Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2021
Exécuté par HYPER DISCOUNT (administrateur) sur HYPERDISCOUNT (Hewlett-Packard HP Pavilion 15 Notebook PC) (14-05-2021 09:04:08)
Exécuté depuis C:\Users\HYPER DISCOUNT\Desktop\Nouveau dossier
Profils chargés: HYPER DISCOUNT
Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.925_none_e76d4f6f260a683e\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7156296 2013-03-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-06] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2017-03-17] (TomTom International BV -> TomTom)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-06] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [BitTorrent] => C:\Users\HYPER DISCOUNT\AppData\Roaming\BitTorrent\BitTorrent.exe [2079728 2020-03-02] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8000600 2020-03-02] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [uTorrent] => C:\Users\HYPER DISCOUNT\AppData\Roaming\uTorrent\uTorrent.exe [2073320 2020-03-15] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\FlowSync.exe [1397248 2018-09-17] (Polar Electro Oy) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\hpcpp155: C:\Windows\System32\spool\prtprocs\x64\hpcpp155.DLL [596256 2013-08-21] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpipp161: C:\Windows\System32\spool\prtprocs\x64\hpipp161.dll [728576 2016-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP AB11 Status Monitor: C:\WINDOWS\system32\hpinkstsAB11LM.dll [336416 2013-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [365568 2012-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ZDesigner Language Monitor: C:\WINDOWS\system32\zdnNLM64.dll [202240 2012-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Euro Plus d.o.o.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {118671C5-BCC3-4C47-B801-25FB78718332} - \WPD\SqmUpload_S-1-5-21-3331395947-3643601650-1224951885-1002 -> Pas de fichier <==== ATTENTION
Task: {19B7C1CE-DBDE-40C2-9F7F-3B32E13D41DF} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {25C02217-7BFC-4348-8A33-297892398FBF} - System32\Tasks\AVG-SSU_0916tb => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: {2CDAF01F-5A15-457F-866A-D8DF681B2BB7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN56D341MN => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37036330-BD6B-492C-8762-34DABFEDE890} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B3E651F-EC63-4C4A-85CE-C1B14FEE8E6F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {3D162B64-BE8E-436C-945E-0ABB7FC92362} - System32\Tasks\AVG-SSU_0916tb_DELETE => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: {458A6D29-12DA-41AE-954F-7AEB97D7E04B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {57AF7AC5-6497-4839-AE87-98C4486BA5F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {5D0A3EF9-1AB3-4196-8651-AF14082DF409} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {6C277DD4-AB21-4CCC-92FE-EBB1978C6287} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C68543B-6032-4A0A-B902-5C7E943BAB17} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-16] (HP Inc. -> )
Task: {6DE85F87-EC90-4791-A77B-DD35A866012D} - System32\Tasks\HPCustParticipation HP Officejet Pro X576dw MFP => C:\Program Files\HP\HP Officejet Pro X576dw MFP\Bin\HPCustPartic.exe [5743648 2013-09-11] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {73AB4F81-90BC-4E39-AEAB-E0F8732DC58A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {7D5D4B07-E74F-4074-A5E2-BCD522DB8B73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {82BA1039-ABA7-4DC3-AC81-D45DA91F78F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-08] (Google Inc -> Google Inc.)
Task: {830DBFA8-939B-4ED4-B61A-98F0705D77AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {83C9BDD7-DE84-4A8B-97C8-FC8FA72F854C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {84DB0895-E658-4922-AC8E-BAFF365EDB7F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [352368 2021-03-26] (HP Inc. -> HP Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8A605BF3-EFD2-4DFD-8556-16804048301C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8F671980-7052-4E45-B062-284B54556E13} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {96EC110B-BB39-4AFA-B724-A4FA9DFB075E} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {AA420A49-7B2E-4B7B-B707-D907137FFD83} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\HYPER DISCOUNT\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {AB753196-AA62-4237-A768-3D0FE695BBEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-08] (Google Inc -> Google Inc.)
