Publicité
Publicité
Commentaire : frst
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2021 01
Exécuté par Admin (administrateur) sur BUREAU (MSI MS-7816) (07-06-2021 07:57:10)
Exécuté depuis C:\Users\Admin\Desktop
Profils chargés: Admin
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\qBittorrent\qbittorrent.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
(FSPro Labs -> FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(Gladinet, Inc. -> ) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
(Gladinet, Inc. -> Gladinet, INC) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(GoPro, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Iain Patterson) [Fichier non signé] C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Photodex Corporation -> ) C:\Program Files (x86)\Photodex\ProShow Producer\scsiaccess.exe
(Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Realtek) [Fichier non signé] C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe
(Siber Systems -> ) C:\Program Files\Siber Systems\GoodSync\gs-server.exe
(Siber Systems -> Siber Systems Inc.) C:\Program Files (x86)\Siber Systems\AI RoboForm\rf-chrome-nm-host.exe
(Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10_64.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\Dock64.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\ObjectDockTray.exe
(Stéphane Mitermite) [Fichier non signé] C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe
(Stéphane Mitermite) [Fichier non signé] C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe
(Synapse Développement) [Fichier non signé] C:\Program Files (x86)\Cordial\Integration_Cordial.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>
(Winstep Software Technologies) [Fichier non signé] C:\Program Files (x86)\Winstep\WsxService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [756832 2018-07-30] (Acronis International GmbH -> )
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [3096800 2020-05-12] (FSPro Labs -> FSPro Labs)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9268168 2018-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
HKLM\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe [289840 2018-08-30] (Intel(R) Rapid Storage Technology enterprise -> Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-21] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [55664 2015-02-05] (OLYMPUS IMAGING CORP. -> OLYMPUS IMAGING CORP.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [Nuance OmniPage Ultimate-reminder] => C:\Program Files (x86)\Nuance\OmniPage19\Ereg\Ereg.exe [334152 2013-01-14] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172832 2021-06-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe [779144 2019-05-22] (Express Vpn LLC -> ExpressVPN)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME\TomTomHOME.exe [3576512 2006-10-30] (TomTom International BV -> TomTom)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [184104 2021-02-10] (Mixbyte Inc -> )
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\Users\Admin\AppData\Local\Temp\~DFC0473CA1C2AE7C5D.TMP" /F /Q <==== ATTENTION
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Admin\AppData\Roaming\ZHP\ZHPCleaner.txt [10129 2021-06-06] () [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [PopupLexical] => C:\Program Files (x86)\Cordial\PopupLexical.exe [3719168 2010-08-30] (Synapse Développement) [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [Integration de Cordial] => C:\PROGRAM FILES (X86)\CORDIAL\INTEGRATION_CORDIAL.EXE [491603 2012-11-02] (Synapse Développement) [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2161624 2020-05-03] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [16422144 2021-03-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [RoboForm] => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [148800 2021-05-15] (Siber Systems -> Siber Systems)
HKLM\...\Windows x64\Print Processors\Canon iX6500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAO.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG6200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAU.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iX6500 series: C:\WINDOWS\system32\CNMLMAO.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6200 series: C:\WINDOWS\system32\CNMLMAU.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON XP-235 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBPFE.DLL [180224 2014-03-04] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF-XChange5: C:\WINDOWS\system32\pxc50pm.dll [57920 2014-06-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-03-02] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FreeMi UPnP Media Server.lnk [2017-11-30]
ShortcutTarget: FreeMi UPnP Media Server.lnk -> C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar112.lnk [2021-06-05]
ShortcutTarget: Sidebar112.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Fichier non signé] [Fichier en cours d'utilisation]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2014-10-06]
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe (Stardock Corporation -> Stardock)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FreeMi UPnP Media Server.lnk [2017-12-24]
ShortcutTarget: FreeMi UPnP Media Server.lnk -> C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2020-06-07]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2018-02-13]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06045A8B-227D-4416-BF58-1520663687D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {08676256-A439-4CAF-B2AD-23E743F0E18A} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [954456 2021-05-20] (Bitdefender SRL -> Bitdefender)
Task: {1D566C8F-745E-4E69-BD5C-DA2959657B55} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2711089266-1074571310-3492587935-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {1EABDC44-42E4-440F-A910-8CA935C485F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {25FF4A1C-E426-495C-BCAD-590263242E27} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {27C8A3EF-30B4-460F-BD58-D45AF3DD278F} - System32\Tasks\{C5BB9696-1099-41BE-909E-4CEC8633C272} => C:\WINDOWS\system32\pcalua.exe -a "A:\Téléchargements\torrents\Micro Application Plus de 500 Applications pour Excel\setup.exe" -d "A:\Téléchargements\torrents\Micro Application Plus de 500 Applications pour Excel"
Task: {2814E7F6-C71A-4014-ADEB-F36EC847CF28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {326CD739-F087-496F-BC8D-DA8AC5485880} - System32\Tasks\CorelUpdateHelperTask => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1662200 2019-02-27] (Corel Corporation -> Corel Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4E9DDF1A-B5DC-40EB-BE91-7F2C4809F3EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {581F6616-D3BE-4ADB-84AB-E8AF20AA1DFE} - System32\Tasks\Windows 10 Manager - Protecteur de vie privée => C:\Program Files\Yamicsoft\Windows 10 Manager\PrivacyProtector.exe
Task: {5A56E29C-2ABA-43CD-B405-FC40A18C7DEE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7C300B63-CECB-4097-8554-FDDFB3B8B31F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {7F0D7352-A930-4EED-B83A-AB48B2CF3E9A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {88E83953-9F7B-496E-A9D8-077D41AF0D9F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {98BD1842-E96D-4D69-BB9A-B276AFD5D69D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {99A7680E-EF44-4D9D-A923-54A35C9E76A4} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.)
Task: {9B50FF2C-4E9A-4F5A-AC80-3934C500813C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {9B8F585E-A73E-4CE5-9793-E33A8D7E6016} - System32\Tasks\EPSON XP-235 Series Update {CD086319-7497-4E3C-8A30-5930EA22FB87} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE
Task: {A11F95A3-9FEF-46C8-8B29-4CF978AB7FCA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {A26615C7-F3B9-456C-B9BB-2E735654C30D} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {A4FF7512-9E1B-48B9-99EF-FC0EBD1A6235} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A7EF9F89-BF3C-4DC2-A9CF-5C534E79FC05} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {AB37FEEA-37F7-4023-AFDC-43978F675ACC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {B3DF6310-FCC3-4F7D-A006-67C62565ECB2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {B7A456E3-E431-4EDD-B6EC-5B21C7A69210} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {B9FE3D3A-D3A7-459C-A373-8ED147B40778} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF27546F-B8C1-48D5-AB1F-42B34137FEDC} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [148800 2021-05-15] (Siber Systems -> Siber Systems)
Task: {D07CB0FF-8122-4CE0-B445-BA3B287E9FFA} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "https://www.roboform.com/test-pass.html?aaa=KICMLMJMLJLMNMNJJMOMCNHMGMOJPMCNLMJMOMLJCNNJHMKMHMCNMMHMMMNJJJNMJJOMNJJJOMOJJNIICMGMCNOMCNLMCNLMJNHJCMNMCNOMPMCNPMCNOMGMPMLMNMJNHICMEKMICNJJCKJNAJCMFJOJMJEJBNIJKIKJJIKJDJPLIJCJOJGJDJBNMJAJCJJNEJCMJNFJCMJNBJCMOLLJCJGJBJJNKJCMOJDJJIAJNIOJLJOJPLHJAJLICJOJGJDJBNJJNIJNDJCMJJNIJNMJCMOMFMMMNMLMFMPMJNFICMJNJJCMPMJNIJCMPMJNOICMNMIMOMHMJNCJCMJNOMCMJNNMCMJNMMCMJNLMCMJNKMCMOMJNJMCMPM"
Task: {DEC492C8-093A-4D55-B446-AC8D246489ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {DFF5FAB6-B8FF-410E-98FA-0F19FC454980} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [888232 2021-01-29] (Bitdefender SRL -> Bitdefender)
Task: {E23A716D-E770-4DDB-AF11-41D80F832E64} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN93H6D15Y => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {E432BEB7-7458-4D27-AB3B-7FB180A960BB} - System32\Tasks\Run RoboForm Process => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [3278224 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {E99BB2E0-57A3-495B-B779-80E86223C131} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F02071A3-164B-4C6A-83AD-2FB27B4AEF51} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF513E08-219D-4936-BB07-1CEDE815D494} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON XP-235 Series Update {CD086319-7497-4E3C-8A30-5930EA22FB87}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE:/EXE:{CD086319-7497-4E3C-8A30-5930EA22FB87} /F:UpdateWORKGROUP\BUREAU$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
Task: C:\WINDOWS\Tasks\Windows 10 Manager - Protecteur de vie privée.job => C:\Program Files\Yamicsoft\Windows 10 Manager\PrivacyProtector.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{332a0fc2-35d3-4bd6-aabf-0e4db26245bd}: [DhcpNameServer] 192.168.1.254
