Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2021
Exécuté par jc (administrateur) sur DESKTOP-DQ8IPHQ (HP HP ENVY Notebook) (23-08-2021 20:41:04)
Exécuté depuis C:\Users\jc\Desktop
Profils chargés: jc
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(%CFullName%) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
() [Fichier non signé] C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
() [Fichier non signé] C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Crealogix AG -> ) C:\Program Files (x86)\CREALOGIX PayEye\PayEye.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\129.4.3571\QtWebEngineProcess.exe <2>
(Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\jc\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20090.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20090.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe
(Softex Inc.) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-04-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [20480 2006-09-20] () [Fichier non signé]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8090912 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-23] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31135728 2020-12-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\MountPoints2: {7932bf85-ab2c-11eb-9cc4-4c3488fb2862} - "F:\Setup.exe"
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\MountPoints2: {a859a3c2-1866-11eb-9ca8-4c3488fb2862} - "F:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MP560 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA0.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\ssj1MPC: C:\Windows\System32\spool\prtprocs\x64\ssj1mpc.dll [41984 2016-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\usp02PC: C:\Windows\System32\spool\prtprocs\x64\usp02pc.dll [43520 2014-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP560 series: C:\Windows\system32\CNMLMA0.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\Windows\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\...\Print\Monitors\ssj1M Langmon: C:\Windows\system32\ssj1mlm.dll [34304 2016-01-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\usp02 Langmon: C:\Windows\system32\usp02l.dll [29184 2014-04-16] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2015-07-02] (Softex Inc..) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2015-07-02] (Softex Inc..) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\C-CHANNEL OnlineUpdate.lnk [2016-01-12]
ShortcutTarget: C-CHANNEL OnlineUpdate.lnk -> C:\Program Files (x86)\C-CHANNEL\OnlineUpdate\PeOnlineUpdate.exe (C-CHANNEL AG -> C-Channel AG, 6331 Hünenberg ZG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PayEye.lnk [2021-02-17]
ShortcutTarget: PayEye.lnk -> C:\Program Files (x86)\CREALOGIX PayEye\PayEye.exe (Crealogix AG -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickScan (OpticFilm 7600i).lnk [2016-01-22]
ShortcutTarget: QuickScan (OpticFilm 7600i).lnk -> C:\Program Files (x86)\Plustek\OpticFilm 7600i\QuickScan.exe () [Fichier non signé]
Startup: C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CLX.PayPen.lnk [2018-05-20]
ShortcutTarget: CLX.PayPen.lnk -> C:\Program Files (x86)\CLX.PayPen II\Clx.Epayment.Reader.exe (CREALOGIX E-Payment AG -> Crealogix AG)
Startup: C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-01-12]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BootExecute: autocheck autochk * Partizan
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0852A29C-412F-4FA2-B9F7-1D70DEE9936D} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {09A78A95-27F9-4EDA-8826-D079273B40C2} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [4875336 2020-11-11] (Greatis Software LLC -> Greatis Software)
Task: {129824E6-3A97-4A3D-814B-D3B59FA89147} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-07-12] (HP Inc. -> HP Inc.)
Task: {1937244F-D29D-4CFA-9DB6-1C3F7538C2F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {1B793FCB-A6BA-4AC4-AD42-15A3082E6D25} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20CC9216-1C71-48D5-BF9D-6CB5422E1ADC} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe
Task: {2AE328EF-A5AB-4B4A-B3CB-1526599CD875} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {32D09C5C-2A34-4F1B-8D22-220090475963} - System32\Tasks\Samsung_PSSD_Registration => C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe [499184 2018-10-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics)
Task: {3DCC9268-DFBD-4D3C-AA36-08C203837D36} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-08-17] (HP Inc. -> HP Inc.)
Task: {3F9C350C-8626-4E2F-BFAD-A1967D52F545} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {49F77542-62F8-4C6C-89D2-24A8546181D0} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [511344 2015-06-19] (Dropbox, Inc -> )
Task: {5950F7AC-3CEE-46C9-8EC1-F30D201EF4A9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DA63E35-81A8-4C76-A290-E132BB0C6F56} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [506104 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {5F8015A0-801B-4D15-92EC-51B3D72FB6AC} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6B62B87E-2670-45E4-84C5-17FF2848723A} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [4819704 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {6BA2BFF2-FFFD-4722-9179-9F2C0AFFEBDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-12] (Google Inc -> Google Inc.)
Task: {76A980B5-36B3-4E7C-A4F1-80199C522C8A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78E2C8F0-158F-4FFD-9E2A-A7719155146E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C3BF4F5-2DCB-4A5C-9D58-1202681221DB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-07-12] (HP Inc. -> HP Inc.)
Task: {9CC40BE8-909B-4161-884D-F2BD57F08131} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AE8320A6-C020-4CEB-A697-86A04806817B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-12] (Google Inc -> Google Inc.)
