA-4CB8-8F8C-BFAE5B40EB36} - System32\Tasks\{2C021864-4B95-480B-A94C-0A05BDF38FFC} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {2C39C993-5941-40D1-9DDD-E28805DB79CE} - System32\Tasks\{ABDA0907-E7D6-4A46-B3EC-E9A68CACFD1F} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {2DAEA57B-6F02-43D9-A391-C70102F5AF3E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2E1630BE-AC55-4CBD-A8A1-8914689752BB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2EF31884-B9F1-40CB-88DC-514D4FEF52D4} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {3215C3E0-E948-4C6C-A46F-9DEF8269D977} - System32\Tasks\{BB4A0DAC-3F70-436E-8D63-4D6D4048A76F} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Microsoft Games\Age of Mythology\UNINSTXP.EXE" -c /runtemp /addremove
Task: {32DB8081-CEB4-4879-8452-0CFD1D129F84} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {365519CD-92F4-4052-83ED-7A6B6836E234} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {38260919-42FB-4A66-8A59-31A43F1EA97C} - System32\Tasks\{2756333F-5D40-4A35-B545-901528D748F7} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {38634539-130C-4162-9F70-173CD5021049} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {392473AB-A9E3-4B93-9F34-9569C09B404D} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {39F928C0-0CB4-4FAD-A91D-D9D93FA2A556} - System32\Tasks\{EED1523F-0CC0-4B5D-BC7D-AA1C20293082} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {3D7265A6-3CFD-4281-B176-7CCA58DF23C0} - System32\Tasks\{18155C55-931F-423A-A65C-CB60032CF5C6} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {4007CBE7-595E-4A71-A9BE-FA3E662D3550} - System32\Tasks\{789AA71A-EEF7-4529-9626-1F19A8F37B0F} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {415E2A2E-01BB-4D43-B40F-3211F89EA5A8} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A722987-568D-4B23-A89C-C63F1CB529D6} - System32\Tasks\{68AB5DA9-0F2E-4D7D-B044-0E88B9D2BC50} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\ -c -c
Task: {5528F22C-2470-4715-ACAE-E274EF6898C7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {5982E2C4-C32D-4072-B895-C697F87D46EB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5C8F4E85-2115-418F-B10E-2BD50E9D0232} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5CCD78B0-6A0B-40F7-8754-CA169C580A13} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {5E4B54D8-1C72-4BFD-BCB4-C4D249CD6ED4} - System32\Tasks\{1B72B6BD-319F-4DC4-944D-7752E820025A} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.27.64.101/fr/go/help.faq.installer?LastError=1603
Task: {5EBD5875-C963-4F8B-99A6-B69BE044209F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {61438F11-0189-4E2D-8C5C-64F87C311394} - System32\Tasks\EPSON XP-215 217 Series Invitation {E46ECF8B-5A82-422E-A3F5-E8384C63B991} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {699A6464-6181-44C8-88F9-6DA079A9512E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6D987112-BB47-4032-88A0-17F247BAC603} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\Dependencies\RemEngine.exe [38456 2011-09-28] (Hewlett-Packard Company -> )
Task: {717B222D-1186-4A29-A0B9-97F831FA85EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {7213253E-7629-446B-9EAD-044D994809EC} - System32\Tasks\EPSON XP-215 217 Series Invitation {A61742F0-E27A-42B9-BFE6-07D425ADC247} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {74524E34-5346-49A6-A2EB-A94D7355F403} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-28] (Adobe Inc. -> Adobe)
Task: {76F62B56-3EC5-4E99-8E98-3E534315C301} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {79F95F29-5381-489E-8198-F86D07600241} - System32\Tasks\{CFD7BA2F-AFFB-4584-B318-B54C36A52CC3} => C:\Windows\system32\pcalua.exe -a F:\goodies\machine\machine.exe -d F:\ -c -l
Task: {7BCDAD4F-1CB4-48FE-9292-69CDDD900E45} - System32\Tasks\SafeZone scheduled Autoupdate 1458745192 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {7D301DE5-5A34-42E9-8FB9-AAC514E2041D} - System32\Tasks\EPSON XP-215 217 Series Update {A61742F0-E27A-42B9-BFE6-07D425ADC247} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {80B66D77-8CE5-48B1-BCF8-78BB548B56CD} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {80CA7FA6-79A6-40D6-ABE4-6221C1C74ADE} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {811C1EA6-5E7E-40D5-A19B-760D98F26B0C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {83618CD5-B006-4138-A68B-CB20187CC347} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {85D5858F-0AD7-4B5F-A312-550C52ADC3FF} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {85E84CC6-31B3-4798-9C2D-30BC9E0AEA7F} - System32\Tasks\{0D0FB949-3BAC-422A-9F0C-10D511472027} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {87D5212B-2D8A-4C8F-A7CE-DB80BD2576E2} - System32\Tasks\EPSON