Edge:
=======
DownloadDir: C:\Users\Admin\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (RoboForm) -> EdgeExtension_SiberSystemsIncRoboFormEdge_7kk3kr9e0p1np => C:\Program Files\WindowsApps\SiberSystemsInc.RoboFormEdge_8.5.7.0_x86__7kk3kr9e0p1np [2021-04-05]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FireFox:
========
FF DefaultProfile: x9rxe6ih.default-1579272516198
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 [2021-06-05]
FF HomepageOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Disabled: qwantcomforfirefox@jetpack
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Enabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Enabled: rf-firefox@siber.com
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Disabled: qwantcomforfirefox@jetpack
FF Extension: (Easy Screenshot) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\easyscreenshot@mozillaonline.com.xpi [2020-01-17]
FF Extension: (New Tab Page) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\pavel.sherbakov@gmail.com.xpi [2021-03-07]
FF Extension: (Pas de nom) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\qwantcomforfirefox@jetpack.xpi [2021-01-06]
FF Extension: (RoboForm Password Manager) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\rf-firefox@siber.com.xpi [2021-05-10]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\translator@zoli.bod.xpi [2020-01-17]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-05-11]
FF Extension: (Integrated Inbox for Gmail & Google Apps) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{28197867-b1ef-4140-8e3b-55c45b9c8460}.xpi [2020-01-17]
FF Extension: (Logitech SetPoint) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2021-04-02]
FF Extension: (Web Developer) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2020-01-17]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2020-04-30] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-04-02] [non signé]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Firefox\Extensions: [{96D26B34-35E1-4ed2-AB54-138830AC8268}] - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox
FF Extension: (Correction Cordial) - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox [2016-04-04] [] [non signé]
FF HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Thunderbird\Extensions: [{96D26B34-35E1-4ed2-AB54-138830AC8268}] - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google Inc -> Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2016-02-29] () [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2711089266-1074571310-3492587935-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Admin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2020-07-23] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2020-07-23] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2021-06-07]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR NewTab: Default -> Active:"chrome-extension://ncdfeghkpohnalmpblddmnppfooljekh/core/newpage-pop.html"
CHR DefaultSearchKeyword: Default -> google.com__
CHR Extension: (Google Traduction) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-06-06]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-06]
CHR Extension: (Privacy Pass) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2021-06-06]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-06]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-06]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-06-06]
CHR Extension: (Earth View from Google Earth) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2021-06-06]
CHR Extension: (Video2Edit - Video Editor & Video Converter) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\djanbckaomofhalpklkcbimkmlaocddd [2021-06-06]
CHR Extension: (Dropbox pour Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-06-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-06-06]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-06]
CHR Extension: (PDF to Word Converter doc) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjhedcdiaeighcnidfhegnmfieiejmdj [2021-06-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-06]
CHR Extension: (Enregistrer dans Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2021-06-06]
CHR Extension: (SearchPreview) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2021-06-06]
CHR Extension: (Video Downloader Plus) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdmdpdhfaamhgaojpelccmeehpfljgf [2021-06-06]
CHR Extension: (Dropbox) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2021-06-06]
CHR Extension: (Formulaires Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2021-06-06]
CHR Extension: (Zoom pour Google Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd [2021-06-06]
CHR Extension: (Facture Gratuite pour AliExpress) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldacgepjfajfdaodegphiolcelhlnkfm [2021-06-06]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-06-06]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-06-06]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2021-06-06]
CHR Extension: (Incredible StartPage - Productive Start Page) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdfeghkpohnalmpblddmnppfooljekh [2021-06-06]
CHR Extension: (OneDrive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2021-06-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-06]
CHR Extension: (Bookmax - Online Bookmark Manager) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjpkfadmfhloombfmmlllnbhkoehckm [2021-06-06]
CHR Extension: (Bookmarks clean up) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oncbjlgldmiagjophlhobkogeladjijl [2021-06-06]
CHR Extension: (Video Downloader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbbjnobglkpbfmpabbgogbnlffkmgbii [2021-06-06]
CHR Extension: (Hover Zoom+) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2021-06-06]
CHR Extension: (Click&Clean App) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2021-06-06]
CHR Extension: (Outlook.com) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2021-06-06]
CHR Extension: (Speedtest by Ookla) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2021-06-06]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-06]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-06]
CHR Extension: (RoboForm Password Manager) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2021-06-06]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-05]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2021-06-05]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKLM\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2020-06-06]
CHR HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
CHR HKLM-x32\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2020-06-06]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1162080 2018-07-30] (Acronis International GmbH -> )
S2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [176032 2021-04-24] (Adguard Software Limited -> Adguard Software Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [180072 2018-07-11] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [387128 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [406584 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe [72536 2018-05-31] (Google Inc -> Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-06-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 Everything; C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [368640 2019-05-22] (Iain Patterson) [Fichier non signé]
R2 FreeMiWindowsService; C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [71168 2016-05-24] (Stéphane Mitermite) [Fichier non signé]
S3 fsphfext; C:\WINDOWS\SysWOW64\HFExtSvc.exe [166176 2016-10-23] (FSPro Labs -> FSPro Labs)
R2 GladFileMonSvc; C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [30032 2013-03-22] (Gladinet, Inc. -> Gladinet, INC)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2017-03-16] (GoPro, Inc. -> )
R2 GsServer; C:\Program Files\Siber Systems\GoodSync\gs-server.exe [8961736 2020-11-29] (Siber Systems -> )
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [3500552 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-08] (HP Inc. -> HP Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-11] (Malwarebytes Inc -> Malwarebytes)
S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2018-07-30] (Acronis International GmbH -> Acronis International GmbH)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1358248 2021-01-29] (Bitdefender SRL -> Bitdefender)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 Realtek11nSU; C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Fichier non signé]
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13688656 2021-03-24] (Adlice -> )
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2016-02-29] (Photodex Corporation -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
R2 Start10; C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe [220440 2021-02-11] (Stardock Corporation -> Stardock Software, Inc)
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2018-07-30] (Acronis International GmbH -> )
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [301144 2021-05-20] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
S3 wampapache64; c:\wamp64\bin\apache\apache2.4.41\bin\httpd.exe [29696 2019-08-09] (Apache Software Foundation) [Fichier non signé]
S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.4.10\bin\mysqld.exe [15837608 2019-11-07] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql8.0.18\bin\mysqld.exe [48781920 2019-09-20] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService.exe [775168 2018-01-24] (Winstep Software Technologies) [Fichier non signé]
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [94720 2021-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2017-06-20] (Anvsoft Inc. -> AnvSoft Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2718744 2021-03-24] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R1 AutoSave; C:\WINDOWS\System32\DRIVERS\AutoSave.sys [36896 2009-08-13] (Avanquest North America Inc. -> Avanquest)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169864 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [802976 2021-04-20] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2021-04-28] (Bitdefender SRL -> © Bitdefender SRL)