Task: {CC31B3AE-886E-4984-A1B2-3743A55CE1FD} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-12-16] (Garmin International, Inc. -> )
Task: {D309840E-6BDF-4824-B799-83AFCE28723F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D39026A4-CA0A-44A5-864D-E7399FB098DB} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [506104 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {DE8EDE2A-17F2-469C-8692-0F89187D2C9F} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1354504 2015-05-21] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Task: {DECE86D9-FDF1-46BF-A3DB-69390B6EA32C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF31042A-BCEC-4866-931B-877306B654DB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DF791C39-15D5-4748-BBD1-52A533EDFECA} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {E1E36B34-7805-42AA-B536-152C532B60DE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7299A06-FACB-4D27-99E6-108799DCF6FD} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EB777CEB-E04D-495C-A783-8E1E7B011FF1} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {ECE195AB-9D0B-4A49-BC27-48BF4E7ABAF5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {EE693AF4-6617-48F9-9F09-A38FDAF7836E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {F5C81CA0-CDE4-496C-B1EE-DCF6C5F9EDA8} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F86930A0-8EAE-4BF9-BF64-8C8BFA8B8236} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{4ff3d13c-34f2-44d2-bd67-e8d30c113e6c}: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{f37a08ea-dea9-49c2-a432-3411c22acdb5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jc\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-23]
Edge Extension: (Kaspersky Protection) - C:\Users\jc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-07-02]
Edge HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HP SimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-10-22] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1233203.dll [2018-05-15] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default [2021-08-23]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://forums.commentcamarche.net; hxxps://www.melectronics.ch; hxxps://www.mobile-universe.ch
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.searchnu.com/406"
CHR Extension: (Slides) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-30]
CHR Extension: (Kaspersky Protection) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-19]
CHR Extension: (Docs) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-30]
CHR Extension: (Google Drive) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-12]
CHR Extension: (Recherche Google) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-12]
CHR Extension: (Sheets) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-30]
CHR Extension: (Extension Trusted Shops pour Google Chrome) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2021-01-28]
CHR Extension: (HP SimplePass) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg [2018-02-08]
CHR Extension: (Protection Web Avira) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-07-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25]
CHR Extension: (Adresse IP) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjndloejlcbpkholmagjbddfkjmmploh [2020-12-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-23]
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-19]
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-19]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-06-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [4981936 2019-04-23] (devolo AG -> devolo AG)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [734760 2021-07-12] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [733224 2021-07-12] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [733216 2021-07-12] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [733760 2021-07-12] (HP Inc. -> HP Inc.)
S2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-25] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel(R) Wireless Display -> Intel)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [124928 2015-07-02] (Softex Inc.) [Fichier non signé]
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] (Samsung Electronics CO., LTD. -> )
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [91664 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 GigasetGenericUSB_x64; C:\WINDOWS\system32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2019-08-26] (Siemens AG -> Siemens Home and Office Communication Devices GmbH & Co. KG)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [674128 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1457464 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-07-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-06-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [36496 2018-11-14] (devolo AG -> Riverbed Technology, Inc.)
R3 oraydpms; C:\WINDOWS\System32\drivers\oraydpms.sys [39760 2019-08-09] (AWERAY LIMITED -> Oray)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U3 aspnet_state; pas de ImagePath
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]
U0 Partizan; system32\drivers\Partizan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-23 20:41 - 2021-08-23 20:41 - 000036365 _____ C:\Users\jc\Desktop\FRST.txt
2021-08-23 20:40 - 2021-08-23 20:41 - 000000000 ____D C:\FRST
2021-08-23 20:39 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Desktop\FRST64.exe
2021-08-23 20:38 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Downloads\FRST64.exe