Task: {B8B86810-7C86-41FE-AFCF-4E8912D19816} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4179040 2016-12-27] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {BBF9CA5E-950B-4EAC-B7EB-EDC626F16248} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-06] (Piriform Ltd -> Piriform Ltd)
Task: {C5040EE5-5E97-4F28-AE28-8E8F4F8BF68B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF108707-64E0-48F2-A9A2-C9CF2FA8775D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {D0D4DDF5-181C-4C84-9501-374D0D14269A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D1EB7F85-2D5C-4DB2-8934-35AE83B7D66A} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {DA79B7C1-81BF-45BA-96EE-A514CCC58E69} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E23EC94C-1BCB-424A-91EA-F6E153ED7068} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {E7FE8FFA-C8C1-4153-819E-FD6B6FCE03A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EC23FD56-EBF4-4FE3-B427-4EC3B0BA3643} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {F5F2EF7D-2136-41DF-AEEC-6CCCC45C322B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBD28556-0363-489D-BF21-7FA0CA68F622} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\AVG-SSU_0916tb.job => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: C:\WINDOWS\Tasks\AVG-SSU_0916tb_DELETE.job => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6dda29af-d798-4643-b1da-0dcc71a96d8d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b914cbbc-1f1b-4c8f-a196-f5018e0a7cc1}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-12]
FireFox:
========
FF ProfilePath: C:\Users\HYPER DISCOUNT\AppData\Roaming\TomTom\HOME\Profiles\4gezyihw.default [2017-04-29]
FF ProfilePath: C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default [2021-05-12]
FF Homepage: Mozilla\Firefox\Profiles\1hzzeg5f.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-03-02 05:39:48&bName=&bitmask=0600
FF NewTab: Mozilla\Firefox\Profiles\1hzzeg5f.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-03-02 05:39:48&bName=&bitmask=0600
FF Extension: (Firefox Hotfix) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-12] []
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\sp@avast.com.xpi [2019-02-25]
FF Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\wrc@avast.com.xpi [2018-06-25]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default [2021-04-27]
CHR DownloadDir: C:\Users\HYPER DISCOUNT\Desktop
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Google Slides) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-08]
CHR Extension: (Google Docs) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-08]
CHR Extension: (Google Drive) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-08]
CHR Extension: (YouTube) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-08]
CHR Extension: (Google Sheets) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-08]
CHR Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-08]
CHR Extension: (Gmail) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-01-07]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-05-13]
CHR StartupUrls: Profile 1 -> "hxxp://www.google.fr/"
CHR Extension: (Slides) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-09]
CHR Extension: (Adobe Acrobat) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-02]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Sheets) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-29]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [98208 2009-11-18] (Andrea Electronics -> Andrea Electronics Corporation)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [Fichier non signé]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd -> Disc Soft Ltd)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-05-16] (Hewlett-Packard) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-05-16] (Hewlett-Packard) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29272 2020-03-02] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 MpKsl319d825d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50DEB0EB-842E-445F-BCA6-7F27EB3A834B}\MpKslDrv.sys [47336 2021-05-13] (Microsoft Windows -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-13 22:27 - 2021-05-13 22:27 - 000201198 _____ C:\Users\HYPER DISCOUNT\Desktop\facture hypnose.pdf
2021-05-13 22:23 - 2021-05-14 09:04 - 000000000 ____D C:\Users\HYPER DISCOUNT\Desktop\Nouveau dossier
2021-05-13 21:55 - 2021-05-13 21:55 - 000297558 _____ C:\Users\HYPER DISCOUNT\Documents\salaire avril 2021.pdf
2021-05-12 22:09 - 2021-05-12 22:50 - 000012942 _____ C:\Users\HYPER DISCOUNT\Documents\PLANNING REPAS MENSUEL.xlsx
2021-05-12 19:45 - 2021-05-14 09:06 - 000000000 ____D C:\FRST
2021-05-12 19:44 - 2021-05-12 19:45 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-05-12 19:44 - 2021-05-12 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-04-16 21:17 - 2021-04-16 21:17 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-16 21:14 - 2021-04-16 21:14 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-16 21:13 - 2021-04-16 21:13 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-14 09:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-13 22:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-13 22:23 - 2021-01-22 14:43 - 000058956 _____ C:\Users\HYPER DISCOUNT\Documents\Facture mensuelle.xlsx