S3 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96616 2020-05-26] (Bitdefender SRL -> BitDefender)
S3 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [152672 2017-04-20] (Bluestack Systems, Inc. -> BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-04-20] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (Kaspersky Lab -> AO Kaspersky Lab)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34744 2019-02-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2019-04-12] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-12] (Malwarebytes Inc -> Malwarebytes)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28160 2019-05-22] (ExprsVPN LLC -> )
R1 extensionDispKmode; C:\WINDOWS\System32\drivers\extensionDispKmode.sys [278264 2017-12-21] (WDKTestCert datronicsoft,131378753506229123 -> datronicsoft Inc.)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [380504 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 FSProFilter2; C:\WINDOWS\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (Alfa System Programming -> FSPro Labs)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [488592 2021-04-20] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-10-29] (Bitdefender SRL -> BitDefender LLC)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1971208 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
S3 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [185312 2020-12-14] (Bitdefender SRL -> Bitdefender)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554408 2016-10-01] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [120008 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [85704 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29816 2016-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [207560 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1193160 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1058504 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57032 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [57056 2016-12-23] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [58592 2016-12-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50672 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [44768 2017-01-20] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [236488 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2018-09-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [258864 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [109248 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [177848 2018-06-04] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [93888 2018-05-04] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [141000 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-12] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 MirayVirtualDisk; C:\WINDOWS\System32\drivers\mvdo.sys [464472 2016-10-17] (Miray Software AG -> Miray)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 qcusbwwan; C:\WINDOWS\System32\drivers\qcusbwwan.sys [557112 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [42056 2021-05-28] (Adlice -> )
S3 scvad_simple; C:\WINDOWS\system32\drivers\SplitCamAudio.sys [23552 2016-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 splitcam_hd_driver; C:\WINDOWS\system32\DRIVERS\splitcam_hd_driver.sys [37600 2016-08-02] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider)
S3 sthid; C:\WINDOWS\System32\drivers\sthid.sys [21216 2014-10-22] (Splashtop Inc. -> Splashtop Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45440 2019-05-22] (ExprsVPN LLC -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-05-28] (Adlice -> )
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [641728 2021-03-24] (Bitdefender SRL -> Bitdefender)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-07 07:57 - 2021-06-07 07:59 - 000058107 _____ C:\Users\Admin\Desktop\FRST.txt
2021-06-07 07:55 - 2021-06-07 07:55 - 000000000 ____D C:\Users\Admin\Desktop\FRST-OlderVersion
2021-06-06 21:48 - 2021-06-06 21:47 - 000547689 _____ C:\Users\Admin\Desktop\ZHPDiag.txt
2021-06-06 21:24 - 2021-06-06 21:24 - 000000901 _____ C:\Users\Admin\Desktop\ZHPSuite.lnk
2021-06-05 21:04 - 2021-06-05 21:11 - 000000911 _____ C:\Users\Admin\Desktop\ZHPCleaner.lnk
2021-06-05 20:58 - 2021-06-05 20:58 - 003256472 _____ (Nicolas Coolman) C:\Users\Admin\Desktop\ZHPCleaner.exe
2021-06-05 17:52 - 2021-06-05 17:55 - 000005889 _____ C:\Users\Admin\Desktop\Fixlog.txt
2021-06-05 13:32 - 2021-06-07 07:58 - 000000000 ____D C:\FRST
2021-06-05 12:54 - 2021-06-05 20:59 - 000000000 ____D C:\Users\Admin\AppData\Local\ZHP
2021-06-05 12:49 - 2021-06-07 07:55 - 002300416 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2021-06-05 02:14 - 2021-06-05 02:14 - 000000000 ____D C:\ProgramData\bdch
2021-06-04 04:13 - 2021-06-04 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-06-03 11:47 - 2021-06-03 11:47 - 000076064 _____ C:\Users\Admin\Desktop\invoice-2021-05-18-0014-3011186120968126.pdf
2021-06-02 13:51 - 2021-06-02 13:51 - 000000165 ____H C:\Users\Admin\Desktop\~$MATRICE ABONDANCES BIS.ods
2021-06-02 13:40 - 2021-06-02 13:41 - 000021272 _____ C:\Users\Admin\Desktop\60b63fea8cbcf-232d8465424ffeec055c8c02c228e79d.pdf
2021-06-02 08:43 - 2021-06-02 08:43 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-02 08:42 - 2021-06-02 08:42 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-02 08:42 - 2021-06-02 08:42 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-02 08:41 - 2021-06-02 08:41 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-01 12:05 - 2021-06-03 09:08 - 000009019 _____ C:\Users\Admin\Desktop\MATRICE ABONDANCES BIS.ods
2021-05-28 20:28 - 2021-05-28 20:28 - 000042056 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2021-05-28 20:28 - 2021-05-28 20:28 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2021-05-28 20:27 - 2021-05-28 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-05-22 19:37 - 2021-05-22 19:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\RenPy
2021-05-18 11:51 - 2021-05-18 11:51 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-05-14 00:31 - 2021-04-21 01:15 - 007401440 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 005180384 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 001332192 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64_DiscoveryLibDyn.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 000966112 _____ (HP Inc.) C:\WINDOWS\SysWOW64\DiscoveryLibDyn.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 000668144 _____ (HP Inc., LP) C:\WINDOWS\system32\HPWia2Drv.dll
2021-05-12 18:28 - 2021-05-12 18:28 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2021-05-12 08:10 - 2021-05-12 08:14 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-12 08:10 - 2021-05-12 08:14 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-12 07:25 - 2021-05-12 07:25 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 07:24 - 2021-05-12 07:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 07:24 - 2021-05-12 07:24 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 07:24 - 2021-05-12 07:24 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 07:23 - 2021-05-12 07:23 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 07:23 - 2021-05-12 07:23 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 07:23 - 2021-05-12 07:23 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 07:23 - 2021-05-12 07:23 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 07:22 - 2021-05-12 07:22 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 07:22 - 2021-05-12 07:22 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-11 13:10 - 2021-05-11 13:10 - 000000000 ____D C:\Users\Admin\AppData\Local\molotov
2021-05-11 13:05 - 2021-05-11 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMedia Recode 64bit
2021-05-11 12:48 - 2021-05-11 12:48 - 000001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-11 12:48 - 2021-05-11 12:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-10 21:45 - 2021-05-10 21:45 - 000033274 _____ C:\WINDOWS\SysWOW64\prfc0003.dat.tmp
2021-05-09 07:24 - 2021-05-09 07:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-07 07:53 - 2018-02-01 13:48 - 000000000 ____D C:\Users\Admin\AppData\Roaming\qBittorrent
2021-06-07 07:53 - 2016-12-23 18:01 - 000000000 ____D C:\a-ranger
2021-06-07 07:53 - 2015-10-01 17:33 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Everything
2021-06-07 07:26 - 2020-09-25 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-07 02:13 - 2020-09-25 23:52 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{BCD80246-15F9-4915-BF2C-26E66DC69ED9}
2021-06-07 00:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-06 23:30 - 2016-10-20 11:13 - 000000000 ____D C:\ProgramData\GoodSync
2021-06-06 22:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-06 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-06 21:47 - 2014-11-04 20:00 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ZHP
2021-06-06 20:35 - 2016-05-24 08:04 - 000000000 ____D C:\Program Files\CCleaner
2021-06-06 20:09 - 2019-06-01 11:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\WhatsApp
2021-06-06 15:25 - 2014-10-04 21:36 - 000000000 ____D C:\Users\Admin\AppData\Local\Sidebar7
2021-06-06 08:41 - 2020-04-09 12:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2021-06-05 18:31 - 2018-02-09 17:01 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2021-06-05 18:19 - 2017-06-15 19:03 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-05 18:19 - 2014-10-04 19:58 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2021-06-05 18:17 - 2018-08-01 08:17 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2021-06-05 18:17 - 2018-08-01 08:17 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2021-06-05 18:11 - 2020-09-25 23:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-05 18:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-05 18:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-05 18:08 - 2020-09-25 23:06 - 000000000 ____D C:\Users\Admin
2021-06-05 17:55 - 2014-11-13 12:18 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2021-06-05 12:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-05 12:01 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2021-06-05 11:47 - 2020-09-25 22:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-05 09:39 - 2016-10-26 17:17 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2021-06-04 20:58 - 2019-02-15 13:39 - 000000000 ____D C:\ProgramData\Adguard