XP-215 217 Series Update {5D7EAFAB-C527-459E-AF01-733886102C51} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {88588823-F0B5-4B52-8760-6E030CFCE106} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {89A7F529-44D3-4B0F-B7C3-0F8A589D4AFC} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {8C02141B-DDA9-425B-9E88-5421E43F0DBB} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8D863BCF-7B10-4CEE-ADD9-DB7CB02F55A4} - System32\Tasks\{D7347244-E943-411E-BCEC-31519A9B19CB} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {958EAAFD-7040-472D-A162-11514C37ABD9} - System32\Tasks\{A81FCB21-EDE1-4660-B79A-1C87847151E3} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.21.0.100/fr/go/help.faq.installer?LastError=1603
Task: {9AAA8F57-C07F-483E-8280-DEC87DBFE7F1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9F509419-0144-49F7-A0B8-CEE0AECBB91C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A13C391D-1207-467F-A508-77AD715525D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2BA776F-A2E8-4803-91FA-986BEB2F1CA5} - System32\Tasks\{F17A069E-BE6C-44F6-BEE4-2F7B33879CDC} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {A96AE8CE-97EF-4ECE-8A0D-4B27EF3F05C8} - System32\Tasks\{C7F8E831-95C5-4FD1-833F-F7396CF45D2E} => "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/fr/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {AB02C827-A7AE-4A8E-9B7C-B7699E911F6F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736 2015-10-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {AB2C556B-6739-4193-A766-B65EF242E755} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AC599511-02FC-4F24-9131-68CCCC4BA8A8} - System32\Tasks\{9667C6F5-6F6C-4CEE-A7AF-939AA7342907} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\HPCeeScheduleForAxelR" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d7138f3f49ac46" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3043588755-647529592-3784445252-1000" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\WinZip Update Notifier 1" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\WinZip Update Notifier 2" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\WinZip Update Notifier 3" /ENABLE
Task: {ACC8115C-C564-4E23-9F7C-79FA2778BF09} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B0F61DE5-4785-4D5C-B0CB-8C632F7822DF} - System32\Tasks\{984F75F9-99B3-40EB-81ED-15F1095C9F74} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.7.0.103.161/fr/abandoninstall?page=tsProgressBar
Task: {B143D8C4-45F7-4C67-BD03-BD51ED66017E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B216D6A3-AD76-4657-BE04-F4E75B3AECBE} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {B35AA416-DEBD-4A91-9EA1-6233C5065716} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {B639C808-180E-4BAA-809F-6371E81941A4} - System32\Tasks\{6246C490-B4B6-4780-8FD9-8C7812736F5C} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {B65B751E-19BC-47E2-86CE-EC163DBEC560} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {BA4F6CA0-6A1B-4F0E-AC93-D969D7C5700D} - System32\Tasks\{D8B4C0C5-9AC8-4D0F-8D82-93482B3F628B} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {BAE6209C-FA76-4443-8825-4FDD5B0C545E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe
Task: {BC287F34-89A6-4B33-B265-84AFCDB56A56} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C1219010-8B04-48E7-B876-AE89E9D57919} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2859928 2020-09-28] (Corel Corporation -> Corel Corporation)
Task: {CAE76A68-1AF1-4F8F-9DAE-8F64F8EDF792} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CB5A3635-7176-4DBF-BB24-8BE843CAB579} - System32\Tasks\{DB717740-CBEF-46A6-BF16-26E1C1DFE375} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {CBD567E6-6E5C-4E4A-93F7-FEC3CC34195F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {CCB3D04C-7D6C-4524-9B1A-78C5AC3400FB} - System32\Tasks\{74221C29-576B-417C-8775-22934F6CB3F4} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {CF509DAF-339C-478C-863C-B73A471CC669} - System32\Tasks\EPSON XP-215 217 Series Invitation {5D7EAFAB-C527-459E-AF01-733886102C51} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {D11FD10B-7C2D-4D7F-8676-C3B416A6C90E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC47918C-0789-45F5-91B2-71A17FFAA395} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-02-17] (Google Inc -> Google Inc.)
