Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Exécuté par sylvisabelle (administrateur) sur SYLVIE (Packard Bell imedia S2110) (10-02-2022 16:17:22)
Exécuté depuis C:\Users\sylvisabelle\Desktop
Profils chargés: sylvisabelle
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Real Protect\RealProtect.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel PaintShop Pro X8 (64-bit)\pua.exe [2012104 2015-11-27] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [RealProtect] => C:\Program Files\McAfee\Real Protect\RealProtect.exe [8356320 2022-02-05] (McAfee, Inc. -> McAfee, LLC.)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [] => "C:\Program Files\RogueKiller\RogueKiller64.exe" -minimize (Pas de fichier)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112191904 2021-12-06] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINFE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-225 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBNFE.DLL [179712 2013-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2014-12-16] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {14EF247C-C180-4E59-923E-27054B6C5159} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {1766F4C5-F349-4DBB-96C3-38D84EBEB984} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5294736 2012-08-22] (Acer Incorporated -> Acer Incorporated)
Task: {1EFEC0D2-233A-490B-B390-8C795B6B4108} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {22153288-7E57-4BE8-818F-82A3F08F8926} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-19] (Google Inc -> Google Inc.)
Task: {26D878DA-42BA-447A-8805-1749C270121B} - \ProtectedSearch\Protected Search -> Pas de fichier <==== ATTENTION
Task: {279A89DC-58C9-4FF4-B723-550B621A539A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-19] (Google Inc -> Google Inc.)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {3370453E-0DB5-4BAD-8EB6-4D4ECB840459} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {4D60F252-30A0-4469-A635-F39DD81CA947} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4153648 2017-03-15] (Acer Incorporated -> )
Task: {4F13BA4F-B737-489F-B29D-F79B634D2504} - \SystemSockets\SystemSockets -> Pas de fichier <==== ATTENTION
Task: {53CA8D2E-275D-4E11-813E-58B6395550DA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {5E86B071-AD82-49F0-8680-740D2D3FFC71} - \Browser Updater\Browser Updater -> Pas de fichier <==== ATTENTION
Task: {638DBFE0-601E-4EB9-B27F-3E62454635A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {642AD5E8-B05F-4C8A-AE6C-FE5779D1B1FD} - System32\Tasks\EPSON XP-225 Series Update {90A32FEE-CDFC-4809-824B-C0BC31C664D5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F04D21B-C329-4282-8C3C-00E668C64265} - \WPD\SqmUpload_S-1-5-21-546785244-2966037021-1019412221-1003 -> Pas de fichier <==== ATTENTION
Task: {6F07FFC0-2225-42FF-86E2-EFCA249D2F5D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6F952211-764B-45C9-BB47-1921293184E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {74E77791-19B9-407C-B442-6C8AE5E51B70} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {814DF466-CA87-43AB-81A3-8089E87EB687} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {81789A35-DE3D-4216-9CE2-7EDDF6A17A32} - System32\Tasks\CCleanerSkipUAC - sylvisabelle => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {81C4CE95-100D-48E3-8FF9-427F1AD730BA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8FC51F9C-B22D-4B30-9935-53BED4EF7999} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
Task: {948C9A47-E00F-4968-96FB-397C578A8CEF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {9C41A5EC-F56C-455E-905E-295D7F84B133} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9E01BB2C-E38A-40CF-BDC6-87DF273DD1E1} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {A981414C-46AB-4E55-AC78-1A10959F42E7} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {ACC2A043-1B8A-4A05-A202-DFD1EECAE69F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {B0C0361F-E7F4-4237-93EB-1D8F44E7682F} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [41264 2017-03-15] (Acer Incorporated -> )
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D6ED6529-3F63-4A48-9D9C-67F42CD9C2E7} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [553616 2012-07-05] (Acer Incorporated -> Acer Incorporated)