2021-06-04 18:01 - 2020-01-26 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-06-04 04:16 - 2018-05-18 16:04 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-06-03 16:15 - 2020-12-30 13:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\MuWire
2021-06-03 14:21 - 2019-02-15 13:38 - 000000000 ____D C:\Program Files (x86)\Adguard
2021-06-02 08:41 - 2021-03-06 12:25 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-01 08:39 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-01 08:35 - 2020-09-25 23:52 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-30 18:57 - 2020-11-05 18:47 - 000000000 ____D C:\Users\Admin\AppData\Local\WhatsApp
2021-05-28 20:27 - 2015-04-09 13:34 - 000000000 ____D C:\Program Files\RogueKiller
2021-05-27 20:10 - 2020-09-25 23:24 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-27 20:10 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-27 20:10 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-27 20:07 - 2018-08-01 08:16 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-05-27 19:57 - 2016-01-08 12:29 - 000000000 ____D C:\Users\Admin\AppData\Local\Everything
2021-05-27 14:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-24 08:12 - 2017-06-15 19:01 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2021-05-21 17:57 - 2017-12-16 18:13 - 000000000 ___RD C:\Images
2021-05-15 09:50 - 2020-09-25 23:52 - 000004498 _____ C:\WINDOWS\system32\Tasks\Open URL by RoboForm
2021-05-15 09:50 - 2020-09-25 23:52 - 000003782 _____ C:\WINDOWS\system32\Tasks\Run RoboForm TaskBar Icon
2021-05-15 09:50 - 2018-06-10 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
2021-05-13 16:41 - 2021-04-02 16:09 - 000014848 _____ C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-05-13 12:25 - 2021-03-21 13:46 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 18:30 - 2018-12-03 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2021-05-12 18:30 - 2018-12-03 15:11 - 000000000 ____D C:\Program Files\Calibre2
2021-05-12 18:26 - 2017-11-29 21:08 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2021-05-12 18:24 - 2016-05-03 11:33 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2021-05-12 18:23 - 2016-05-03 11:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2021-05-12 17:42 - 2016-10-10 17:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Apowersoft
2021-05-12 08:18 - 2016-11-01 23:22 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-12 08:17 - 2019-02-15 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard
2021-05-12 08:13 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-12 08:07 - 2020-09-25 22:57 - 001309096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-12 07:57 - 2018-05-18 16:04 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-12 07:57 - 2018-05-18 16:04 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-12 07:57 - 2015-01-05 09:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-12 07:51 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-12 07:51 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-12 07:32 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-12 07:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-12 07:23 - 2013-08-22 17:44 - 000414082 __RSH C:\bootmgr
2021-05-12 06:22 - 2020-11-09 18:49 - 000000000 ____D C:\Program Files\dotnet
2021-05-12 06:16 - 2014-10-08 03:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 05:59 - 2014-10-08 03:08 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-12 00:10 - 2013-08-22 15:25 - 000000419 _____ C:\WINDOWS\win.ini
2021-05-11 13:13 - 2017-12-28 13:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Molotov
2021-05-11 13:12 - 2020-09-25 23:52 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2711089266-1074571310-3492587935-1001
2021-05-11 13:12 - 2020-09-25 23:06 - 000002441 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-11 13:12 - 2017-01-09 21:28 - 000000000 ___RD C:\Users\Admin\OneDrive
2021-05-11 13:10 - 2017-12-28 13:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2021-05-11 13:10 - 2016-05-12 09:02 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp
2021-05-11 13:08 - 2019-09-10 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2021-05-11 13:08 - 2019-09-01 14:03 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2021-05-11 13:05 - 2019-06-04 23:15 - 000000000 ____D C:\Program Files\XMedia Recode 64bit
2021-05-11 13:02 - 2019-01-07 19:57 - 000001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2021-05-11 13:02 - 2016-11-19 14:40 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2021-05-11 13:02 - 2015-01-05 09:38 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-11 13:01 - 2014-10-06 17:08 - 000000000 ____D C:\Program Files\Paint.NET
2021-05-11 12:48 - 2021-03-02 13:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-09 07:24 - 2021-04-15 13:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
==================== Fichiers à la racine de certains dossiers ========
2018-01-04 11:36 - 2018-01-04 11:37 - 000000089 _____ () C:\Users\Admin\IP_Log_Data.js
2016-10-31 17:53 - 2018-05-02 13:42 - 003146112 _____ () C:\Users\Admin\ZHPCleaner.exe
2020-09-30 23:00 - 2020-09-30 23:00 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2017-07-24 20:08 - 2017-11-18 19:26 - 000000020 _____ () C:\Users\Admin\AppData\Roaming\AVSDVDPlayer.m3u
2014-10-06 19:12 - 2021-02-28 08:44 - 000001651 _____ () C:\Users\Admin\AppData\Roaming\BUREAU.MTBF.txt
2019-08-24 15:55 - 2021-02-27 21:04 - 000000096 _____ () C:\Users\Admin\AppData\Roaming\Camdata.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000408 _____ () C:\Users\Admin\AppData\Roaming\CamLayout.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000408 _____ () C:\Users\Admin\AppData\Roaming\CamShapes.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000004536 _____ () C:\Users\Admin\AppData\Roaming\CamStudio.cfg
2019-12-10 17:16 - 2019-12-10 17:16 - 000000092 _____ () C:\Users\Admin\AppData\Roaming\Control System_Settings.ini
2018-01-04 11:37 - 2018-01-04 11:37 - 000000016 _____ () C:\Users\Admin\AppData\Roaming\Network Meter_Usage.ini
2014-10-08 21:09 - 2014-10-08 21:09 - 000000130 _____ () C:\Users\Admin\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2018-01-04 11:40 - 2018-01-04 11:40 - 000002453 _____ () C:\Users\Admin\AppData\Roaming\System Monitor II_CPU0_Settings.ini
2018-01-04 11:40 - 2018-01-04 11:40 - 000000121 _____ () C:\Users\Admin\AppData\Roaming\System Monitor II_UptimeRecord.ini
2018-01-04 11:38 - 2018-01-04 11:38 - 000000361 _____ () C:\Users\Admin\AppData\Roaming\Top Process Monitor_Settings.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000096 _____ () C:\Users\Admin\AppData\Roaming\version2.xml
2014-10-06 19:13 - 2021-02-28 17:37 - 000003366 _____ () C:\Users\Admin\AppData\Roaming\__AvidCloudManager.log
2014-10-06 19:13 - 2021-02-27 22:02 - 000002682 _____ () C:\Users\Admin\AppData\Roaming\__AvidCloudManagerPrevious.log
2019-10-21 08:49 - 2019-10-21 08:49 - 000000716 ____H () C:\Users\Admin\AppData\Roaming\{C252D95E-7175-AF95-AC17-C5388C157F5D}
2020-06-08 18:45 - 2020-06-08 18:45 - 000000064 _____ () C:\Users\Admin\AppData\Roaming\~SiMPLEX.ini
2021-04-02 16:09 - 2021-05-13 16:41 - 000014848 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-05 08:10 - 2017-01-05 08:10 - 000000129 _____ () C:\Users\Admin\AppData\Local\ebc20fa7cdf82158bdd9e98a04914332
2018-09-16 16:46 - 2018-09-16 16:46 - 000000036 _____ () C:\Users\Admin\AppData\Local\housecall.guid.cache
2016-05-11 16:11 - 2016-05-11 16:11 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement
2019-12-05 10:48 - 2019-12-05 10:48 - 000000000 _____ () C:\Users\Admin\AppData\Local\oobelibMkey.log
2018-03-15 15:21 - 2018-03-15 15:21 - 000000722 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2018-10-01 09:54 - 2018-10-01 09:54 - 000000000 _____ () C:\Users\Admin\AppData\Local\{31FC9B76-D959-4A3C-98A2-AC23EE396ECD}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Admin (administrateur) sur BUREAU (MSI MS-7816) (07-06-2021 07:57:10)
Exécuté depuis C:\Users\Admin\Desktop
Profils chargés: Admin
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\qBittorrent\qbittorrent.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
(FSPro Labs -> FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(Gladinet, Inc. -> ) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\WOSVSSSvr.exe
(Gladinet, Inc. -> Gladinet, INC) C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(GoPro, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Iain Patterson) [Fichier non signé] C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology enterprise -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Photodex Corporation -> ) C:\Program Files (x86)\Photodex\ProShow Producer\scsiaccess.exe
(Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Realtek) [Fichier non signé] C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplms.exe
(SafeNet Canada, Inc. -> SafeNet, Inc.) C:\Windows\System32\hasplmv.exe
(Siber Systems -> ) C:\Program Files\Siber Systems\GoodSync\gs-server.exe
(Siber Systems -> Siber Systems Inc.) C:\Program Files (x86)\Siber Systems\AI RoboForm\rf-chrome-nm-host.exe
(Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
(Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10_64.exe
(Stardock Corporation -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\Dock64.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe
(Stardock Corporation -> Stardock) C:\Program Files (x86)\Stardock\ObjectDock\ObjectDockTray.exe
(Stéphane Mitermite) [Fichier non signé] C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe
(Stéphane Mitermite) [Fichier non signé] C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe
(Synapse Développement) [Fichier non signé] C:\Program Files (x86)\Cordial\Integration_Cordial.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>
(Winstep Software Technologies) [Fichier non signé] C:\Program Files (x86)\Winstep\WsxService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [756832 2018-07-30] (Acronis International GmbH -> )
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [3096800 2020-05-12] (FSPro Labs -> FSPro Labs)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9268168 2018-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
