Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2021
Exécuté par jerome (administrateur) sur VAIO (Sony Corporation SVJ2022M1EWI) (16-10-2021 18:43:07)
Exécuté depuis C:\Users\jerome\Downloads
Profils chargés: jerome
Platform: Microsoft Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\51.0.15.0\crashpad_handler.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\51.0.16.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <6>
(Microleaves LTD -> Advanced Windows Manager) C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tenorshare Co,Ltd) [Fichier non signé] C:\Program Files (x86)\UltData\service\TenorshareWinAdService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\jerome\AppData\Local\Microsoft\Teams\Update.exe [2330784 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49952240 2021-09-09] (Google LLC -> )
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-07] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [BIBLauncher] => C:\Program Files (x86)\Business-in-a-Box 2021\BIBLauncher.exe [2790536 2021-01-13] (Biztree Inc. -> )
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-835827082-1591139184-2353512274-500\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon9.dll [29704 2014-08-01] (Nitro PDF Software -> Nitro PDF Software)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\Users\jerome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-09-19]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {07153FEA-9252-4BD4-A6E5-4F61AF351488} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1277EB76-227C-49DD-B79A-3CFC559288DA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134488 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {199AB816-E772-42D5-BADC-522AB48F41CB} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {19DF271D-535C-446E-BD32-1AA17FD30807} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [1151648 2012-10-23] (Sony Corporation -> Sony Corporation)
Task: {2DAF24B2-731E-4AD3-A725-2DEC61164116} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [34976 2012-10-23] (Sony Corporation -> Sony Corporation)
Task: {2E2B9242-6FC3-4EF8-966D-9B1DF60BE9CB} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492712 2012-10-30] (Sony Corporation -> Sony Corporation)
Task: {2F26C35B-590C-4A21-8450-40F09DC50EDE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729184 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {31EA3DE0-57FD-4A6D-BE57-561A4DF1A6F0} - System32\Tasks\Microsoft\Windows\Time Synchronization\ViewUtcTime => C:\Users\jerome\AppData\Roaming\\utctimer\\utc.exe
Task: {34C17809-7694-486D-B875-B5A112A6EA79} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {443FAA8A-A37F-4201-9216-A19EE6C44C03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {44DE627A-8976-4AD5-AF62-0211A718FF6C} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-05] (Sony Corporation -> Sony Corporation)
Task: {45F4A688-3F91-47D2-82B5-576ACB83E501} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729184 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {481047CE-D8C8-4955-9087-9E1ECECBFA7D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {57BB58C0-0129-41DD-B312-2422CF6839DB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2021-07-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5B349126-71C7-4BFD-A519-62A56E087548} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FC0AAED-EDBD-4268-ADB9-1CB398FC8DA5} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {639749E7-C824-42AB-96DB-7B93C6698BCD} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {74460153-028B-429A-BFD8-33BEA00824DA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {7A3EB36F-AE2F-4A28-B7D3-A6E648649BE6} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492712 2012-10-30] (Sony Corporation -> Sony Corporation)
Task: {82B28E91-605A-4F2E-B1BC-3D8D098EC9DE} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [681400 2021-08-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {8A4AC11C-CAD0-4380-A813-1B42197F9EF9} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {90D20FC8-F70C-49F9-B05A-54BB50167E46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13769584 2018-09-07] (Piriform Ltd -> Piriform Ltd)
Task: {93F928C3-AF44-4230-9982-9766EE9D4851} - System32\Tasks\CastVPN => "cmd" /c sc stop CastVPN & sc start CastVPN"
Task: {95CBCFD6-0D46-4751-B914-6B1FD29D121E} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {9BE13247-93A0-477D-A55D-000E1C44084B} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {A0FECE74-4B10-4DEA-BD65-7AC8D5B3683F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-08] (Google LLC -> Google LLC)
Task: {A184AB32-059C-4F5A-B6A9-8243F6E5154D} - System32\Tasks\Services\Diagnostic => C:\Users\jerome\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe [1013928 2018-03-15] (AutoIt Consulting Ltd -> AutoIt Team) -> "C:\Users\jerome\AppData\Local\Disk\AutoIt3\Settings.au3"