2021-05-13 21:35 - 2020-11-06 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-12 20:37 - 2020-11-06 19:47 - 001923774 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-12 20:37 - 2019-12-07 16:49 - 000833030 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-12 20:37 - 2019-12-07 16:49 - 000167760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-12 20:37 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-12 20:30 - 2020-11-06 20:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-12 20:30 - 2020-11-06 19:18 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-12 20:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-12 20:30 - 2016-11-09 17:15 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-12 20:30 - 2015-06-29 16:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-12 20:29 - 2016-11-09 17:15 - 000000000 ____D C:\Program Files\AVAST Software
2021-05-12 20:28 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-12 20:28 - 2016-11-09 21:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-05-12 20:19 - 2017-04-15 10:03 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 20:01 - 2017-03-13 10:57 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-05-12 19:57 - 2020-11-06 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-05-12 19:51 - 2018-07-03 23:10 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\AVAST Software
2021-05-12 19:30 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-12 19:29 - 2020-06-19 00:19 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-12 19:12 - 2020-11-06 17:18 - 000000000 ____D C:\Users\HYPER DISCOUNT
2021-05-12 19:04 - 2016-09-23 17:46 - 000000466 _____ C:\WINDOWS\Tasks\AVG-SSU_0916tb_DELETE.job
2021-05-12 19:04 - 2016-09-23 17:45 - 000000606 _____ C:\WINDOWS\Tasks\AVG-SSU_0916tb.job
2021-05-06 22:33 - 2020-11-06 20:07 - 000002966 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7564E3FA-EE7C-4E89-A673-CC09B7B97CEA}
2021-05-06 22:33 - 2020-11-06 20:07 - 000002752 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:33 - 2020-11-06 20:07 - 000002320 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3331395947-3643601650-1224951885-500
2021-05-06 22:33 - 2020-11-06 20:07 - 000002040 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2021-05-06 22:32 - 2020-11-30 09:53 - 000003368 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b46468243976
2021-05-06 22:32 - 2020-11-06 20:07 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-06 22:32 - 2020-11-06 20:07 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-06 22:32 - 2020-11-06 20:07 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-05-06 22:32 - 2020-11-06 20:07 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-06 22:32 - 2020-11-06 20:07 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-06 22:32 - 2020-11-06 20:07 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-06 22:32 - 2020-11-06 20:07 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:32 - 2020-11-06 20:07 - 000002710 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP ENVY 4500 series
2021-05-06 22:32 - 2020-11-06 20:07 - 000002686 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task
2021-05-06 22:32 - 2020-11-06 20:07 - 000002660 _____ C:\WINDOWS\system32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:32 - 2020-11-06 20:07 - 000002526 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Officejet Pro X576dw MFP
2021-05-06 22:32 - 2020-11-06 20:07 - 000002370 _____ C:\WINDOWS\system32\Tasks\AVG-SSU_0916tb
2021-05-06 22:32 - 2020-11-06 20:07 - 000002254 _____ C:\WINDOWS\system32\Tasks\AVG-SSU_0916tb_DELETE
2021-05-06 22:32 - 2020-11-06 20:07 - 000002096 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-05 21:35 - 2020-11-06 17:18 - 000002483 _____ C:\Users\HYPER DISCOUNT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-05 21:35 - 2015-12-02 11:21 - 000000000 ___RD C:\Users\HYPER DISCOUNT\OneDrive
2021-05-05 12:11 - 2018-09-18 14:44 - 000000000 ____D C:\Users\HYPER DISCOUNT\Documents\NOUNOU
2021-04-30 13:50 - 2020-10-01 07:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-29 21:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-27 20:03 - 2020-11-06 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-04-22 11:37 - 2021-01-26 17:05 - 000000000 ___RD C:\Users\HYPER DISCOUNT\Documents\Scanned Documents
2021-04-22 11:27 - 2018-10-22 10:57 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\CrashDumps
2021-04-19 16:48 - 2017-12-27 21:27 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\Packages
2021-04-17 20:52 - 2021-02-08 22:28 - 000000000 ____D C:\Users\HYPER DISCOUNT\Desktop\photo à développer
2021-04-16 22:10 - 2020-11-06 19:18 - 000470160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-16 21:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-16 21:12 - 2020-11-06 19:23 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-16 19:55 - 2013-08-23 08:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-16 19:46 - 2013-08-23 08:33 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-16 19:44 - 2016-11-23 13:58 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-04-16 19:40 - 2013-08-22 15:25 - 000000167 _____ C:\WINDOWS\win.ini
2021-04-16 19:30 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== Fichiers à la racine de certains dossiers ========