HKLM\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe [289840 2018-08-30] (Intel(R) Rapid Storage Technology enterprise -> Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-21] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [55664 2015-02-05] (OLYMPUS IMAGING CORP. -> OLYMPUS IMAGING CORP.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\isuspm.exe [2068856 2011-10-12] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [Nuance OmniPage Ultimate-reminder] => C:\Program Files (x86)\Nuance\OmniPage19\Ereg\Ereg.exe [334152 2013-01-14] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172832 2021-06-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe [779144 2019-05-22] (Express Vpn LLC -> ExpressVPN)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME\TomTomHOME.exe [3576512 2006-10-30] (TomTom International BV -> TomTom)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [184104 2021-02-10] (Mixbyte Inc -> )
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\Users\Admin\AppData\Local\Temp\~DFC0473CA1C2AE7C5D.TMP" /F /Q <==== ATTENTION
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Admin\AppData\Roaming\ZHP\ZHPCleaner.txt [10129 2021-06-06] () [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [PopupLexical] => C:\Program Files (x86)\Cordial\PopupLexical.exe [3719168 2010-08-30] (Synapse Développement) [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [Integration de Cordial] => C:\PROGRAM FILES (X86)\CORDIAL\INTEGRATION_CORDIAL.EXE [491603 2012-11-02] (Synapse Développement) [Fichier non signé]
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2161624 2020-05-03] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [16422144 2021-03-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Run: [RoboForm] => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [148800 2021-05-15] (Siber Systems -> Siber Systems)
HKLM\...\Windows x64\Print Processors\Canon iX6500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAO.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG6200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAU.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iX6500 series: C:\WINDOWS\system32\CNMLMAO.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6200 series: C:\WINDOWS\system32\CNMLMAU.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON XP-235 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBPFE.DLL [180224 2014-03-04] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF-XChange5: C:\WINDOWS\system32\pxc50pm.dll [57920 2014-06-19] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-03-02] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-04] (Google LLC -> Google LLC)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FreeMi UPnP Media Server.lnk [2017-11-30]
ShortcutTarget: FreeMi UPnP Media Server.lnk -> C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar112.lnk [2021-06-05]
ShortcutTarget: Sidebar112.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Fichier non signé] [Fichier en cours d'utilisation]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2014-10-06]
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDock\ObjectDock.exe (Stardock Corporation -> Stardock)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FreeMi UPnP Media Server.lnk [2017-12-24]
ShortcutTarget: FreeMi UPnP Media Server.lnk -> C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2020-06-07]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2018-02-13]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06045A8B-227D-4416-BF58-1520663687D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {08676256-A439-4CAF-B2AD-23E743F0E18A} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [954456 2021-05-20] (Bitdefender SRL -> Bitdefender)
Task: {1D566C8F-745E-4E69-BD5C-DA2959657B55} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2711089266-1074571310-3492587935-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {1EABDC44-42E4-440F-A910-8CA935C485F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {25FF4A1C-E426-495C-BCAD-590263242E27} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {27C8A3EF-30B4-460F-BD58-D45AF3DD278F} - System32\Tasks\{C5BB9696-1099-41BE-909E-4CEC8633C272} => C:\WINDOWS\system32\pcalua.exe -a "A:\Téléchargements\torrents\Micro Application Plus de 500 Applications pour Excel\setup.exe" -d "A:\Téléchargements\torrents\Micro Application Plus de 500 Applications pour Excel"
Task: {2814E7F6-C71A-4014-ADEB-F36EC847CF28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {326CD739-F087-496F-BC8D-DA8AC5485880} - System32\Tasks\CorelUpdateHelperTask => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1662200 2019-02-27] (Corel Corporation -> Corel Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4E9DDF1A-B5DC-40EB-BE91-7F2C4809F3EF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {581F6616-D3BE-4ADB-84AB-E8AF20AA1DFE} - System32\Tasks\Windows 10 Manager - Protecteur de vie privée => C:\Program Files\Yamicsoft\Windows 10 Manager\PrivacyProtector.exe
Task: {5A56E29C-2ABA-43CD-B405-FC40A18C7DEE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7C300B63-CECB-4097-8554-FDDFB3B8B31F} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {7F0D7352-A930-4EED-B83A-AB48B2CF3E9A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {88E83953-9F7B-496E-A9D8-077D41AF0D9F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {98BD1842-E96D-4D69-BB9A-B276AFD5D69D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {99A7680E-EF44-4D9D-A923-54A35C9E76A4} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.)
Task: {9B50FF2C-4E9A-4F5A-AC80-3934C500813C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {9B8F585E-A73E-4CE5-9793-E33A8D7E6016} - System32\Tasks\EPSON XP-235 Series Update {CD086319-7497-4E3C-8A30-5930EA22FB87} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE
Task: {A11F95A3-9FEF-46C8-8B29-4CF978AB7FCA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {A26615C7-F3B9-456C-B9BB-2E735654C30D} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {A4FF7512-9E1B-48B9-99EF-FC0EBD1A6235} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A7EF9F89-BF3C-4DC2-A9CF-5C534E79FC05} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {AB37FEEA-37F7-4023-AFDC-43978F675ACC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {B3DF6310-FCC3-4F7D-A006-67C62565ECB2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {B7A456E3-E431-4EDD-B6EC-5B21C7A69210} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {B9FE3D3A-D3A7-459C-A373-8ED147B40778} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF27546F-B8C1-48D5-AB1F-42B34137FEDC} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [148800 2021-05-15] (Siber Systems -> Siber Systems)
Task: {D07CB0FF-8122-4CE0-B445-BA3B287E9FFA} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "https://www.roboform.com/test-pass.html?aaa=KICMLMJMLJLMNMNJJMOMCNHMGMOJPMCNLMJMOMLJCNNJHMKMHMCNMMHMMMNJJJNMJJOMNJJJOMOJJNIICMGMCNOMCNLMCNLMJNHJCMNMCNOMPMCNPMCNOMGMPMLMNMJNHICMEKMICNJJCKJNAJCMFJOJMJEJBNIJKIKJJIKJDJPLIJCJOJGJDJBNMJAJCJJNEJCMJNFJCMJNBJCMOLLJCJGJBJJNKJCMOJDJJIAJNIOJLJOJPLHJAJLICJOJGJDJBNJJNIJNDJCMJJNIJNMJCMOMFMMMNMLMFMPMJNFICMJNJJCMPMJNIJCMPMJNOICMNMIMOMHMJNCJCMJNOMCMJNNMCMJNMMCMJNLMCMJNKMCMOMJNJMCMPM"
Task: {DEC492C8-093A-4D55-B446-AC8D246489ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {DFF5FAB6-B8FF-410E-98FA-0F19FC454980} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [888232 2021-01-29] (Bitdefender SRL -> Bitdefender)
Task: {E23A716D-E770-4DDB-AF11-41D80F832E64} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN93H6D15Y => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {E432BEB7-7458-4D27-AB3B-7FB180A960BB} - System32\Tasks\Run RoboForm Process => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [3278224 2021-06-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {E99BB2E0-57A3-495B-B779-80E86223C131} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F02071A3-164B-4C6A-83AD-2FB27B4AEF51} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF513E08-219D-4936-BB07-1CEDE815D494} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON XP-235 Series Update {CD086319-7497-4E3C-8A30-5930EA22FB87}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE:/EXE:{CD086319-7497-4E3C-8A30-5930EA22FB87} /F:UpdateWORKGROUP\BUREAU$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
Task: C:\WINDOWS\Tasks\Windows 10 Manager - Protecteur de vie privée.job => C:\Program Files\Yamicsoft\Windows 10 Manager\PrivacyProtector.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{332a0fc2-35d3-4bd6-aabf-0e4db26245bd}: [DhcpNameServer] 192.168.1.254
Edge:
=======
DownloadDir: C:\Users\Admin\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (RoboForm) -> EdgeExtension_SiberSystemsIncRoboFormEdge_7kk3kr9e0p1np => C:\Program Files\WindowsApps\SiberSystemsInc.RoboFormEdge_8.5.7.0_x86__7kk3kr9e0p1np [2021-04-05]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
FireFox:
========
FF DefaultProfile: x9rxe6ih.default-1579272516198
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 [2021-06-05]
FF HomepageOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Disabled: qwantcomforfirefox@jetpack
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Enabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Enabled: rf-firefox@siber.com
FF NewTabOverride: Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198 -> Disabled: qwantcomforfirefox@jetpack
FF Extension: (Easy Screenshot) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\easyscreenshot@mozillaonline.com.xpi [2020-01-17]
FF Extension: (New Tab Page) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\pavel.sherbakov@gmail.com.xpi [2021-03-07]
FF Extension: (Pas de nom) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\qwantcomforfirefox@jetpack.xpi [2021-01-06]
FF Extension: (RoboForm Password Manager) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\rf-firefox@siber.com.xpi [2021-05-10]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\translator@zoli.bod.xpi [2020-01-17]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-05-11]
FF Extension: (Integrated Inbox for Gmail & Google Apps) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{28197867-b1ef-4140-8e3b-55c45b9c8460}.xpi [2020-01-17]
FF Extension: (Logitech SetPoint) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2021-04-02]