Task: {DFBB2664-B168-41CA-85BE-5A07BC5DA846} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {E09E6328-658B-4066-9015-B93DDCF191FC} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {E39995BF-7E29-432C-97C5-3FA120AF0EEC} - System32\Tasks\HPCeeScheduleForAxelR => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800 2011-07-15] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {E9C9D4BE-2E90-42AC-8D4D-5C78A52DBC9C} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {EDB973A2-4791-41AB-8930-68697262E146} - System32\Tasks\{7AF0E2EC-A135-46D7-8774-BE4A1CED428B} => "c:\users\axelr\appdata\local\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?page=tsProgressBar
Task: {F0FBF003-52D6-45D2-8F32-98A8D9FCE7C3} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F5515870-97AC-4FB1-B8B3-BA2D308D3F61} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {F840C762-2B21-44F7-A20A-1EDE8AE0EFE6} - System32\Tasks\{EAD92410-33CA-4839-AF86-12160B23D9D1} => C:\Riot Games\League of Legends\lol.launcher.exe
Task: {F93E9064-6870-4639-B8C6-C8A40CA0AB71} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {FE5BDAB3-1981-4164-BE1A-F9B10B7F85EC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {5D7EAFAB-C527-459E-AF01-733886102C51}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {A61742F0-E27A-42B9-BFE6-07D425ADC247}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {E46ECF8B-5A82-422E-A3F5-E8384C63B991}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {5D7EAFAB-C527-459E-AF01-733886102C51}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{5D7EAFAB-C527-459E-AF01-733886102C51} /F:UpdateWORKGROUP\AXELR-HP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {A61742F0-E27A-42B9-BFE6-07D425ADC247}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{A61742F0-E27A-42B9-BFE6-07D425ADC247} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {E46ECF8B-5A82-422E-A3F5-E8384C63B991}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{E46ECF8B-5A82-422E-A3F5-E8384C63B991} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-540 Series Update {1BE88734-BDF4-4D0C-9784-8C92464B3383}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE:/EXE:{1BE88734-BDF4-4D0C-9784-8C92464B3383} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\HPCeeScheduleForAxelR.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{24EB46D4-94D3-4E4A-B011-2C8CBD7F0A8F}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\AxelR\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-24]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\AxelR\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-04-18]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: b1fskn28.default
FF ProfilePath: C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default [2021-03-31]
FF Homepage: Mozilla\Firefox\Profiles\b1fskn28.default -> hxxps://www.malwarebytes.org/restorebrowser/0d2bb041¶m1=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%3D¶m2=NGVdNatdLWB5
FF NewTab: Mozilla\Firefox\Profiles\b1fskn28.default -> about:newtab
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\sp@avast.com.xpi [2019-02-19]
FF Extension: (Avast Online Security) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\wrc@avast.com.xpi [2018-07-27]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-01-26]
FF SearchPlugin: C:\Users\AxelR\AppData\Roaming\Mozilla\Firefox\Profiles\b1fskn28.default\searchplugins\search provided by bing.xml [2016-10-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default [2021-04-25]
CHR Notifications: Default -> hxxps://www.cnetfrance.fr
CHR StartupUrls: Default -> "hxxp://www.yahoo.fr/"
CHR Extension: (Website Logon) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\debkinhcgejcbfgjiaalomcmkedjmiaa [2012-08-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Battlefield Play4Free) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\AxelR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-22]