2021-08-23 20:38 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Downloads\FRST64 (1).exe
2021-08-23 19:27 - 2021-08-23 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-08-23 19:08 - 2021-08-23 19:08 - 000000998 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2021-08-23 18:59 - 2021-08-23 19:26 - 000000000 ____D C:\Users\jc\Documents\RegRun2
2021-08-23 18:58 - 2021-08-23 19:23 - 000000000 ____D C:\Program Files (x86)\UnHackMe
2021-08-23 18:58 - 2021-08-23 19:13 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2021-08-23 18:58 - 2021-08-23 18:58 - 000003414 _____ C:\WINDOWS\system32\Tasks\UnHackMe Task Scheduler
2021-08-23 18:58 - 2021-08-23 18:58 - 000001087 _____ C:\Users\jc\Desktop\UnHackMe.lnk
2021-08-23 18:58 - 2021-08-23 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe
2021-08-23 18:58 - 2020-11-11 14:39 - 000016184 _____ (Greatis Software, LLC.) C:\WINDOWS\SysWOW64\Drivers\UnHackMeDrv.sys
2021-08-23 18:58 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2021-08-23 18:56 - 2021-08-23 18:56 - 027576614 _____ C:\Users\jc\Downloads\unhackme-12.zip
2021-08-23 18:56 - 2021-08-23 18:56 - 000000000 ____D C:\Users\jc\Downloads\unhackme-12
2021-08-23 13:16 - 2021-08-23 13:16 - 000001432 _____ C:\Users\jc\Downloads\la-pierre-du-remords.acsm
2021-08-19 16:08 - 2021-08-19 16:08 - 000002306 _____ C:\Users\jc\Desktop\Google Chrome.lnk
2021-08-19 10:19 - 2021-08-19 10:19 - 000204707 _____ C:\Users\jc\Downloads\000000000609198859908082021.pdf
2021-08-18 09:03 - 2021-08-18 09:03 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (3).exe
2021-08-18 08:38 - 2021-08-18 08:38 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (2).exe
2021-08-18 08:38 - 2021-08-18 08:38 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (1).exe
2021-08-17 16:22 - 2021-08-17 16:22 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-08-17 16:21 - 2021-06-17 20:39 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001453344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001192736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 001511184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 001163536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000679184 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000671536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000557360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000546064 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 008306960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 007430448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 004610336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 002102544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446280.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001587984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001490192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446280.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 000811792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 000655632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-08-17 16:21 - 2021-06-17 20:31 - 006076552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-08-17 12:14 - 2021-08-18 10:13 - 000000000 ____D C:\Users\jc\AppData\Roaming\AweSun
2021-08-17 12:14 - 2021-08-18 10:13 - 000000000 ____D C:\Program Files (x86)\Aweray
2021-08-17 12:14 - 2021-08-17 20:41 - 000000000 ____D C:\ProgramData\AweSun
2021-08-17 12:13 - 2021-08-17 12:13 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 001776008 _____ (Teknopars Bilisim) C:\Users\jc\Downloads\Alpemix.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 001776008 _____ (Teknopars Bilisim) C:\Users\jc\Desktop\Alpemix.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 000000052 _____ C:\Users\jc\AppData\Local\xx.ini
2021-08-17 12:08 - 2021-08-17 12:08 - 000000000 ____D C:\Users\jc\AppData\Local\Alpemix
2021-08-16 11:56 - 2021-08-16 11:56 - 000088573 _____ C:\Users\jc\Downloads\REP_P_CH6309000000120764012_1105624360_0_2021060105431592.pdf
2021-08-16 11:56 - 2021-08-16 11:56 - 000081529 _____ C:\Users\jc\Downloads\REP_P_CH0809000000927357832_1109581003_0_2021070107231776.pdf
2021-08-16 11:54 - 2021-08-16 11:54 - 000088218 _____ C:\Users\jc\Downloads\REP_P_CH6309000000120764012_1105624360_0_2021080105212680.pdf
2021-08-14 17:45 - 2021-08-14 17:45 - 000001588 _____ C:\Users\jc\Downloads\le-disparu-de-larvik.acsm
2021-08-14 17:35 - 2021-08-14 17:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-14 17:35 - 2021-08-14 17:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-14 17:35 - 2021-08-14 17:35 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-14 17:35 - 2021-08-14 17:35 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-14 17:35 - 2021-08-14 17:35 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-14 17:35 - 2021-08-14 17:35 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-14 17:34 - 2021-08-14 17:34 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-14 17:26 - 2021-08-14 17:26 - 000000000 ___HD C:\$WinREAgent
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-08-09 21:33 - 2021-08-09 21:33 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-08-09 21:33 - 2021-08-09 21:33 - 000002248 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2021-08-09 21:33 - 2021-08-09 21:33 - 000000000 ____D C:\Program Files\Google
2021-08-09 12:03 - 2021-08-12 18:49 - 000000000 ____D C:\Users\jc\Desktop\livre 21
2021-08-09 10:23 - 2021-08-09 11:07 - 000000000 ____D C:\Users\jc\Desktop\nok
2021-08-09 10:10 - 2021-08-09 11:59 - 000000000 ____D C:\Users\jc\Desktop\livre 21 - Copie