FF Extension: (Web Developer) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\x9rxe6ih.default-1579272516198\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2020-01-17]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2020-04-30] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-04-02] [non signé]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Firefox\Extensions: [{96D26B34-35E1-4ed2-AB54-138830AC8268}] - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox
FF Extension: (Correction Cordial) - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox [2016-04-04] [] [non signé]
FF HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\...\Thunderbird\Extensions: [{96D26B34-35E1-4ed2-AB54-138830AC8268}] - C:\Program Files (x86)\Cordial\Macros\Mozilla\correctionFirefox
FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google Inc -> Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2016-02-29] () [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2711089266-1074571310-3492587935-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Admin\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2020-07-23] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2020-07-23] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2021-06-07]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR NewTab: Default -> Active:"chrome-extension://ncdfeghkpohnalmpblddmnppfooljekh/core/newpage-pop.html"
CHR DefaultSearchKeyword: Default -> google.com__
CHR Extension: (Google Traduction) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-06-06]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-06]
CHR Extension: (Privacy Pass) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2021-06-06]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-06]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-06]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-06-06]
CHR Extension: (Earth View from Google Earth) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2021-06-06]
CHR Extension: (Video2Edit - Video Editor & Video Converter) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\djanbckaomofhalpklkcbimkmlaocddd [2021-06-06]
CHR Extension: (Dropbox pour Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-06-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-06-06]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-06]
CHR Extension: (PDF to Word Converter doc) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjhedcdiaeighcnidfhegnmfieiejmdj [2021-06-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-06]
CHR Extension: (Enregistrer dans Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2021-06-06]
CHR Extension: (SearchPreview) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2021-06-06]
CHR Extension: (Video Downloader Plus) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdmdpdhfaamhgaojpelccmeehpfljgf [2021-06-06]
CHR Extension: (Dropbox) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2021-06-06]
CHR Extension: (Formulaires Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhknlonaankphkkbnmjdlpehkinifeeg [2021-06-06]
CHR Extension: (Zoom pour Google Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajondecmobodlejlcjllhojikagldgd [2021-06-06]
CHR Extension: (Facture Gratuite pour AliExpress) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldacgepjfajfdaodegphiolcelhlnkfm [2021-06-06]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-06-06]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2021-06-06]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2021-06-06]
CHR Extension: (Incredible StartPage - Productive Start Page) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdfeghkpohnalmpblddmnppfooljekh [2021-06-06]
CHR Extension: (OneDrive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2021-06-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-06]
CHR Extension: (Bookmax - Online Bookmark Manager) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjpkfadmfhloombfmmlllnbhkoehckm [2021-06-06]
CHR Extension: (Bookmarks clean up) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oncbjlgldmiagjophlhobkogeladjijl [2021-06-06]
CHR Extension: (Video Downloader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbbjnobglkpbfmpabbgogbnlffkmgbii [2021-06-06]
CHR Extension: (Hover Zoom+) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2021-06-06]
CHR Extension: (Click&Clean App) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2021-06-06]
CHR Extension: (Outlook.com) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2021-06-06]
CHR Extension: (Speedtest by Ookla) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2021-06-06]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-06]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-06]
CHR Extension: (RoboForm Password Manager) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2021-06-06]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-06-05]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2021-06-05]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKLM\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2020-06-06]
CHR HKU\S-1-5-21-2711089266-1074571310-3492587935-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
CHR HKLM-x32\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2020-06-06]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1162080 2018-07-30] (Acronis International GmbH -> )
S2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [176032 2021-04-24] (Adguard Software Limited -> Adguard Software Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [180072 2018-07-11] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [387128 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [406584 2017-04-20] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe [72536 2018-05-31] (Google Inc -> Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-05-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-06-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 Everything; C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [368640 2019-05-22] (Iain Patterson) [Fichier non signé]
R2 FreeMiWindowsService; C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [71168 2016-05-24] (Stéphane Mitermite) [Fichier non signé]
S3 fsphfext; C:\WINDOWS\SysWOW64\HFExtSvc.exe [166176 2016-10-23] (FSPro Labs -> FSPro Labs)
R2 GladFileMonSvc; C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [30032 2013-03-22] (Gladinet, Inc. -> Gladinet, INC)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2017-03-16] (GoPro, Inc. -> )
R2 GsServer; C:\Program Files\Siber Systems\GoodSync\gs-server.exe [8961736 2020-11-29] (Siber Systems -> )
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [3500552 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-08] (HP Inc. -> HP Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-11] (Malwarebytes Inc -> Malwarebytes)
S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2018-07-30] (Acronis International GmbH -> Acronis International GmbH)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1358248 2021-01-29] (Bitdefender SRL -> Bitdefender)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 Realtek11nSU; C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Fichier non signé]
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13688656 2021-03-24] (Adlice -> )
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2016-02-29] (Photodex Corporation -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
R2 Start10; C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe [220440 2021-02-11] (Stardock Corporation -> Stardock Software, Inc)
S4 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2018-07-30] (Acronis International GmbH -> )
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [301144 2021-05-20] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-04-20] (Bitdefender SRL -> Bitdefender)
S3 wampapache64; c:\wamp64\bin\apache\apache2.4.41\bin\httpd.exe [29696 2019-08-09] (Apache Software Foundation) [Fichier non signé]
S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.4.10\bin\mysqld.exe [15837608 2019-11-07] (MariaDB Corporation Ab -> )
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql8.0.18\bin\mysqld.exe [48781920 2019-09-20] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService.exe [775168 2018-01-24] (Winstep Software Technologies) [Fichier non signé]
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [94720 2021-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2017-06-20] (Anvsoft Inc. -> AnvSoft Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2718744 2021-03-24] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R1 AutoSave; C:\WINDOWS\System32\DRIVERS\AutoSave.sys [36896 2009-08-13] (Avanquest North America Inc. -> Avanquest)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169864 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2018-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [802976 2021-04-20] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2021-04-28] (Bitdefender SRL -> © Bitdefender SRL)
S3 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96616 2020-05-26] (Bitdefender SRL -> BitDefender)
S3 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [152672 2017-04-20] (Bluestack Systems, Inc. -> BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-04-20] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (Kaspersky Lab -> AO Kaspersky Lab)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34744 2019-02-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2019-04-12] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-12] (Malwarebytes Inc -> Malwarebytes)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28160 2019-05-22] (ExprsVPN LLC -> )
R1 extensionDispKmode; C:\WINDOWS\System32\drivers\extensionDispKmode.sys [278264 2017-12-21] (WDKTestCert datronicsoft,131378753506229123 -> datronicsoft Inc.)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [380504 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 FSProFilter2; C:\WINDOWS\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (Alfa System Programming -> FSPro Labs)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [488592 2021-04-20] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [31264 2013-09-04] (GFI Software (Florida) Inc. -> ThreatTrack Security)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-10-29] (Bitdefender SRL -> BitDefender LLC)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1971208 2018-07-18] (SafeNet Canada, Inc. -> SafeNet, Inc.)