CHR HKU\S-1-5-21-3043588755-647529592-3784445252-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]
CHR HKLM-x32\...\Chrome\Extension: [debkinhcgejcbfgjiaalomcmkedjmiaa] - C:\Program Files (x86)\HP SimplePass 2012\tschrome.crx [2011-08-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
HKLM\SYSTEM\CurrentControlSet\Services\aswSP <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswMonFlt <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswSnx <==== ATTENTION (Rootkit!)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128 2015-10-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-28] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation) [Fichier non signé]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2014-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé]
R2 FPLService; C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [260424 2011-08-26] (AuthenTec, Inc. -> HP)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2413056 2013-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-26] (Malwarebytes Inc -> Malwarebytes)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [64512 2009-07-14] (Microsoft Windows -> Hewlett-Packard)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [301568 2011-06-02] (IDT, Inc.) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-10-13] (Atheros Communications Inc. -> Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 clwvd; C:\WINDOWS\System32\DRIVERS\clwvd.sys [31088 2010-07-28] (CyberLink -> CyberLink Corporation)
S3 intelkmd; C:\WINDOWS\System32\DRIVERS\igdpmd64.sys [12289472 2011-08-09] (Intel Corporation) [Fichier non signé]
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220600 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-18] (Malwarebytes Inc -> Malwarebytes)
R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [232792 2021-03-08] (Valve Corp. -> Valve Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-04-25 09:33 - 2021-04-25 09:38 - 000044157 _____ C:\Users\AxelR\Desktop\FRST.txt
2021-04-24 18:42 - 2021-04-25 09:36 - 000000000 ____D C:\FRST
2021-04-24 18:42 - 2021-04-24 18:40 - 002298368 _____ (Farbar) C:\Users\AxelR\Desktop\FRST64.exe
2021-04-24 18:40 - 2021-04-24 18:40 - 002298368 _____ (Farbar) C:\Users\AxelR\Downloads\FRST64.exe
2021-04-24 18:26 - 2021-04-24 18:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-24 18:26 - 2021-04-24 18:26 - 000000992 _____ C:\Users\Public\Desktop\Steam.lnk
2021-04-24 18:26 - 2021-04-24 18:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-04-24 18:25 - 2021-04-24 18:25 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup (2).exe
2021-04-24 14:59 - 2021-04-24 15:14 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\ZHP
2021-04-24 14:59 - 2021-04-24 14:59 - 000000905 _____ C:\Users\AxelR\Desktop\ZHPSuite.lnk
2021-04-24 14:59 - 2021-04-24 14:59 - 000000000 ____D C:\Users\AxelR\AppData\Local\ZHP
2021-04-24 14:59 - 2021-04-24 14:45 - 003468440 _____ (Nicolas Coolman) C:\Users\AxelR\Desktop\ZHPSuite.exe
2021-04-24 14:45 - 2021-04-24 14:45 - 003468440 _____ (Nicolas Coolman) C:\Users\AxelR\Downloads\ZHPSuite.exe
2021-04-20 08:26 - 2021-04-20 08:26 - 001300792 _____ C:\Users\AxelR\Downloads\video0-1.mp4
2021-04-18 14:23 - 2021-04-18 14:23 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-14 11:56 - 2021-04-14 11:56 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-14 11:54 - 2021-04-14 11:54 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-14 11:53 - 2021-04-14 11:53 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 07:15 - 2021-04-24 12:50 - 000003368 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7138f3f49ac46
2021-04-11 17:25 - 2021-04-23 20:26 - 000000000 ____D C:\Users\AxelR\BrawlhallaReplays
2021-04-11 17:22 - 2021-04-11 17:23 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\BrawlhallaAir
2021-04-11 14:23 - 2021-03-08 10:29 - 000232792 _____ (Valve Corporation) C:\WINDOWS\system32\Drivers\steamxbox.sys