Task: {D6F1D023-5EBB-4FCA-B54F-42F6A7CF6D2E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D779777C-402F-491B-A5D9-D59FEAF0C0FF} - System32\Tasks\EPSON XP-225 Series Update {7F0D3C14-1C8E-413A-A8DA-65170F57BAD0} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {EF54EA6C-8C80-4DF9-9F23-E105FF328DCA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {F4D27765-A8E7-4C83-B8B6-2D57EA5F7E33} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320 2012-07-04] (CyberLink -> CyberLink)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\ Update {3BEC7AD4-9979-48A6-B1CE-2B15C2FD5DD4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{3BEC7AD4-9979-48A6-B1CE-2B15C2FD5DD4} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {7F0D3C14-1C8E-413A-A8DA-65170F57BAD0}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{7F0D3C14-1C8E-413A-A8DA-65170F57BAD0} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {90A32FEE-CDFC-4809-824B-C0BC31C664D5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{90A32FEE-CDFC-4809-824B-C0BC31C664D5} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Tous(tes)) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\wshbth.dll [50688 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\NLAapi.dll [71168 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\winrnr.dll [34304 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [70144 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [89088 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [89088 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [64000 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [97280 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [49152 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c0a9e127-5b16-4a49-a045-5e67a6f1857b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\sylvisabelle\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\sylvisabelle\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-03]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
StartMenuInternet: Microsoft Edge - "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
FireFox:
========
FF ProfilePath: C:\Users\sylvisabelle\AppData\Roaming\Mozilla\Firefox\Profiles\vpi1txnw.default-1509440653995 [2022-02-10]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-04-29] []
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> E:\Doc. Sylvie\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Users\sylvisabelle\Videos\VLC\npvlc.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-546785244-2966037021-1019412221-1003: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default [2022-02-10]
CHR DownloadDir: C:\Users\sylvisabelle\Downloads
CHR Notifications: Default -> hxxps://lionnelladesign.forumgratuit.be; hxxps://www.bloggif.com; hxxps://www.youtube.com
CHR HomePage: Default -> about:newtab?source=home
CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=AV01","hxxps://www.google.com/","hxxp://www.google.com/","hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-23]
CHR Extension: (Docs) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-23]
CHR Extension: (Google Drive) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (YouTube) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-23]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-13]
CHR Extension: (Sheets) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-23]
CHR Extension: (Extension Trusted Shops pour Google Chrome) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2021-01-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-21]
CHR Extension: (Recettes: le marque-page de recettes en ligne) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\giceanipjojfnkbciljjblakfkihbjdb [2017-10-31]
CHR Extension: (Save to Facebook) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2021-06-13]
CHR Extension: (Ezuoima - Offres shopping) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmlgljbeodgadkikibefeldckaajhndj [2017-05-28]
CHR Extension: (Skype) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-04]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-01-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-03]
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-03]
CHR Extension: (Google Slides) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-31]
CHR Extension: (Google Docs) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-31]
CHR Extension: (Google Drive) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-31]
CHR Extension: (YouTube) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-31]
CHR Extension: (Recherche Google) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-31]
CHR Extension: (Google Sheets) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-31]
CHR Extension: (Gmail) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-31]
CHR HKLM-x32\...\Chrome\Extension: [gjmpioofjhhijdaikhaabpkcbjinfnnp] - hxxps://chrome.google.com/webstore/detail/gjmpioofjhhijdaikhaabpkcbjinfnnp
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [jlceijfdfeghdhmmbhbcffanmcggoojf]
CHR HKLM-x32\...\Chrome\Extension: [joefdjpocengkmjmcnheijdogjafdbha] - C:\Program Files (x86)\HomeTab\chrome\HomeTab.crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-04-29]
StartMenuInternet: Google Chrome - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-04-29] (Skype Software Sarl -> Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-04-29] (Skype Software Sarl -> Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated -> Acer Incorporated)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-27] (Malwarebytes Inc -> Malwarebytes)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [343544 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2015-11-13] (Even Balance, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [40976 2022-02-03] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [917008 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [124432 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 16:08 - 2022-02-10 16:14 - 000056621 _____ C:\Users\sylvisabelle\Desktop\Addition.txt