2021-08-08 15:41 - 2021-08-08 15:42 - 000016362 _____ C:\Users\jc\Documents\Léa.odt
2021-08-01 13:55 - 2021-08-01 13:55 - 000001627 _____ C:\Users\jc\Downloads\rencontre-mortelle-sur-internet-l-affaire-marina-ciampi.acsm
2021-07-27 15:26 - 2021-08-12 10:17 - 000000000 ____D C:\Users\jc\Desktop\dan21
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-23 19:44 - 2020-10-08 19:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-23 19:42 - 2016-01-12 09:51 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-23 19:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-23 19:27 - 2016-01-11 17:49 - 000000000 ____D C:\Users\jc\AppData\Local\Dropbox
2021-08-23 19:27 - 2015-10-22 13:38 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-08-23 19:15 - 2020-10-08 20:29 - 003555206 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-23 19:15 - 2020-10-08 19:50 - 000704492 _____ C:\WINDOWS\system32\perfh01D.dat
2021-08-23 19:15 - 2020-10-08 19:50 - 000145594 _____ C:\WINDOWS\system32\perfc01D.dat
2021-08-23 19:15 - 2020-10-08 19:48 - 000732488 _____ C:\WINDOWS\system32\perfh007.dat
2021-08-23 19:15 - 2020-10-08 19:48 - 000149888 _____ C:\WINDOWS\system32\perfc007.dat
2021-08-23 19:15 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-23 19:15 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-23 19:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-23 19:10 - 2017-05-12 19:04 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-23 19:10 - 2016-02-08 16:54 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-08-23 19:08 - 2020-10-08 20:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-23 19:08 - 2020-10-08 19:07 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-23 19:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-08-23 19:08 - 2017-05-12 19:05 - 000000000 ____D C:\ProgramData\Synaptics
2021-08-23 19:08 - 2017-05-12 19:04 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-08-23 19:08 - 2016-01-11 17:39 - 000000000 __SHD C:\Users\jc\IntelGraphicsProfiles
2021-08-23 19:07 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-08-23 13:16 - 2021-05-07 17:37 - 000000000 ____D C:\Users\jc\Documents\My Digital Editions
2021-08-22 20:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-22 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-22 20:28 - 2020-07-29 15:01 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-22 20:28 - 2020-07-29 15:01 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-19 10:54 - 2016-01-12 17:24 - 000000000 ____D C:\Users\jc\Documents\Home
2021-08-17 20:38 - 2020-10-08 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-08-17 15:52 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-08-17 12:52 - 2018-10-12 11:57 - 000000000 ____D C:\Users\jc\AppData\Local\D3DSCache
2021-08-16 15:56 - 2020-08-24 16:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-14 17:59 - 2020-10-08 19:07 - 000328480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-14 17:59 - 2016-01-11 17:49 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-08-14 17:59 - 2016-01-11 17:49 - 000001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-14 17:58 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-14 17:49 - 2021-04-20 15:16 - 000001544 _____ C:\Users\jc\Desktop\Installez Kaspersky VPN Secure Connection de version 21.3.10.391.lnk
2021-08-14 17:38 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-14 17:25 - 2016-01-12 06:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-14 17:21 - 2016-01-12 06:14 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-14 17:19 - 2020-10-08 20:33 - 000004270 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-08-14 17:19 - 2020-10-08 20:33 - 000004038 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-08-14 17:19 - 2020-10-08 20:33 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-14 17:19 - 2020-10-08 20:33 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-12 10:16 - 2020-10-08 20:33 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1166969640-3078423579-2009141641-1001
2021-08-12 10:16 - 2020-10-08 19:09 - 000002465 _____ C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-10 17:46 - 2017-12-01 20:31 - 000000000 ____D C:\Users\jc\AppData\Local\Packages
2021-08-09 11:51 - 2020-08-22 16:17 - 000000000 ____D C:\Users\jc\AppData\Local\Ifolor_AG
2021-08-07 10:37 - 2020-10-08 20:33 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-07 10:37 - 2020-10-08 20:33 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-01 22:05 - 2020-10-08 19:09 - 000000000 ____D C:\Users\jc
2021-08-01 14:45 - 2019-10-22 12:04 - 000000000 ____D C:\Users\jc\Desktop\Dan10-19
2021-08-01 11:07 - 2019-06-05 15:19 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-29 16:33 - 2016-01-11 17:41 - 000000000 ___RD C:\Users\jc\OneDrive
==================== Fichiers à la racine de certains dossiers ========
2019-02-10 15:43 - 2019-02-10 15:43 - 000001767 _____ () C:\Users\jc\AppData\Local\recently-used.xbel
2021-08-17 12:08 - 2021-08-17 12:08 - 000000052 _____ () C:\Users\jc\AppData\Local\xx.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par jc (administrateur) sur DESKTOP-DQ8IPHQ (HP HP ENVY Notebook) (23-08-2021 20:41:04)
Exécuté depuis C:\Users\jc\Desktop
Profils chargés: jc
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(%CFullName%) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
() [Fichier non signé] C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
() [Fichier non signé] C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Crealogix AG -> ) C:\Program Files (x86)\CREALOGIX PayEye\PayEye.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\129.4.3571\QtWebEngineProcess.exe <2>
(Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Greatis Software LLC -> Greatis Software) C:\Program Files (x86)\UnHackMe\hackmon.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\jc\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20090.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20090.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe
(Softex Inc.) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-04-03] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [20480 2006-09-20] () [Fichier non signé]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8090912 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-23] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31135728 2020-12-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\MountPoints2: {7932bf85-ab2c-11eb-9cc4-4c3488fb2862} - "F:\Setup.exe"
HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\...\MountPoints2: {a859a3c2-1866-11eb-9ca8-4c3488fb2862} - "F:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MP560 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA0.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\ssj1MPC: C:\Windows\System32\spool\prtprocs\x64\ssj1mpc.dll [41984 2016-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\usp02PC: C:\Windows\System32\spool\prtprocs\x64\usp02pc.dll [43520 2014-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP560 series: C:\Windows\system32\CNMLMA0.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\Windows\system32\hpbprtmon.dll [432648 2015-07-11] (Microsoft Windows Hardware Compatibility Publisher -> HP)
HKLM\...\Print\Monitors\ssj1M Langmon: C:\Windows\system32\ssj1mlm.dll [34304 2016-01-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\usp02 Langmon: C:\Windows\system32\usp02l.dll [29184 2014-04-16] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2015-07-02] (Softex Inc..) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2015-07-02] (Softex Inc..) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\C-CHANNEL OnlineUpdate.lnk [2016-01-12]
ShortcutTarget: C-CHANNEL OnlineUpdate.lnk -> C:\Program Files (x86)\C-CHANNEL\OnlineUpdate\PeOnlineUpdate.exe (C-CHANNEL AG -> C-Channel AG, 6331 Hünenberg ZG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PayEye.lnk [2021-02-17]
ShortcutTarget: PayEye.lnk -> C:\Program Files (x86)\CREALOGIX PayEye\PayEye.exe (Crealogix AG -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickScan (OpticFilm 7600i).lnk [2016-01-22]
ShortcutTarget: QuickScan (OpticFilm 7600i).lnk -> C:\Program Files (x86)\Plustek\OpticFilm 7600i\QuickScan.exe () [Fichier non signé]
Startup: C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CLX.PayPen.lnk [2018-05-20]
ShortcutTarget: CLX.PayPen.lnk -> C:\Program Files (x86)\CLX.PayPen II\Clx.Epayment.Reader.exe (CREALOGIX E-Payment AG -> Crealogix AG)
Startup: C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-01-12]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BootExecute: autocheck autochk * Partizan
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0852A29C-412F-4FA2-B9F7-1D70DEE9936D} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {09A78A95-27F9-4EDA-8826-D079273B40C2} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [4875336 2020-11-11] (Greatis Software LLC -> Greatis Software)
Task: {129824E6-3A97-4A3D-814B-D3B59FA89147} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-07-12] (HP Inc. -> HP Inc.)
Task: {1937244F-D29D-4CFA-9DB6-1C3F7538C2F5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {1B793FCB-A6BA-4AC4-AD42-15A3082E6D25} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20CC9216-1C71-48D5-BF9D-6CB5422E1ADC} - System32\Tasks\NvNotifier_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\GFExperience.Deployer\NvNotifier.exe
Task: {2AE328EF-A5AB-4B4A-B3CB-1526599CD875} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {32D09C5C-2A34-4F1B-8D22-220090475963} - System32\Tasks\Samsung_PSSD_Registration => C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe [499184 2018-10-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics)
Task: {3DCC9268-DFBD-4D3C-AA36-08C203837D36} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1122992 2021-08-17] (HP Inc. -> HP Inc.)
Task: {3F9C350C-8626-4E2F-BFAD-A1967D52F545} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {49F77542-62F8-4C6C-89D2-24A8546181D0} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [511344 2015-06-19] (Dropbox, Inc -> )
Task: {5950F7AC-3CEE-46C9-8EC1-F30D201EF4A9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DA63E35-81A8-4C76-A290-E132BB0C6F56} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [506104 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {5F8015A0-801B-4D15-92EC-51B3D72FB6AC} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6B62B87E-2670-45E4-84C5-17FF2848723A} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [4819704 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {6BA2BFF2-FFFD-4722-9179-9F2C0AFFEBDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-12] (Google Inc -> Google Inc.)
Task: {76A980B5-36B3-4E7C-A4F1-80199C522C8A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {78E2C8F0-158F-4FFD-9E2A-A7719155146E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C3BF4F5-2DCB-4A5C-9D58-1202681221DB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-07-12] (HP Inc. -> HP Inc.)
Task: {9CC40BE8-909B-4161-884D-F2BD57F08131} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AE8320A6-C020-4CEB-A697-86A04806817B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-12] (Google Inc -> Google Inc.)