2021-04-11 14:17 - 2021-04-11 14:17 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup.exe
2021-04-11 14:17 - 2021-04-11 14:17 - 001770744 _____ C:\Users\AxelR\Downloads\SteamSetup (1).exe
2021-04-11 07:51 - 2021-04-11 07:51 - 000000000 ____D C:\Users\AxelR\AppData\LocalLow\miHoYo
2021-04-09 12:58 - 2021-04-09 12:58 - 001262864 _____ C:\Users\AxelR\Downloads\¡Despierta! ¡Desayuna!.1.mp4
2021-04-09 12:54 - 2021-04-09 12:54 - 000000000 ____D C:\Users\AxelR\AppData\Local\miHoYo
2021-04-09 12:48 - 2021-04-09 12:49 - 124745448 _____ (miHoYo) C:\Users\AxelR\Downloads\GenshinImpact_install_20210323145008 (1).exe
2021-04-09 12:45 - 2021-04-09 12:46 - 124745448 _____ (miHoYo) C:\Users\AxelR\Downloads\GenshinImpact_install_20210323145008.exe
2021-04-09 11:09 - 2021-04-09 11:10 - 075693160 _____ (miHoYo) C:\Users\AxelR\Downloads\Non confirmé 286527.crdownload
2021-04-08 18:29 - 2021-04-08 18:30 - 053575680 _____ C:\Users\AxelR\Downloads\Hextech Repair Tool.msi
2021-04-07 10:58 - 2021-04-07 10:58 - 000008352 _____ C:\Users\AxelR\Downloads\1815-70 vote Thomas ROBIN 4e4.odt
2021-04-07 10:43 - 2021-04-07 10:43 - 000000801 _____ C:\Users\AxelR\Downloads\Objets 3D - Raccourci.lnk
2021-04-07 09:50 - 2021-04-07 09:50 - 000022475 _____ C:\Users\AxelR\Desktop\1815-70 vote Thomas ROBIN 4e4.odt
2021-04-04 15:32 - 2021-04-04 15:32 - 000001996 _____ C:\Users\AxelR\Desktop\Zoom.lnk
2021-04-04 15:28 - 2021-04-04 15:28 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-04-04 15:27 - 2021-04-04 17:18 - 000734964 _____ C:\Users\AxelR\Desktop\praxino.odp
2021-04-04 11:31 - 2021-04-04 11:31 - 001373484 _____ C:\Users\AxelR\Downloads\Praxinoscope vidéo.avi
2021-04-04 11:31 - 2021-04-04 11:31 - 000003584 _____ C:\Users\AxelR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-04-04 11:28 - 2021-04-04 11:28 - 000131590 _____ C:\Users\AxelR\Downloads\Praxinoscope vidéo.webm
2021-04-04 11:05 - 2021-04-04 11:05 - 000000000 ____D C:\Users\Public\Documents\sun
2021-04-04 10:53 - 2021-04-04 10:53 - 000001060 _____ C:\Users\Public\Desktop\LibreOffice 7.1.lnk
2021-04-04 10:53 - 2021-04-04 10:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1
2021-04-04 10:40 - 2021-04-04 10:45 - 328597504 _____ C:\Users\AxelR\Downloads\LibreOffice_7.1.2_Win_x64 (3).msi
2021-04-04 09:21 - 2021-04-04 09:25 - 328597504 _____ C:\Users\AxelR\Downloads\LibreOffice_7.1.2_Win_x64.msi
2021-03-31 13:41 - 2021-03-31 13:40 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-03-31 13:41 - 2021-03-31 13:40 - 000216376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1e26bc81f57b2be1.tmp
2021-03-31 07:07 - 2021-03-31 07:07 - 000001108 _____ C:\Users\AxelR\Desktop\Techno bases, techniques - Raccourci.lnk
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\StateSlots
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\Cheats
2021-03-30 12:26 - 2021-03-30 12:26 - 000000000 ____D C:\Users\AxelR\Downloads\Battery
2021-03-30 12:22 - 2021-03-30 12:25 - 268435456 _____ C:\Users\AxelR\Downloads\IE1FR (4).nds
2021-03-30 12:21 - 2021-03-30 12:21 - 000000000 ____D C:\Users\AxelR\Downloads\Roms
2021-03-30 12:17 - 2021-03-31 20:43 - 000001543 _____ C:\Users\AxelR\Downloads\desmume.ini
2021-03-30 12:16 - 2021-04-01 19:27 - 000000000 ____D C:\Users\AxelR\Downloads\DeSmuME_0.9.12_29.09.2020_64_Bits (2)
2021-03-30 12:16 - 2021-03-30 12:16 - 005184220 _____ C:\Users\AxelR\Downloads\Non confirmé 796198.crdownload
2021-03-30 12:14 - 2021-04-24 12:50 - 000002686 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2021-03-30 12:14 - 2021-04-24 12:50 - 000002684 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2021-03-30 12:14 - 2021-04-24 12:50 - 000002684 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2021-03-30 12:14 - 2021-03-30 12:17 - 000000000 ____D C:\Users\AxelR\AppData\Local\WinZip