S3 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [185312 2020-12-14] (Bitdefender SRL -> Bitdefender)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554408 2016-10-01] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [120008 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [85704 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29816 2016-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [207560 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1193160 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1058504 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57032 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [57056 2016-12-23] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [58592 2016-12-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50672 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [44768 2017-01-20] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [236488 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2018-09-16] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [258864 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [109248 2018-05-30] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [177848 2018-06-04] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [93888 2018-05-04] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [141000 2018-07-23] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199392 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-30] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
R3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-12] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-02] (Malwarebytes Inc -> Malwarebytes)
R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 MirayVirtualDisk; C:\WINDOWS\System32\drivers\mvdo.sys [464472 2016-10-17] (Miray Software AG -> Miray)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 qcusbwwan; C:\WINDOWS\System32\drivers\qcusbwwan.sys [557112 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 RkFlt; C:\Windows\System32\drivers\rkflt.sys [42056 2021-05-28] (Adlice -> )
S3 scvad_simple; C:\WINDOWS\system32\drivers\SplitCamAudio.sys [23552 2016-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 splitcam_hd_driver; C:\WINDOWS\system32\DRIVERS\splitcam_hd_driver.sys [37600 2016-08-02] (OMT-LIDER, TOV -> Windows (R) Win 7 DDK provider)
S3 sthid; C:\WINDOWS\System32\drivers\sthid.sys [21216 2014-10-22] (Splashtop Inc. -> Splashtop Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45440 2019-05-22] (ExprsVPN LLC -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-05-28] (Adlice -> )
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [641728 2021-03-24] (Bitdefender SRL -> Bitdefender)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-07 07:57 - 2021-06-07 07:59 - 000058107 _____ C:\Users\Admin\Desktop\FRST.txt
2021-06-07 07:55 - 2021-06-07 07:55 - 000000000 ____D C:\Users\Admin\Desktop\FRST-OlderVersion
2021-06-06 21:48 - 2021-06-06 21:47 - 000547689 _____ C:\Users\Admin\Desktop\ZHPDiag.txt
2021-06-06 21:24 - 2021-06-06 21:24 - 000000901 _____ C:\Users\Admin\Desktop\ZHPSuite.lnk
2021-06-05 21:04 - 2021-06-05 21:11 - 000000911 _____ C:\Users\Admin\Desktop\ZHPCleaner.lnk
2021-06-05 20:58 - 2021-06-05 20:58 - 003256472 _____ (Nicolas Coolman) C:\Users\Admin\Desktop\ZHPCleaner.exe
2021-06-05 17:52 - 2021-06-05 17:55 - 000005889 _____ C:\Users\Admin\Desktop\Fixlog.txt
2021-06-05 13:32 - 2021-06-07 07:58 - 000000000 ____D C:\FRST
2021-06-05 12:54 - 2021-06-05 20:59 - 000000000 ____D C:\Users\Admin\AppData\Local\ZHP
2021-06-05 12:49 - 2021-06-07 07:55 - 002300416 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2021-06-05 02:14 - 2021-06-05 02:14 - 000000000 ____D C:\ProgramData\bdch
2021-06-04 04:13 - 2021-06-04 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-06-03 12:50 - 2021-06-03 12:50 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-06-03 11:47 - 2021-06-03 11:47 - 000076064 _____ C:\Users\Admin\Desktop\invoice-2021-05-18-0014-3011186120968126.pdf
2021-06-02 13:51 - 2021-06-02 13:51 - 000000165 ____H C:\Users\Admin\Desktop\~$MATRICE ABONDANCES BIS.ods
2021-06-02 13:40 - 2021-06-02 13:41 - 000021272 _____ C:\Users\Admin\Desktop\60b63fea8cbcf-232d8465424ffeec055c8c02c228e79d.pdf
2021-06-02 08:43 - 2021-06-02 08:43 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-02 08:42 - 2021-06-02 08:42 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-02 08:42 - 2021-06-02 08:42 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-02 08:41 - 2021-06-02 08:41 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-01 12:05 - 2021-06-03 09:08 - 000009019 _____ C:\Users\Admin\Desktop\MATRICE ABONDANCES BIS.ods
2021-05-28 20:28 - 2021-05-28 20:28 - 000042056 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2021-05-28 20:28 - 2021-05-28 20:28 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2021-05-28 20:27 - 2021-05-28 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-05-22 19:37 - 2021-05-22 19:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\RenPy
2021-05-18 11:51 - 2021-05-18 11:51 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-05-14 00:31 - 2021-04-21 01:15 - 007401440 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 005180384 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPScanTEDrv.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 001332192 _____ (HP Inc.) C:\WINDOWS\system32\HPScanTEDrv_x64_DiscoveryLibDyn.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 000966112 _____ (HP Inc.) C:\WINDOWS\SysWOW64\DiscoveryLibDyn.dll
2021-05-14 00:31 - 2021-04-21 01:15 - 000668144 _____ (HP Inc., LP) C:\WINDOWS\system32\HPWia2Drv.dll
2021-05-12 18:28 - 2021-05-12 18:28 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2021-05-12 08:10 - 2021-05-12 08:14 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-12 08:10 - 2021-05-12 08:14 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-12 07:25 - 2021-05-12 07:25 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 07:24 - 2021-05-12 07:24 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 07:24 - 2021-05-12 07:24 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 07:24 - 2021-05-12 07:24 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-12 07:24 - 2021-05-12 07:24 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 07:23 - 2021-05-12 07:23 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 07:23 - 2021-05-12 07:23 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 07:23 - 2021-05-12 07:23 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 07:23 - 2021-05-12 07:23 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 07:22 - 2021-05-12 07:22 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 07:22 - 2021-05-12 07:22 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-11 13:10 - 2021-05-11 13:10 - 000000000 ____D C:\Users\Admin\AppData\Local\molotov
2021-05-11 13:05 - 2021-05-11 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMedia Recode 64bit
2021-05-11 12:48 - 2021-05-11 12:48 - 000001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-11 12:48 - 2021-05-11 12:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-10 21:45 - 2021-05-10 21:45 - 000033274 _____ C:\WINDOWS\SysWOW64\prfc0003.dat.tmp
2021-05-09 07:24 - 2021-05-09 07:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-07 07:53 - 2018-02-01 13:48 - 000000000 ____D C:\Users\Admin\AppData\Roaming\qBittorrent
2021-06-07 07:53 - 2016-12-23 18:01 - 000000000 ____D C:\a-ranger
2021-06-07 07:53 - 2015-10-01 17:33 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Everything
2021-06-07 07:26 - 2020-09-25 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-07 02:13 - 2020-09-25 23:52 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{BCD80246-15F9-4915-BF2C-26E66DC69ED9}
2021-06-07 00:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-06 23:30 - 2016-10-20 11:13 - 000000000 ____D C:\ProgramData\GoodSync
2021-06-06 22:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-06 22:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-06 21:47 - 2014-11-04 20:00 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ZHP
2021-06-06 20:35 - 2016-05-24 08:04 - 000000000 ____D C:\Program Files\CCleaner
2021-06-06 20:09 - 2019-06-01 11:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\WhatsApp
2021-06-06 15:25 - 2014-10-04 21:36 - 000000000 ____D C:\Users\Admin\AppData\Local\Sidebar7
2021-06-06 08:41 - 2020-04-09 12:49 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2021-06-05 18:31 - 2018-02-09 17:01 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2021-06-05 18:19 - 2017-06-15 19:03 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-06-05 18:19 - 2014-10-04 19:58 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2021-06-05 18:17 - 2018-08-01 08:17 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2021-06-05 18:17 - 2018-08-01 08:17 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2021-06-05 18:11 - 2020-09-25 23:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-05 18:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-05 18:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-05 18:08 - 2020-09-25 23:06 - 000000000 ____D C:\Users\Admin