2015-06-29 15:50 - 2015-06-29 15:50 - 000000017 _____ () C:\Users\HYPER DISCOUNT\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par HYPER DISCOUNT (administrateur) sur HYPERDISCOUNT (Hewlett-Packard HP Pavilion 15 Notebook PC) (14-05-2021 09:04:08)
Exécuté depuis C:\Users\HYPER DISCOUNT\Desktop\Nouveau dossier
Profils chargés: HYPER DISCOUNT
Platform: Windows 10 Home Version 2004 19041.928 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.925_none_e76d4f6f260a683e\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7156296 2013-03-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-02-25] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-06] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2017-03-17] (TomTom International BV -> TomTom)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-06] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [BitTorrent] => C:\Users\HYPER DISCOUNT\AppData\Roaming\BitTorrent\BitTorrent.exe [2079728 2020-03-02] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8000600 2020-03-02] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [uTorrent] => C:\Users\HYPER DISCOUNT\AppData\Roaming\uTorrent\uTorrent.exe [2073320 2020-03-15] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3331395947-3643601650-1224951885-1002\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\FlowSync.exe [1397248 2018-09-17] (Polar Electro Oy) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\hpcpp155: C:\Windows\System32\spool\prtprocs\x64\hpcpp155.DLL [596256 2013-08-21] (Hewlett-Packard Company -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpipp161: C:\Windows\System32\spool\prtprocs\x64\hpipp161.dll [728576 2016-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP AB11 Status Monitor: C:\WINDOWS\system32\hpinkstsAB11LM.dll [336416 2013-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [365568 2012-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\WINDOWS\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ZDesigner Language Monitor: C:\WINDOWS\system32\zdnNLM64.dll [202240 2012-10-25] (Microsoft Windows Hardware Compatibility Publisher -> Euro Plus d.o.o.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {118671C5-BCC3-4C47-B801-25FB78718332} - \WPD\SqmUpload_S-1-5-21-3331395947-3643601650-1224951885-1002 -> Pas de fichier <==== ATTENTION
Task: {19B7C1CE-DBDE-40C2-9F7F-3B32E13D41DF} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {25C02217-7BFC-4348-8A33-297892398FBF} - System32\Tasks\AVG-SSU_0916tb => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: {2CDAF01F-5A15-457F-866A-D8DF681B2BB7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN56D341MN => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37036330-BD6B-492C-8762-34DABFEDE890} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B3E651F-EC63-4C4A-85CE-C1B14FEE8E6F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {3D162B64-BE8E-436C-945E-0ABB7FC92362} - System32\Tasks\AVG-SSU_0916tb_DELETE => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: {458A6D29-12DA-41AE-954F-7AEB97D7E04B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {57AF7AC5-6497-4839-AE87-98C4486BA5F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {5D0A3EF9-1AB3-4196-8651-AF14082DF409} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe
Task: {6C277DD4-AB21-4CCC-92FE-EBB1978C6287} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C68543B-6032-4A0A-B902-5C7E943BAB17} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-16] (HP Inc. -> )
Task: {6DE85F87-EC90-4791-A77B-DD35A866012D} - System32\Tasks\HPCustParticipation HP Officejet Pro X576dw MFP => C:\Program Files\HP\HP Officejet Pro X576dw MFP\Bin\HPCustPartic.exe [5743648 2013-09-11] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {73AB4F81-90BC-4E39-AEAB-E0F8732DC58A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {7D5D4B07-E74F-4074-A5E2-BCD522DB8B73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {82BA1039-ABA7-4DC3-AC81-D45DA91F78F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-08] (Google Inc -> Google Inc.)
Task: {830DBFA8-939B-4ED4-B61A-98F0705D77AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {83C9BDD7-DE84-4A8B-97C8-FC8FA72F854C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {84DB0895-E658-4922-AC8E-BAFF365EDB7F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [352368 2021-03-26] (HP Inc. -> HP Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8A605BF3-EFD2-4DFD-8556-16804048301C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8F671980-7052-4E45-B062-284B54556E13} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {96EC110B-BB39-4AFA-B724-A4FA9DFB075E} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {AA420A49-7B2E-4B7B-B707-D907137FFD83} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\HYPER DISCOUNT\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {AB753196-AA62-4237-A768-3D0FE695BBEF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-08] (Google Inc -> Google Inc.)
Task: {B8B86810-7C86-41FE-AFCF-4E8912D19816} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4179040 2016-12-27] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {BBF9CA5E-950B-4EAC-B7EB-EDC626F16248} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-06] (Piriform Ltd -> Piriform Ltd)
Task: {C5040EE5-5E97-4F28-AE28-8E8F4F8BF68B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF108707-64E0-48F2-A9A2-C9CF2FA8775D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.)