2021-03-30 12:14 - 2021-03-30 12:14 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2021-03-30 12:14 - 2021-03-30 12:14 - 000001987 _____ C:\Users\Public\Desktop\WinZip.lnk
2021-03-30 12:14 - 2021-03-30 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2021-03-30 12:14 - 2021-03-30 12:14 - 000000000 ____D C:\Program Files\WinZip
2021-03-29 12:14 - 2021-03-29 12:14 - 000000000 ____D C:\Users\AxelR\AppData\Local\D3DSCache
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-04-25 09:37 - 2021-02-08 14:02 - 000000000 ____D C:\Users\AxelR\AppData\Local\Discord
2021-04-25 09:37 - 2021-01-08 18:40 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\discord
2021-04-25 09:32 - 2012-08-25 18:45 - 000000000 ____D C:\Users\AxelR\AppData\LocalLow\AuthenTec
2021-04-25 09:29 - 2021-03-07 21:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-25 09:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-25 09:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-25 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-25 09:28 - 2019-02-17 16:41 - 000000000 ____D C:\Program Files\CCleaner
2021-04-24 17:55 - 2012-08-29 16:31 - 000000000 ____D C:\Users\AxelR\AppData\Local\CrashDumps
2021-04-24 17:14 - 2021-03-07 22:34 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3043588755-647529592-3784445252-1000
2021-04-24 17:14 - 2021-03-07 22:07 - 000002441 _____ C:\Users\AxelR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-24 17:14 - 2020-03-26 18:54 - 000000000 ___RD C:\Users\AxelR\OneDrive
2021-04-24 16:56 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-24 15:03 - 2020-03-26 17:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-24 15:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-04-24 14:53 - 2010-11-21 05:27 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-04-24 14:52 - 2021-03-07 22:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-04-24 14:52 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-04-24 14:52 - 2012-08-27 19:15 - 000000000 ____D C:\ProgramData\AVAST Software
2021-04-24 14:50 - 2018-09-17 20:10 - 000000000 ____D C:\Users\AxelR\AppData\Local\AVAST Software
2021-04-24 14:41 - 2020-03-26 17:36 - 000000000 ____D C:\Users\AxelR\AppData\Local\Packages
2021-04-24 14:41 - 2012-11-23 16:16 - 000000000 ____D C:\Users\AxelR\AppData\Local\Unity
2021-04-24 14:40 - 2015-09-20 18:17 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Samsung
2021-04-24 14:40 - 2015-09-20 18:17 - 000000000 ____D C:\Users\AxelR\AppData\Local\Samsung
2021-04-24 14:40 - 2015-09-20 18:11 - 000000000 ____D C:\Program Files (x86)\Samsung
2021-04-24 14:40 - 2011-11-08 13:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-04-24 14:36 - 2012-08-29 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2021-04-24 14:36 - 2011-11-08 12:46 - 000000000 ____D C:\Program Files (x86)\HP Games
2021-04-24 14:35 - 2020-04-30 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-04-24 14:35 - 2014-10-30 10:53 - 000000000 ____D C:\Riot Games
2021-04-24 14:20 - 2021-03-07 22:23 - 001923814 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-24 14:20 - 2019-12-07 16:49 - 000833030 _____ C:\WINDOWS\system32\perfh00C.dat
2021-04-24 14:20 - 2019-12-07 16:49 - 000167760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-04-24 14:20 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-24 14:13 - 2021-03-07 22:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-24 14:13 - 2021-03-07 22:07 - 000000000 ____D C:\Users\AxelR
2021-04-24 14:13 - 2021-01-26 10:47 - 000000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForAxelR.job
2021-04-24 14:11 - 2021-03-07 21:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-24 14:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-04-24 13:03 - 2020-06-28 20:01 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-24 12:50 - 2021-03-07 22:34 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-24 12:50 - 2021-03-07 22:34 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-24 12:50 - 2021-03-07 22:34 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-24 12:50 - 2021-03-07 22:34 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-24 12:50 - 2021-03-07 22:34 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-24 12:50 - 2021-03-07 22:34 - 000002790 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForAxelR
2021-04-24 12:50 - 2021-03-07 22:34 - 000002310 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-04-23 09:17 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-04-21 10:52 - 2020-09-30 08:38 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-20 11:11 - 2014-10-30 10:55 - 000000000 ____D C:\ProgramData\Riot Games
2021-04-14 18:01 - 2021-03-07 21:59 - 000491584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-14 17:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-14 17:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-14 11:51 - 2021-03-07 22:04 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 11:06 - 2021-02-03 14:39 - 000000000 ___HD C:\$WinREAgent
2021-04-14 10:56 - 2013-07-14 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 10:52 - 2012-11-16 16:40 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-06 16:13 - 2019-02-21 13:06 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-04 15:28 - 2020-04-03 16:50 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\Zoom
2021-04-04 10:52 - 2020-11-15 10:26 - 000000000 ____D C:\Program Files\LibreOffice
2021-03-31 19:36 - 2020-04-30 13:37 - 000000000 ____D C:\Users\AxelR\AppData\Local\Riot Games
2021-03-31 13:41 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-31 13:40 - 2020-10-18 09:10 - 000177872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw56078c55ed4c91f2.tmp
2021-03-31 13:40 - 2020-04-15 08:26 - 000524416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswe9cc584b75cc2fee.tmp
2021-03-31 13:40 - 2019-02-19 19:15 - 000250328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8b31bb5f84780ee5.tmp
2021-03-31 13:40 - 2019-02-19 19:15 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7665bee88d72023a.tmp
2021-03-31 13:40 - 2013-03-10 12:24 - 000041304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd17b3c8e3abc8eda.tmp
2021-03-31 13:40 - 2013-03-10 12:23 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw1b9ba4915fce8987.tmp
2021-03-31 13:40 - 2013-03-10 12:23 - 000083368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswfd4f5cc411eee2d4.tmp
2021-03-31 13:40 - 2012-08-27 19:16 - 000466696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw6c7f99891af13080.tmp
2021-03-31 13:40 - 2012-08-27 19:16 - 000107808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw706769a33de76e3d.tmp
2021-03-31 13:39 - 2019-02-19 19:15 - 000365520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb9ee324890de8f02.tmp
2021-03-31 13:39 - 2019-02-19 19:15 - 000035680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswdba80f8a5e9d3e7d.tmp
2021-03-31 13:39 - 2017-11-16 21:27 - 000208552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw151601a7e87c63b0.tmp
2021-03-31 13:39 - 2012-08-27 19:16 - 000850120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbd7d81555e4c3f04.tmp
2021-03-30 20:05 - 2021-03-14 18:00 - 000000000 ____D C:\Program Files\AZ-Launcher
2021-03-30 20:05 - 2021-01-02 20:15 - 000000000 ____D C:\Users\AxelR\AppData\Local\Bluestacks
2021-03-30 12:15 - 2016-10-20 18:49 - 000000000 ____D C:\ProgramData\WinZip
2021-03-29 17:54 - 2015-08-29 14:58 - 000000000 ____D C:\Users\AxelR\AppData\Roaming\.minecraft
==================== Fichiers à la racine de certains dossiers ========
2021-03-14 20:24 - 2021-03-14 20:24 - 000000924 _____ () C:\Users\AxelR\AppData\Roaming\AdobeWLCMR2Cache.dat
2016-11-19 17:52 - 2017-02-01 16:52 - 000000245 _____ () C:\Users\AxelR\AppData\Roaming\WB.CFG
2021-04-04 11:31 - 2021-04-04 11:31 - 000003584 _____ () C:\Users\AxelR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================