Task: {CC31B3AE-886E-4984-A1B2-3743A55CE1FD} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-12-16] (Garmin International, Inc. -> )
Task: {D309840E-6BDF-4824-B799-83AFCE28723F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D39026A4-CA0A-44A5-864D-E7399FB098DB} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [506104 2015-07-02] (Softex Incorporated -> Hewlett-Packard)
Task: {DE8EDE2A-17F2-469C-8692-0F89187D2C9F} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1354504 2015-05-21] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Task: {DECE86D9-FDF1-46BF-A3DB-69390B6EA32C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF31042A-BCEC-4866-931B-877306B654DB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DF791C39-15D5-4748-BBD1-52A533EDFECA} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {E1E36B34-7805-42AA-B536-152C532B60DE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7299A06-FACB-4D27-99E6-108799DCF6FD} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EB777CEB-E04D-495C-A783-8E1E7B011FF1} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {ECE195AB-9D0B-4A49-BC27-48BF4E7ABAF5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {EE693AF4-6617-48F9-9F09-A38FDAF7836E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {F5C81CA0-CDE4-496C-B1EE-DCF6C5F9EDA8} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F86930A0-8EAE-4BF9-BF64-8C8BFA8B8236} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{4ff3d13c-34f2-44d2-bd67-e8d30c113e6c}: [DhcpNameServer] 62.2.24.158 62.2.17.61
Tcpip\..\Interfaces\{f37a08ea-dea9-49c2-a432-3411c22acdb5}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jc\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-23]
Edge Extension: (Kaspersky Protection) - C:\Users\jc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-07-02]
Edge HKU\S-1-5-21-1166969640-3078423579-2009141641-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HP SimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-10-22] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1233203.dll [2018-05-15] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default [2021-08-23]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://forums.commentcamarche.net; hxxps://www.melectronics.ch; hxxps://www.mobile-universe.ch
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.searchnu.com/406"
CHR Extension: (Slides) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-30]
CHR Extension: (Kaspersky Protection) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-05-19]
CHR Extension: (Docs) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-30]
CHR Extension: (Google Drive) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-12]
CHR Extension: (Recherche Google) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-12]
CHR Extension: (Sheets) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-30]
CHR Extension: (Extension Trusted Shops pour Google Chrome) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2021-01-28]
CHR Extension: (HP SimplePass) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg [2018-02-08]
CHR Extension: (Protection Web Avira) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-07-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25]
CHR Extension: (Adresse IP) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjndloejlcbpkholmagjbddfkjmmploh [2020-12-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\jc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-23]
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-19]
CHR Profile: C:\Users\jc\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-19]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-06-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [129808 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-08-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [4981936 2019-04-23] (devolo AG -> devolo AG)
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [734760 2021-07-12] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [733224 2021-07-12] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [733216 2021-07-12] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [733760 2021-07-12] (HP Inc. -> HP Inc.)
S2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-25] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-16] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel(R) Wireless Display -> Intel)
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-09-23] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [124928 2015-07-02] (Softex Inc.) [Fichier non signé]
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] (Samsung Electronics CO., LTD. -> )
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [91664 2016-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 GigasetGenericUSB_x64; C:\WINDOWS\system32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2019-08-26] (Siemens AG -> Siemens Home and Office Communication Devices GmbH & Co. KG)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [674128 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1457464 2021-07-21] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-07-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-06-18] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [36496 2018-11-14] (devolo AG -> Riverbed Technology, Inc.)
R3 oraydpms; C:\WINDOWS\System32\drivers\oraydpms.sys [39760 2019-08-09] (AWERAY LIMITED -> Oray)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-11] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
U3 aspnet_state; pas de ImagePath
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]
U0 Partizan; system32\drivers\Partizan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-23 20:41 - 2021-08-23 20:41 - 000036365 _____ C:\Users\jc\Desktop\FRST.txt