2022-02-10 16:01 - 2022-02-10 16:20 - 000032309 _____ C:\Users\sylvisabelle\Desktop\FRST.txt
2022-02-10 15:59 - 2022-02-10 15:59 - 000000000 ____D C:\Users\sylvisabelle\Desktop\FRST 1
2022-02-09 14:02 - 2022-02-09 14:02 - 000000000 ____D C:\Users\sylvisabelle\Downloads\Bonne Valentin
2022-02-09 13:21 - 2022-02-09 13:21 - 000000000 ___HD C:\$WinREAgent
2022-02-08 22:05 - 2022-02-08 22:05 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-08 22:04 - 2022-02-08 22:04 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-08 22:04 - 2022-02-08 22:04 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-08 18:04 - 2022-02-08 18:04 - 000000000 ____D C:\Users\sylvisabelle\Downloads\st valentin
2022-02-08 17:46 - 2022-02-08 17:46 - 002817078 _____ C:\Users\sylvisabelle\Downloads\winter.zip
2022-02-07 22:04 - 2022-02-07 22:04 - 000000000 ____D C:\Users\sylvisabelle\Downloads\ZZ steampunk fleurOASISfred
2022-02-06 15:52 - 2022-02-10 16:18 - 000000000 ____D C:\FRST
2022-02-06 15:44 - 2022-02-06 15:45 - 002311680 _____ (Farbar) C:\Users\sylvisabelle\Desktop\FRST64.exe
2022-02-04 12:53 - 2022-02-04 12:53 - 000917008 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys
2022-02-04 12:53 - 2022-02-04 12:53 - 000343544 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2022-02-04 12:53 - 2022-02-04 12:53 - 000124432 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mferkdet.sys
2022-02-04 12:42 - 2022-02-04 12:42 - 000000000 ____D C:\Quarantine
2022-02-04 12:26 - 2022-02-05 15:39 - 000000128 ___RH C:\Users\sylvisabelle\Downloads\Stinger.opt
2022-02-04 12:11 - 2022-02-05 15:39 - 000000000 ____D C:\Program Files\stinger
2022-02-04 12:11 - 2022-02-04 12:11 - 000000000 ____D C:\Program Files\McAfee
2022-02-04 12:09 - 2022-02-04 12:09 - 000001642 _____ C:\Users\sylvisabelle\Desktop\SCAN stinger64 -.lnk
2022-02-03 14:03 - 2022-02-03 14:03 - 000000000 ____D C:\Users\sylvisabelle\Downloads\Materiel_DouceurPfs
2022-02-03 12:22 - 2022-02-03 12:22 - 000000300 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2022-02-03 12:21 - 2022-02-03 12:21 - 000001402 _____ C:\Users\sylvisabelle\Desktop\Rkill.txt
2022-02-03 12:09 - 2022-02-03 12:09 - 000040976 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2022-02-03 12:05 - 2022-02-03 12:06 - 000294312 _____ C:\TDSSKiller.3.1.0.17_03.02.2022_12.05.19_log.txt
2022-01-27 10:48 - 2022-02-03 12:00 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-01-14 13:09 - 2022-01-14 13:09 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 13:09 - 2022-01-14 13:09 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 13:09 - 2022-01-14 13:09 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 16:12 - 2013-12-01 17:00 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-10 15:26 - 2020-11-06 23:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-10 15:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-10 14:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-10 14:32 - 2018-10-24 00:42 - 000000000 ____D C:\Program Files\CCleaner
2022-02-09 19:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-08 22:20 - 2018-12-03 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-02-08 22:03 - 2020-11-07 00:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-08 22:03 - 2020-11-06 23:30 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-08 22:03 - 2016-09-04 19:56 - 000000000 ____D C:\Program Files (x86)\Java
2022-02-08 22:02 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-02-08 21:09 - 2014-03-05 10:30 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\CrashDumps
2022-02-08 21:08 - 2016-09-04 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-02-08 21:05 - 2016-09-04 19:57 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2022-02-08 20:54 - 2014-03-03 21:25 - 000000000 ____D C:\ProgramData\TuneUp Software
2022-02-08 20:34 - 2014-11-22 20:25 - 000000000 ____D C:\Program Files (x86)\QuickTime
2022-02-08 20:09 - 2015-06-30 08:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avanquest
2022-02-08 20:09 - 2015-06-30 08:24 - 000000000 ____D C:\ProgramData\Avanquest
2022-02-08 20:09 - 2015-06-30 07:59 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\Avanquest
2022-02-08 20:09 - 2012-08-28 06:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-08 17:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-07 22:06 - 2021-08-20 18:34 - 000000000 ____D C:\Users\sylvisabelle\Downloads\ZIP Tubes 20.08.21
2022-02-05 21:22 - 2018-10-23 20:39 - 000000000 ____D C:\Users\sylvisabelle\Desktop\Logiciel nettoyage PC