Task: {D0D4DDF5-181C-4C84-9501-374D0D14269A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D1EB7F85-2D5C-4DB2-8934-35AE83B7D66A} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {DA79B7C1-81BF-45BA-96EE-A514CCC58E69} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E23EC94C-1BCB-424A-91EA-F6E153ED7068} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {E7FE8FFA-C8C1-4153-819E-FD6B6FCE03A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EC23FD56-EBF4-4FE3-B427-4EC3B0BA3643} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {F5F2EF7D-2136-41DF-AEEC-6CCCC45C322B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBD28556-0363-489D-BF21-7FA0CA68F622} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\AVG-SSU_0916tb.job => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: C:\WINDOWS\Tasks\AVG-SSU_0916tb_DELETE.job => C:\ProgramData\Avg_Update_0916tb\AVG-Secure-Search-Update_0916tb.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6dda29af-d798-4643-b1da-0dcc71a96d8d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b914cbbc-1f1b-4c8f-a196-f5018e0a7cc1}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-12]
FireFox:
========
FF ProfilePath: C:\Users\HYPER DISCOUNT\AppData\Roaming\TomTom\HOME\Profiles\4gezyihw.default [2017-04-29]
FF ProfilePath: C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default [2021-05-12]
FF Homepage: Mozilla\Firefox\Profiles\1hzzeg5f.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-03-02 05:39:48&bName=&bitmask=0600
FF NewTab: Mozilla\Firefox\Profiles\1hzzeg5f.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=BT171003&iDate=2020-03-02 05:39:48&bName=&bitmask=0600
FF Extension: (Firefox Hotfix) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-12] []
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\sp@avast.com.xpi [2019-02-25]
FF Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Roaming\Mozilla\Firefox\Profiles\1hzzeg5f.default\Extensions\wrc@avast.com.xpi [2018-06-25]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default [2021-04-27]
CHR DownloadDir: C:\Users\HYPER DISCOUNT\Desktop
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Google Slides) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-08]
CHR Extension: (Google Docs) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-08]
CHR Extension: (Google Drive) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-08]
CHR Extension: (YouTube) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-08]
CHR Extension: (Google Sheets) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-08]
CHR Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-11-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-08]
CHR Extension: (Gmail) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-08]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-01-07]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-05-13]
CHR StartupUrls: Profile 1 -> "hxxp://www.google.fr/"
CHR Extension: (Slides) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-26]
CHR Extension: (YouTube) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-09]
CHR Extension: (Adobe Acrobat) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-02]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Sheets) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (Avast Online Security) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-29]
CHR Profile: C:\Users\HYPER DISCOUNT\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [98208 2009-11-18] (Andrea Electronics -> Andrea Electronics Corporation)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [Fichier non signé]
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd -> Disc Soft Ltd)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-02-01] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-05-16] (Hewlett-Packard) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-05-16] (Hewlett-Packard) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29272 2020-03-02] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 MpKsl319d825d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{50DEB0EB-842E-445F-BCA6-7F27EB3A834B}\MpKslDrv.sys [47336 2021-05-13] (Microsoft Windows -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-13 22:27 - 2021-05-13 22:27 - 000201198 _____ C:\Users\HYPER DISCOUNT\Desktop\facture hypnose.pdf
2021-05-13 22:23 - 2021-05-14 09:04 - 000000000 ____D C:\Users\HYPER DISCOUNT\Desktop\Nouveau dossier
2021-05-13 21:55 - 2021-05-13 21:55 - 000297558 _____ C:\Users\HYPER DISCOUNT\Documents\salaire avril 2021.pdf
2021-05-12 22:09 - 2021-05-12 22:50 - 000012942 _____ C:\Users\HYPER DISCOUNT\Documents\PLANNING REPAS MENSUEL.xlsx
2021-05-12 19:45 - 2021-05-14 09:06 - 000000000 ____D C:\FRST
2021-05-12 19:44 - 2021-05-12 19:45 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-05-12 19:44 - 2021-05-12 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-04-16 21:17 - 2021-04-16 21:17 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-16 21:14 - 2021-04-16 21:14 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-16 21:13 - 2021-04-16 21:13 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-14 09:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-13 22:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-13 22:23 - 2021-01-22 14:43 - 000058956 _____ C:\Users\HYPER DISCOUNT\Documents\Facture mensuelle.xlsx