2021-08-23 20:40 - 2021-08-23 20:41 - 000000000 ____D C:\FRST
2021-08-23 20:39 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Desktop\FRST64.exe
2021-08-23 20:38 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Downloads\FRST64.exe
2021-08-23 20:38 - 2021-08-23 20:38 - 002300928 _____ (Farbar) C:\Users\jc\Downloads\FRST64 (1).exe
2021-08-23 19:27 - 2021-08-23 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-08-23 19:08 - 2021-08-23 19:08 - 000000998 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2021-08-23 18:59 - 2021-08-23 19:26 - 000000000 ____D C:\Users\jc\Documents\RegRun2
2021-08-23 18:58 - 2021-08-23 19:23 - 000000000 ____D C:\Program Files (x86)\UnHackMe
2021-08-23 18:58 - 2021-08-23 19:13 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2021-08-23 18:58 - 2021-08-23 18:58 - 000003414 _____ C:\WINDOWS\system32\Tasks\UnHackMe Task Scheduler
2021-08-23 18:58 - 2021-08-23 18:58 - 000001087 _____ C:\Users\jc\Desktop\UnHackMe.lnk
2021-08-23 18:58 - 2021-08-23 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe
2021-08-23 18:58 - 2020-11-11 14:39 - 000016184 _____ (Greatis Software, LLC.) C:\WINDOWS\SysWOW64\Drivers\UnHackMeDrv.sys
2021-08-23 18:58 - 2015-12-28 11:32 - 000049968 _____ (Greatis Software) C:\WINDOWS\system32\partizan.exe
2021-08-23 18:56 - 2021-08-23 18:56 - 027576614 _____ C:\Users\jc\Downloads\unhackme-12.zip
2021-08-23 18:56 - 2021-08-23 18:56 - 000000000 ____D C:\Users\jc\Downloads\unhackme-12
2021-08-23 13:16 - 2021-08-23 13:16 - 000001432 _____ C:\Users\jc\Downloads\la-pierre-du-remords.acsm
2021-08-19 16:08 - 2021-08-19 16:08 - 000002306 _____ C:\Users\jc\Desktop\Google Chrome.lnk
2021-08-19 10:19 - 2021-08-19 10:19 - 000204707 _____ C:\Users\jc\Downloads\000000000609198859908082021.pdf
2021-08-18 09:03 - 2021-08-18 09:03 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (3).exe
2021-08-18 08:38 - 2021-08-18 08:38 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (2).exe
2021-08-18 08:38 - 2021-08-18 08:38 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643 (1).exe
2021-08-17 16:22 - 2021-08-17 16:22 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-08-17 16:21 - 2021-06-17 20:39 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001453344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001435856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-08-17 16:21 - 2021-06-17 20:39 - 001192736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-08-17 16:21 - 2021-06-17 20:39 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 001511184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 001163536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000679184 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000671536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000557360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-08-17 16:21 - 2021-06-17 20:36 - 000546064 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 008306960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 007430448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 004610336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 002102544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446280.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001587984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 001490192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446280.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 000811792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-08-17 16:21 - 2021-06-17 20:34 - 000655632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-08-17 16:21 - 2021-06-17 20:31 - 006076552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-08-17 12:14 - 2021-08-18 10:13 - 000000000 ____D C:\Users\jc\AppData\Roaming\AweSun
2021-08-17 12:14 - 2021-08-18 10:13 - 000000000 ____D C:\Program Files (x86)\Aweray
2021-08-17 12:14 - 2021-08-17 20:41 - 000000000 ____D C:\ProgramData\AweSun
2021-08-17 12:13 - 2021-08-17 12:13 - 007486376 _____ (AweRay Limited) C:\Users\jc\Downloads\AweSun_1.6.0.34643.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 001776008 _____ (Teknopars Bilisim) C:\Users\jc\Downloads\Alpemix.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 001776008 _____ (Teknopars Bilisim) C:\Users\jc\Desktop\Alpemix.exe
2021-08-17 12:08 - 2021-08-17 12:08 - 000000052 _____ C:\Users\jc\AppData\Local\xx.ini
2021-08-17 12:08 - 2021-08-17 12:08 - 000000000 ____D C:\Users\jc\AppData\Local\Alpemix
2021-08-16 11:56 - 2021-08-16 11:56 - 000088573 _____ C:\Users\jc\Downloads\REP_P_CH6309000000120764012_1105624360_0_2021060105431592.pdf
2021-08-16 11:56 - 2021-08-16 11:56 - 000081529 _____ C:\Users\jc\Downloads\REP_P_CH0809000000927357832_1109581003_0_2021070107231776.pdf
2021-08-16 11:54 - 2021-08-16 11:54 - 000088218 _____ C:\Users\jc\Downloads\REP_P_CH6309000000120764012_1105624360_0_2021080105212680.pdf
2021-08-14 17:45 - 2021-08-14 17:45 - 000001588 _____ C:\Users\jc\Downloads\le-disparu-de-larvik.acsm
2021-08-14 17:35 - 2021-08-14 17:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-08-14 17:35 - 2021-08-14 17:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-08-14 17:35 - 2021-08-14 17:35 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-08-14 17:35 - 2021-08-14 17:35 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-08-14 17:35 - 2021-08-14 17:35 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-08-14 17:35 - 2021-08-14 17:35 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-08-14 17:34 - 2021-08-14 17:34 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2021-08-14 17:26 - 2021-08-14 17:26 - 000000000 ___HD C:\$WinREAgent