2022-02-04 11:04 - 2020-08-09 15:46 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-03 13:30 - 2021-11-09 09:02 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-03 12:26 - 2021-07-08 09:42 - 000000000 ____D C:\WINDOWS\Minidump
2022-02-03 12:03 - 2018-10-29 13:58 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-01-31 11:23 - 2018-07-22 10:31 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\D3DSCache
2022-01-28 11:36 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-01-28 11:36 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-01-28 11:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-01-27 20:19 - 2020-11-06 23:37 - 000000000 ____D C:\Users\sylvisabelle
2022-01-27 10:48 - 2020-08-20 10:48 - 000002045 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-27 10:48 - 2019-09-10 12:42 - 000002033 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-27 10:35 - 2017-10-30 15:56 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-27 10:35 - 2015-05-27 13:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-27 07:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-26 21:40 - 2014-04-18 20:13 - 000000000 ____D C:\Users\sylvisabelle\AppData\Roaming\XnView
2022-01-26 20:31 - 2021-12-12 18:35 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-546785244-2966037021-1019412221-1003
2022-01-26 20:31 - 2020-11-07 00:21 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-546785244-2966037021-1019412221-1003
2022-01-26 20:31 - 2020-11-06 23:37 - 000002486 _____ C:\Users\sylvisabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-22 13:25 - 2020-11-07 10:26 - 000003538 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b48fcae9053
2022-01-22 13:25 - 2020-11-07 00:21 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-21 13:07 - 2020-11-07 00:21 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 13:07 - 2020-11-07 00:21 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-16 11:25 - 2020-11-06 23:52 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-16 11:25 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-16 11:25 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-14 23:26 - 2020-11-06 23:30 - 000513544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-12 19:31 - 2013-12-01 16:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 19:19 - 2013-12-01 16:23 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2020-12-12 23:02 - 2020-12-12 23:02 - 010055680 _____ () C:\Program Files (x86)\GUTAD76.tmp
2019-10-10 09:13 - 2019-10-10 09:13 - 009256960 _____ () C:\Program Files (x86)\GUTE9D2.tmp
2014-05-17 13:01 - 2014-05-17 13:01 - 004216840 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\vcredist.exe
2014-03-29 18:22 - 2013-02-18 17:46 - 004216840 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\vcredist_2008_sp1_x86.exe
2014-03-03 21:40 - 2014-11-13 11:40 - 000000168 _____ () C:\Users\sylvisabelle\AppData\Roaming\WB.CFG
2014-04-06 10:47 - 2014-04-06 10:48 - 000014336 _____ () C:\Users\sylvisabelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-26 19:55 - 2018-10-26 19:55 - 000004096 ____H () C:\Users\sylvisabelle\AppData\Local\keyfile3.drm
2019-03-31 17:04 - 2019-03-31 17:04 - 000000987 _____ () C:\Users\sylvisabelle\AppData\Local\recently-used.xbel
2014-04-05 15:30 - 2014-04-05 15:30 - 000000017 _____ () C:\Users\sylvisabelle\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par sylvisabelle (administrateur) sur SYLVIE (Packard Bell imedia S2110) (10-02-2022 16:17:22)
Exécuté depuis C:\Users\sylvisabelle\Desktop
Profils chargés: sylvisabelle
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Real Protect\RealProtect.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel PaintShop Pro X8 (64-bit)\pua.exe [2012104 2015-11-27] (Corel Corporation -> Corel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [RealProtect] => C:\Program Files\McAfee\Real Protect\RealProtect.exe [8356320 2022-02-05] (McAfee, Inc. -> McAfee, LLC.)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [] => "C:\Program Files\RogueKiller\RogueKiller64.exe" -minimize (Pas de fichier)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112191904 2021-12-06] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-546785244-2966037021-1019412221-1003\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINFE.EXE [298560 2013-12-16] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-225 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBNFE.DLL [179712 2013-12-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2014-12-16] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {14EF247C-C180-4E59-923E-27054B6C5159} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {1766F4C5-F349-4DBB-96C3-38D84EBEB984} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5294736 2012-08-22] (Acer Incorporated -> Acer Incorporated)
Task: {1EFEC0D2-233A-490B-B390-8C795B6B4108} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {22153288-7E57-4BE8-818F-82A3F08F8926} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-19] (Google Inc -> Google Inc.)