2021-06-05 17:55 - 2014-11-13 12:18 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2021-06-05 12:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-05 12:01 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2021-06-05 11:47 - 2020-09-25 22:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-05 09:39 - 2016-10-26 17:17 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2021-06-04 20:58 - 2019-02-15 13:39 - 000000000 ____D C:\ProgramData\Adguard
2021-06-04 18:01 - 2020-01-26 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-06-04 04:16 - 2018-05-18 16:04 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-06-03 16:15 - 2020-12-30 13:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\MuWire
2021-06-03 14:21 - 2019-02-15 13:38 - 000000000 ____D C:\Program Files (x86)\Adguard
2021-06-02 08:41 - 2021-03-06 12:25 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-01 08:39 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-01 08:35 - 2020-09-25 23:52 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-30 18:57 - 2020-11-05 18:47 - 000000000 ____D C:\Users\Admin\AppData\Local\WhatsApp
2021-05-28 20:27 - 2015-04-09 13:34 - 000000000 ____D C:\Program Files\RogueKiller
2021-05-27 20:10 - 2020-09-25 23:24 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-27 20:10 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-27 20:10 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-27 20:07 - 2018-08-01 08:16 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-05-27 19:57 - 2016-01-08 12:29 - 000000000 ____D C:\Users\Admin\AppData\Local\Everything
2021-05-27 14:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-24 08:12 - 2017-06-15 19:01 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2021-05-21 17:57 - 2017-12-16 18:13 - 000000000 ___RD C:\Images
2021-05-15 09:50 - 2020-09-25 23:52 - 000004498 _____ C:\WINDOWS\system32\Tasks\Open URL by RoboForm
2021-05-15 09:50 - 2020-09-25 23:52 - 000003782 _____ C:\WINDOWS\system32\Tasks\Run RoboForm TaskBar Icon
2021-05-15 09:50 - 2018-06-10 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
2021-05-13 16:41 - 2021-04-02 16:09 - 000014848 _____ C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-05-13 12:25 - 2021-03-21 13:46 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-12 18:30 - 2018-12-03 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2021-05-12 18:30 - 2018-12-03 15:11 - 000000000 ____D C:\Program Files\Calibre2
2021-05-12 18:26 - 2017-11-29 21:08 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2021-05-12 18:24 - 2016-05-03 11:33 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2021-05-12 18:23 - 2016-05-03 11:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2021-05-12 17:42 - 2016-10-10 17:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Apowersoft
2021-05-12 08:18 - 2016-11-01 23:22 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-12 08:17 - 2019-02-15 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard
2021-05-12 08:13 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-12 08:07 - 2020-09-25 22:57 - 001309096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-12 07:57 - 2018-05-18 16:04 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-12 07:57 - 2018-05-18 16:04 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-12 07:57 - 2015-01-05 09:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-05-12 07:51 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-12 07:51 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-12 07:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-12 07:32 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-12 07:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-12 07:23 - 2013-08-22 17:44 - 000414082 __RSH C:\bootmgr
2021-05-12 06:22 - 2020-11-09 18:49 - 000000000 ____D C:\Program Files\dotnet
2021-05-12 06:16 - 2014-10-08 03:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 05:59 - 2014-10-08 03:08 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-12 00:10 - 2013-08-22 15:25 - 000000419 _____ C:\WINDOWS\win.ini
2021-05-11 13:13 - 2017-12-28 13:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Molotov
2021-05-11 13:12 - 2020-09-25 23:52 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2711089266-1074571310-3492587935-1001
2021-05-11 13:12 - 2020-09-25 23:06 - 000002441 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-11 13:12 - 2017-01-09 21:28 - 000000000 ___RD C:\Users\Admin\OneDrive
2021-05-11 13:10 - 2017-12-28 13:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2021-05-11 13:10 - 2016-05-12 09:02 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp
2021-05-11 13:08 - 2019-09-10 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2021-05-11 13:08 - 2019-09-01 14:03 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2021-05-11 13:05 - 2019-06-04 23:15 - 000000000 ____D C:\Program Files\XMedia Recode 64bit
2021-05-11 13:02 - 2019-01-07 19:57 - 000001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2021-05-11 13:02 - 2016-11-19 14:40 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2021-05-11 13:02 - 2015-01-05 09:38 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-11 13:01 - 2014-10-06 17:08 - 000000000 ____D C:\Program Files\Paint.NET
2021-05-11 12:48 - 2021-03-02 13:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-05-09 07:24 - 2021-04-15 13:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
==================== Fichiers à la racine de certains dossiers ========
2018-01-04 11:36 - 2018-01-04 11:37 - 000000089 _____ () C:\Users\Admin\IP_Log_Data.js
2016-10-31 17:53 - 2018-05-02 13:42 - 003146112 _____ () C:\Users\Admin\ZHPCleaner.exe
2020-09-30 23:00 - 2020-09-30 23:00 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2017-07-24 20:08 - 2017-11-18 19:26 - 000000020 _____ () C:\Users\Admin\AppData\Roaming\AVSDVDPlayer.m3u
2014-10-06 19:12 - 2021-02-28 08:44 - 000001651 _____ () C:\Users\Admin\AppData\Roaming\BUREAU.MTBF.txt
2019-08-24 15:55 - 2021-02-27 21:04 - 000000096 _____ () C:\Users\Admin\AppData\Roaming\Camdata.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000408 _____ () C:\Users\Admin\AppData\Roaming\CamLayout.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000408 _____ () C:\Users\Admin\AppData\Roaming\CamShapes.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000004536 _____ () C:\Users\Admin\AppData\Roaming\CamStudio.cfg
2019-12-10 17:16 - 2019-12-10 17:16 - 000000092 _____ () C:\Users\Admin\AppData\Roaming\Control System_Settings.ini
2018-01-04 11:37 - 2018-01-04 11:37 - 000000016 _____ () C:\Users\Admin\AppData\Roaming\Network Meter_Usage.ini
2014-10-08 21:09 - 2014-10-08 21:09 - 000000130 _____ () C:\Users\Admin\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2018-01-04 11:40 - 2018-01-04 11:40 - 000002453 _____ () C:\Users\Admin\AppData\Roaming\System Monitor II_CPU0_Settings.ini
2018-01-04 11:40 - 2018-01-04 11:40 - 000000121 _____ () C:\Users\Admin\AppData\Roaming\System Monitor II_UptimeRecord.ini
2018-01-04 11:38 - 2018-01-04 11:38 - 000000361 _____ () C:\Users\Admin\AppData\Roaming\Top Process Monitor_Settings.ini
2019-08-24 15:55 - 2021-02-27 21:04 - 000000096 _____ () C:\Users\Admin\AppData\Roaming\version2.xml
2014-10-06 19:13 - 2021-02-28 17:37 - 000003366 _____ () C:\Users\Admin\AppData\Roaming\__AvidCloudManager.log
2014-10-06 19:13 - 2021-02-27 22:02 - 000002682 _____ () C:\Users\Admin\AppData\Roaming\__AvidCloudManagerPrevious.log
2019-10-21 08:49 - 2019-10-21 08:49 - 000000716 ____H () C:\Users\Admin\AppData\Roaming\{C252D95E-7175-AF95-AC17-C5388C157F5D}
2020-06-08 18:45 - 2020-06-08 18:45 - 000000064 _____ () C:\Users\Admin\AppData\Roaming\~SiMPLEX.ini
2021-04-02 16:09 - 2021-05-13 16:41 - 000014848 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-01-05 08:10 - 2017-01-05 08:10 - 000000129 _____ () C:\Users\Admin\AppData\Local\ebc20fa7cdf82158bdd9e98a04914332
2018-09-16 16:46 - 2018-09-16 16:46 - 000000036 _____ () C:\Users\Admin\AppData\Local\housecall.guid.cache
2016-05-11 16:11 - 2016-05-11 16:11 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement
2019-12-05 10:48 - 2019-12-05 10:48 - 000000000 _____ () C:\Users\Admin\AppData\Local\oobelibMkey.log
2018-03-15 15:21 - 2018-03-15 15:21 - 000000722 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
2018-10-01 09:54 - 2018-10-01 09:54 - 000000000 _____ () C:\Users\Admin\AppData\Local\{31FC9B76-D959-4A3C-98A2-AC23EE396ECD}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================