2021-05-13 21:35 - 2020-11-06 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-12 20:37 - 2020-11-06 19:47 - 001923774 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-12 20:37 - 2019-12-07 16:49 - 000833030 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-12 20:37 - 2019-12-07 16:49 - 000167760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-12 20:37 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-12 20:30 - 2020-11-06 20:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-12 20:30 - 2020-11-06 19:18 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-12 20:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-12 20:30 - 2016-11-09 17:15 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-12 20:30 - 2015-06-29 16:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-12 20:29 - 2016-11-09 17:15 - 000000000 ____D C:\Program Files\AVAST Software
2021-05-12 20:28 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-12 20:28 - 2016-11-09 21:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-05-12 20:19 - 2017-04-15 10:03 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 20:01 - 2017-03-13 10:57 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-05-12 19:57 - 2020-11-06 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-05-12 19:51 - 2018-07-03 23:10 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\AVAST Software
2021-05-12 19:30 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-12 19:29 - 2020-06-19 00:19 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-12 19:12 - 2020-11-06 17:18 - 000000000 ____D C:\Users\HYPER DISCOUNT
2021-05-12 19:04 - 2016-09-23 17:46 - 000000466 _____ C:\WINDOWS\Tasks\AVG-SSU_0916tb_DELETE.job
2021-05-12 19:04 - 2016-09-23 17:45 - 000000606 _____ C:\WINDOWS\Tasks\AVG-SSU_0916tb.job
2021-05-06 22:33 - 2020-11-06 20:07 - 000002966 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7564E3FA-EE7C-4E89-A673-CC09B7B97CEA}
2021-05-06 22:33 - 2020-11-06 20:07 - 000002752 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:33 - 2020-11-06 20:07 - 000002320 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3331395947-3643601650-1224951885-500
2021-05-06 22:33 - 2020-11-06 20:07 - 000002040 _____ C:\WINDOWS\system32\Tasks\Synaptics TouchPad Enhancements
2021-05-06 22:32 - 2020-11-30 09:53 - 000003368 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b46468243976
2021-05-06 22:32 - 2020-11-06 20:07 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-06 22:32 - 2020-11-06 20:07 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-06 22:32 - 2020-11-06 20:07 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-05-06 22:32 - 2020-11-06 20:07 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-06 22:32 - 2020-11-06 20:07 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-06 22:32 - 2020-11-06 20:07 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-06 22:32 - 2020-11-06 20:07 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:32 - 2020-11-06 20:07 - 000002710 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP ENVY 4500 series
2021-05-06 22:32 - 2020-11-06 20:07 - 000002686 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task
2021-05-06 22:32 - 2020-11-06 20:07 - 000002660 _____ C:\WINDOWS\system32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3331395947-3643601650-1224951885-1002
2021-05-06 22:32 - 2020-11-06 20:07 - 000002526 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Officejet Pro X576dw MFP
2021-05-06 22:32 - 2020-11-06 20:07 - 000002370 _____ C:\WINDOWS\system32\Tasks\AVG-SSU_0916tb
2021-05-06 22:32 - 2020-11-06 20:07 - 000002254 _____ C:\WINDOWS\system32\Tasks\AVG-SSU_0916tb_DELETE
2021-05-06 22:32 - 2020-11-06 20:07 - 000002096 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-05 21:35 - 2020-11-06 17:18 - 000002483 _____ C:\Users\HYPER DISCOUNT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-05 21:35 - 2015-12-02 11:21 - 000000000 ___RD C:\Users\HYPER DISCOUNT\OneDrive
2021-05-05 12:11 - 2018-09-18 14:44 - 000000000 ____D C:\Users\HYPER DISCOUNT\Documents\NOUNOU
2021-04-30 13:50 - 2020-10-01 07:57 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-29 21:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-27 20:03 - 2020-11-06 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-04-22 11:37 - 2021-01-26 17:05 - 000000000 ___RD C:\Users\HYPER DISCOUNT\Documents\Scanned Documents
2021-04-22 11:27 - 2018-10-22 10:57 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\CrashDumps
2021-04-19 16:48 - 2017-12-27 21:27 - 000000000 ____D C:\Users\HYPER DISCOUNT\AppData\Local\Packages
2021-04-17 20:52 - 2021-02-08 22:28 - 000000000 ____D C:\Users\HYPER DISCOUNT\Desktop\photo à développer
2021-04-16 22:10 - 2020-11-06 19:18 - 000470160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-16 22:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-16 22:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-16 21:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-16 21:12 - 2020-11-06 19:23 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-16 19:55 - 2013-08-23 08:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-16 19:46 - 2013-08-23 08:33 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-16 19:44 - 2016-11-23 13:58 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-04-16 19:40 - 2013-08-22 15:25 - 000000167 _____ C:\WINDOWS\win.ini
2021-04-16 19:30 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== Fichiers à la racine de certains dossiers ========
2015-06-29 15:50 - 2015-06-29 15:50 - 000000017 _____ () C:\Users\HYPER DISCOUNT\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================