Task: {26D878DA-42BA-447A-8805-1749C270121B} - \ProtectedSearch\Protected Search -> Pas de fichier <==== ATTENTION
Task: {279A89DC-58C9-4FF4-B723-550B621A539A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-19] (Google Inc -> Google Inc.)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {3370453E-0DB5-4BAD-8EB6-4D4ECB840459} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {4D60F252-30A0-4469-A635-F39DD81CA947} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4153648 2017-03-15] (Acer Incorporated -> )
Task: {4F13BA4F-B737-489F-B29D-F79B634D2504} - \SystemSockets\SystemSockets -> Pas de fichier <==== ATTENTION
Task: {53CA8D2E-275D-4E11-813E-58B6395550DA} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {5E86B071-AD82-49F0-8680-740D2D3FFC71} - \Browser Updater\Browser Updater -> Pas de fichier <==== ATTENTION
Task: {638DBFE0-601E-4EB9-B27F-3E62454635A3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {642AD5E8-B05F-4C8A-AE6C-FE5779D1B1FD} - System32\Tasks\EPSON XP-225 Series Update {90A32FEE-CDFC-4809-824B-C0BC31C664D5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6F04D21B-C329-4282-8C3C-00E668C64265} - \WPD\SqmUpload_S-1-5-21-546785244-2966037021-1019412221-1003 -> Pas de fichier <==== ATTENTION
Task: {6F07FFC0-2225-42FF-86E2-EFCA249D2F5D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {6F952211-764B-45C9-BB47-1921293184E7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {74E77791-19B9-407C-B442-6C8AE5E51B70} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {814DF466-CA87-43AB-81A3-8089E87EB687} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {81789A35-DE3D-4216-9CE2-7EDDF6A17A32} - System32\Tasks\CCleanerSkipUAC - sylvisabelle => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {81C4CE95-100D-48E3-8FF9-427F1AD730BA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8FC51F9C-B22D-4B30-9935-53BED4EF7999} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
Task: {948C9A47-E00F-4968-96FB-397C578A8CEF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {9C41A5EC-F56C-455E-905E-295D7F84B133} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {9E01BB2C-E38A-40CF-BDC6-87DF273DD1E1} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {A981414C-46AB-4E55-AC78-1A10959F42E7} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {ACC2A043-1B8A-4A05-A202-DFD1EECAE69F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {B0C0361F-E7F4-4237-93EB-1D8F44E7682F} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [41264 2017-03-15] (Acer Incorporated -> )
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D6ED6529-3F63-4A48-9D9C-67F42CD9C2E7} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [553616 2012-07-05] (Acer Incorporated -> Acer Incorporated)
Task: {D6F1D023-5EBB-4FCA-B54F-42F6A7CF6D2E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D779777C-402F-491B-A5D9-D59FEAF0C0FF} - System32\Tasks\EPSON XP-225 Series Update {7F0D3C14-1C8E-413A-A8DA-65170F57BAD0} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {EF54EA6C-8C80-4DF9-9F23-E105FF328DCA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {F4D27765-A8E7-4C83-B8B6-2D57EA5F7E33} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320 2012-07-04] (CyberLink -> CyberLink)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\ Update {3BEC7AD4-9979-48A6-B1CE-2B15C2FD5DD4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{3BEC7AD4-9979-48A6-B1CE-2B15C2FD5DD4} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {7F0D3C14-1C8E-413A-A8DA-65170F57BAD0}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{7F0D3C14-1C8E-413A-A8DA-65170F57BAD0} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {90A32FEE-CDFC-4809-824B-C0BC31C664D5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{90A32FEE-CDFC-4809-824B-C0BC31C664D5} /F:UpdateWORKGROUP\SYLVIE$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Tous(tes)) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\wshbth.dll [50688 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\NLAapi.dll [71168 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\winrnr.dll [34304 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [324416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [70144 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [89088 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [89088 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [64000 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [97280 2021-08-13] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [49152 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [418416 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c0a9e127-5b16-4a49-a045-5e67a6f1857b}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\sylvisabelle\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\sylvisabelle\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-03]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