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-08-14 17:02 - 2021-08-14 17:02 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-08-09 21:33 - 2021-08-09 21:33 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2021-08-09 21:33 - 2021-08-09 21:33 - 000002248 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2021-08-09 21:33 - 2021-08-09 21:33 - 000000000 ____D C:\Program Files\Google
2021-08-09 12:03 - 2021-08-12 18:49 - 000000000 ____D C:\Users\jc\Desktop\livre 21
2021-08-09 10:23 - 2021-08-09 11:07 - 000000000 ____D C:\Users\jc\Desktop\nok
2021-08-09 10:10 - 2021-08-09 11:59 - 000000000 ____D C:\Users\jc\Desktop\livre 21 - Copie
2021-08-08 15:41 - 2021-08-08 15:42 - 000016362 _____ C:\Users\jc\Documents\Léa.odt
2021-08-01 13:55 - 2021-08-01 13:55 - 000001627 _____ C:\Users\jc\Downloads\rencontre-mortelle-sur-internet-l-affaire-marina-ciampi.acsm
2021-07-27 15:26 - 2021-08-12 10:17 - 000000000 ____D C:\Users\jc\Desktop\dan21
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-23 19:44 - 2020-10-08 19:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-23 19:42 - 2016-01-12 09:51 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-23 19:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-23 19:27 - 2016-01-11 17:49 - 000000000 ____D C:\Users\jc\AppData\Local\Dropbox
2021-08-23 19:27 - 2015-10-22 13:38 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-08-23 19:15 - 2020-10-08 20:29 - 003555206 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-23 19:15 - 2020-10-08 19:50 - 000704492 _____ C:\WINDOWS\system32\perfh01D.dat
2021-08-23 19:15 - 2020-10-08 19:50 - 000145594 _____ C:\WINDOWS\system32\perfc01D.dat
2021-08-23 19:15 - 2020-10-08 19:48 - 000732488 _____ C:\WINDOWS\system32\perfh007.dat
2021-08-23 19:15 - 2020-10-08 19:48 - 000149888 _____ C:\WINDOWS\system32\perfc007.dat
2021-08-23 19:15 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-23 19:15 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-23 19:15 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-23 19:10 - 2017-05-12 19:04 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-23 19:10 - 2016-02-08 16:54 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-08-23 19:08 - 2020-10-08 20:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-23 19:08 - 2020-10-08 19:07 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-23 19:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-08-23 19:08 - 2017-05-12 19:05 - 000000000 ____D C:\ProgramData\Synaptics
2021-08-23 19:08 - 2017-05-12 19:04 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-08-23 19:08 - 2016-01-11 17:39 - 000000000 __SHD C:\Users\jc\IntelGraphicsProfiles
2021-08-23 19:07 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-08-23 13:16 - 2021-05-07 17:37 - 000000000 ____D C:\Users\jc\Documents\My Digital Editions
2021-08-22 20:29 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-22 20:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-22 20:28 - 2020-07-29 15:01 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-22 20:28 - 2020-07-29 15:01 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-19 10:54 - 2016-01-12 17:24 - 000000000 ____D C:\Users\jc\Documents\Home
2021-08-17 20:38 - 2020-10-08 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-08-17 15:52 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-08-17 12:52 - 2018-10-12 11:57 - 000000000 ____D C:\Users\jc\AppData\Local\D3DSCache
2021-08-16 15:56 - 2020-08-24 16:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-08-14 17:59 - 2020-10-08 19:07 - 000328480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-08-14 17:59 - 2016-01-11 17:49 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-08-14 17:59 - 2016-01-11 17:49 - 000001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-08-14 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-08-14 17:58 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-08-14 17:49 - 2021-04-20 15:16 - 000001544 _____ C:\Users\jc\Desktop\Installez Kaspersky VPN Secure Connection de version 21.3.10.391.lnk
2021-08-14 17:38 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-08-14 17:25 - 2016-01-12 06:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-08-14 17:21 - 2016-01-12 06:14 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-08-14 17:19 - 2020-10-08 20:33 - 000004270 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-08-14 17:19 - 2020-10-08 20:33 - 000004038 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-08-14 17:19 - 2020-10-08 20:33 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-14 17:19 - 2020-10-08 20:33 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-12 10:16 - 2020-10-08 20:33 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1166969640-3078423579-2009141641-1001
2021-08-12 10:16 - 2020-10-08 19:09 - 000002465 _____ C:\Users\jc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-10 17:46 - 2017-12-01 20:31 - 000000000 ____D C:\Users\jc\AppData\Local\Packages
2021-08-09 11:51 - 2020-08-22 16:17 - 000000000 ____D C:\Users\jc\AppData\Local\Ifolor_AG
2021-08-07 10:37 - 2020-10-08 20:33 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-07 10:37 - 2020-10-08 20:33 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-01 22:05 - 2020-10-08 19:09 - 000000000 ____D C:\Users\jc
2021-08-01 14:45 - 2019-10-22 12:04 - 000000000 ____D C:\Users\jc\Desktop\Dan10-19
2021-08-01 11:07 - 2019-06-05 15:19 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-29 16:33 - 2016-01-11 17:41 - 000000000 ___RD C:\Users\jc\OneDrive
==================== Fichiers à la racine de certains dossiers ========
2019-02-10 15:43 - 2019-02-10 15:43 - 000001767 _____ () C:\Users\jc\AppData\Local\recently-used.xbel
2021-08-17 12:08 - 2021-08-17 12:08 - 000000052 _____ () C:\Users\jc\AppData\Local\xx.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================