StartMenuInternet: Microsoft Edge - "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
FireFox:
========
FF ProfilePath: C:\Users\sylvisabelle\AppData\Roaming\Mozilla\Firefox\Profiles\vpi1txnw.default-1509440653995 [2022-02-10]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-04-29] []
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> E:\Doc. Sylvie\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Users\sylvisabelle\Videos\VLC\npvlc.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-546785244-2966037021-1019412221-1003: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default [2022-02-10]
CHR DownloadDir: C:\Users\sylvisabelle\Downloads
CHR Notifications: Default -> hxxps://lionnelladesign.forumgratuit.be; hxxps://www.bloggif.com; hxxps://www.youtube.com
CHR HomePage: Default -> about:newtab?source=home
CHR StartupUrls: Default -> "hxxp://www.msn.com/?pc=AV01","hxxps://www.google.com/","hxxp://www.google.com/","hxxps://www.google.com/"
CHR Extension: (Slides) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-23]
CHR Extension: (Docs) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-23]
CHR Extension: (Google Drive) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (YouTube) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-23]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-13]
CHR Extension: (Sheets) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-23]
CHR Extension: (Extension Trusted Shops pour Google Chrome) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcpnemckonbbmnoakbjgjkgokkbaeo [2021-01-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-21]
CHR Extension: (Recettes: le marque-page de recettes en ligne) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\giceanipjojfnkbciljjblakfkihbjdb [2017-10-31]
CHR Extension: (Save to Facebook) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2021-06-13]
CHR Extension: (Ezuoima - Offres shopping) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmlgljbeodgadkikibefeldckaajhndj [2017-05-28]
CHR Extension: (Skype) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-04]
CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2022-01-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-02-03]
CHR Profile: C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile [2022-02-03]
CHR Extension: (Google Slides) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-31]
CHR Extension: (Google Docs) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-31]
CHR Extension: (Google Drive) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-31]
CHR Extension: (YouTube) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-31]
CHR Extension: (Recherche Google) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-31]
CHR Extension: (Google Sheets) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-31]
CHR Extension: (Gmail) - C:\Users\sylvisabelle\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-31]
CHR HKLM-x32\...\Chrome\Extension: [gjmpioofjhhijdaikhaabpkcbjinfnnp] - hxxps://chrome.google.com/webstore/detail/gjmpioofjhhijdaikhaabpkcbjinfnnp
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [jlceijfdfeghdhmmbhbcffanmcggoojf]
CHR HKLM-x32\...\Chrome\Extension: [joefdjpocengkmjmcnheijdogjafdbha] - C:\Program Files (x86)\HomeTab\chrome\HomeTab.crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-04-29]
StartMenuInternet: Google Chrome - "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-04-29] (Skype Software Sarl -> Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-04-29] (Skype Software Sarl -> Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated -> Acer Incorporated)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-27] (Malwarebytes Inc -> Malwarebytes)
R2 mfevtp; C:\WINDOWS\system32\mfevtps.exe [343544 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2015-11-13] (Even Balance, Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-19] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [40976 2022-02-03] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-03] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-08] (Malwarebytes Inc -> Malwarebytes)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [917008 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [124432 2022-02-04] (McAfee, Inc. -> McAfee, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-10-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 16:08 - 2022-02-10 16:14 - 000056621 _____ C:\Users\sylvisabelle\Desktop\Addition.txt
2022-02-10 16:01 - 2022-02-10 16:20 - 000032309 _____ C:\Users\sylvisabelle\Desktop\FRST.txt
2022-02-10 15:59 - 2022-02-10 15:59 - 000000000 ____D C:\Users\sylvisabelle\Desktop\FRST 1
2022-02-09 14:02 - 2022-02-09 14:02 - 000000000 ____D C:\Users\sylvisabelle\Downloads\Bonne Valentin
2022-02-09 13:21 - 2022-02-09 13:21 - 000000000 ___HD C:\$WinREAgent
2022-02-08 22:05 - 2022-02-08 22:05 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-08 22:04 - 2022-02-08 22:04 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-08 22:04 - 2022-02-08 22:04 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-08 18:04 - 2022-02-08 18:04 - 000000000 ____D C:\Users\sylvisabelle\Downloads\st valentin
2022-02-08 17:46 - 2022-02-08 17:46 - 002817078 _____ C:\Users\sylvisabelle\Downloads\winter.zip
2022-02-07 22:04 - 2022-02-07 22:04 - 000000000 ____D C:\Users\sylvisabelle\Downloads\ZZ steampunk fleurOASISfred
2022-02-06 15:52 - 2022-02-10 16:18 - 000000000 ____D C:\FRST
2022-02-06 15:44 - 2022-02-06 15:45 - 002311680 _____ (Farbar) C:\Users\sylvisabelle\Desktop\FRST64.exe
2022-02-04 12:53 - 2022-02-04 12:53 - 000917008 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mfehidk.sys
2022-02-04 12:53 - 2022-02-04 12:53 - 000343544 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2022-02-04 12:53 - 2022-02-04 12:53 - 000124432 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\mferkdet.sys
2022-02-04 12:42 - 2022-02-04 12:42 - 000000000 ____D C:\Quarantine
2022-02-04 12:26 - 2022-02-05 15:39 - 000000128 ___RH C:\Users\sylvisabelle\Downloads\Stinger.opt
2022-02-04 12:11 - 2022-02-05 15:39 - 000000000 ____D C:\Program Files\stinger
2022-02-04 12:11 - 2022-02-04 12:11 - 000000000 ____D C:\Program Files\McAfee
2022-02-04 12:09 - 2022-02-04 12:09 - 000001642 _____ C:\Users\sylvisabelle\Desktop\SCAN stinger64 -.lnk
2022-02-03 14:03 - 2022-02-03 14:03 - 000000000 ____D C:\Users\sylvisabelle\Downloads\Materiel_DouceurPfs
2022-02-03 12:22 - 2022-02-03 12:22 - 000000300 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2022-02-03 12:21 - 2022-02-03 12:21 - 000001402 _____ C:\Users\sylvisabelle\Desktop\Rkill.txt
2022-02-03 12:09 - 2022-02-03 12:09 - 000040976 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2022-02-03 12:05 - 2022-02-03 12:06 - 000294312 _____ C:\TDSSKiller.3.1.0.17_03.02.2022_12.05.19_log.txt
2022-01-27 10:48 - 2022-02-03 12:00 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-01-14 13:09 - 2022-01-14 13:09 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 13:09 - 2022-01-14 13:09 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 13:09 - 2022-01-14 13:09 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-10 16:12 - 2013-12-01 17:00 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-10 15:26 - 2020-11-06 23:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-10 15:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-10 14:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-10 14:32 - 2018-10-24 00:42 - 000000000 ____D C:\Program Files\CCleaner
2022-02-09 19:59 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-08 22:20 - 2018-12-03 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-02-08 22:03 - 2020-11-07 00:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-08 22:03 - 2020-11-06 23:30 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-08 22:03 - 2016-09-04 19:56 - 000000000 ____D C:\Program Files (x86)\Java
2022-02-08 22:02 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-02-08 21:09 - 2014-03-05 10:30 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\CrashDumps
2022-02-08 21:08 - 2016-09-04 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-02-08 21:05 - 2016-09-04 19:57 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2022-02-08 20:54 - 2014-03-03 21:25 - 000000000 ____D C:\ProgramData\TuneUp Software
2022-02-08 20:34 - 2014-11-22 20:25 - 000000000 ____D C:\Program Files (x86)\QuickTime
2022-02-08 20:09 - 2015-06-30 08:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avanquest
2022-02-08 20:09 - 2015-06-30 08:24 - 000000000 ____D C:\ProgramData\Avanquest
2022-02-08 20:09 - 2015-06-30 07:59 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\Avanquest
2022-02-08 20:09 - 2012-08-28 06:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-08 17:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-07 22:06 - 2021-08-20 18:34 - 000000000 ____D C:\Users\sylvisabelle\Downloads\ZIP Tubes 20.08.21
2022-02-05 21:22 - 2018-10-23 20:39 - 000000000 ____D C:\Users\sylvisabelle\Desktop\Logiciel nettoyage PC
2022-02-04 11:04 - 2020-08-09 15:46 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-03 13:30 - 2021-11-09 09:02 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-03 12:26 - 2021-07-08 09:42 - 000000000 ____D C:\WINDOWS\Minidump
2022-02-03 12:03 - 2018-10-29 13:58 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-01-31 11:23 - 2018-07-22 10:31 - 000000000 ____D C:\Users\sylvisabelle\AppData\Local\D3DSCache
2022-01-28 11:36 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-01-28 11:36 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-01-28 11:36 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-01-28 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-01-28 11:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-01-27 20:19 - 2020-11-06 23:37 - 000000000 ____D C:\Users\sylvisabelle
2022-01-27 10:48 - 2020-08-20 10:48 - 000002045 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-27 10:48 - 2019-09-10 12:42 - 000002033 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-27 10:35 - 2017-10-30 15:56 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-27 10:35 - 2015-05-27 13:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-27 07:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-26 21:40 - 2014-04-18 20:13 - 000000000 ____D C:\Users\sylvisabelle\AppData\Roaming\XnView
2022-01-26 20:31 - 2021-12-12 18:35 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-546785244-2966037021-1019412221-1003
2022-01-26 20:31 - 2020-11-07 00:21 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-546785244-2966037021-1019412221-1003
2022-01-26 20:31 - 2020-11-06 23:37 - 000002486 _____ C:\Users\sylvisabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-22 13:25 - 2020-11-07 10:26 - 000003538 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b48fcae9053
2022-01-22 13:25 - 2020-11-07 00:21 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-21 13:07 - 2020-11-07 00:21 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 13:07 - 2020-11-07 00:21 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-16 11:25 - 2020-11-06 23:52 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-16 11:25 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-16 11:25 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-14 23:26 - 2020-11-06 23:30 - 000513544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-14 23:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-12 19:31 - 2013-12-01 16:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-12 19:19 - 2013-12-01 16:23 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2020-12-12 23:02 - 2020-12-12 23:02 - 010055680 _____ () C:\Program Files (x86)\GUTAD76.tmp
2019-10-10 09:13 - 2019-10-10 09:13 - 009256960 _____ () C:\Program Files (x86)\GUTE9D2.tmp
2014-05-17 13:01 - 2014-05-17 13:01 - 004216840 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\vcredist.exe
2014-03-29 18:22 - 2013-02-18 17:46 - 004216840 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\vcredist_2008_sp1_x86.exe
2014-03-03 21:40 - 2014-11-13 11:40 - 000000168 _____ () C:\Users\sylvisabelle\AppData\Roaming\WB.CFG
2014-04-06 10:47 - 2014-04-06 10:48 - 000014336 _____ () C:\Users\sylvisabelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-26 19:55 - 2018-10-26 19:55 - 000004096 ____H () C:\Users\sylvisabelle\AppData\Local\keyfile3.drm
2019-03-31 17:04 - 2019-03-31 17:04 - 000000987 _____ () C:\Users\sylvisabelle\AppData\Local\recently-used.xbel
2014-04-05 15:30 - 2014-04-05 15:30 - 000000017 _____ () C:\Users\sylvisabelle\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================