Task: {A1B64C0F-64FB-4325-AFC3-FA63DC2E101D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134488 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9B8675B-48E2-4EDE-8D95-8F664D638E4F} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {B0D1D084-69E8-4133-A057-516B8D470A01} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-08] (Google LLC -> Google LLC)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {CD6DCE22-F46C-41A3-9A01-86E845138AC4} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {CED80DF0-D743-44D6-9E7D-56BB2F5567F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF98EEED-D784-4F2C-BD7C-3A6182E3BA0F} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-05] (Sony Corporation -> Sony Corporation)
Task: {D34F56B0-E24F-4D72-8171-268518309D5D} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {D6676EDA-9DCE-4DDB-86E2-187FC8077B22} - System32\Tasks\AdvancedWindowsManager => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {D67D8F81-B030-4B0C-93BF-71CDA2B78217} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {DABA2771-4E8C-44D0-BF55-CAB38865F256} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {E210C2B0-73C4-47C7-ACD9-D016504373DA} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {EB4413EC-28D5-4016-9592-ADAE3A8AE55F} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {F4487CCA-111A-42D6-A042-A0FBE86DCF4F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F51D822F-3013-4823-8F83-7574095ABA6D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F654538F-F8FC-46C5-93AA-EC61F9EAE0D8} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [735400 2012-10-22] (Sony Corporation -> Sony Corporation)
Task: {F74F69D1-6745-4036-9232-9C7F361922F6} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [908144 2017-11-02] (MICROLEAVES LTD -> Microleaves) <==== ATTENTION
Task: {FB4300AE-1C21-4F4A-97DA-EDCBF89068BF} - System32\Tasks\AdvancedUpdater => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\Windows Updater.exe [1020024 2021-04-09] (Microleaves LTD -> AdvancedWindowsManager) <==== ATTENTION
Task: {FD083F1D-02A7-4A50-B16A-54DEDF57662A} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1479241524.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe--scheduledautoupdate $(Arg0)WORKGROUP\VAIO$.Met
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{14CE002F-42FB-4EA3-B515-084BAE7956B8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C337954D-0DAC-4E45-B5E1-4A09D0EB9710}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\jerome\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-24]
FireFox:
========
FF DefaultProfile: w68gaiu0.default
FF ProfilePath: C:\Users\jerome\AppData\Roaming\Mozilla\Firefox\Profiles\w68gaiu0.default [2021-10-16]
FF Homepage: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//mysearchengine.co/homepage?hp=1&bitmask=9996&pId=AE190201&iDate=2020-12-26 09:35:39&bName=
FF NewTab: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//mysearchengine.co/homepage?hp=1&bitmask=9996&pId=AE190201&iDate=2020-12-26 09:35:39&bName=
FF Notifications: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//fr.nametests.com
FF SearchPlugin: C:\Users\jerome\AppData\Roaming\Mozilla\Firefox\Profiles\w68gaiu0.default\searchplugins\My Bing Search.xml [2020-12-26]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-09-18] []
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e)
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-10-26] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-10-26] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-08-01] (Nitro PDF Software -> Nitro PDF)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-02-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jerome\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\jerome\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.232\npGatewayNpapi.dll [2017-11-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\jerome\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.232\npGatewayNpapi-x64.dll [2017-11-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-500: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2012-10-04] (Intel) [Fichier non signé]
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-500: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2012-10-04] (Intel) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-15]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-10-16]
CHR Notifications: Profile 2 -> hxxps//drive.google.com; hxxps//forums.commentcamarche.net; hxxps//fr.depositphotos.com; hxxps//gaming.gentside.com; hxxps//meet.google.com; hxxps//web.whatsapp.com; hxxps//www.allocine.fr; hxxps//www.backmarket.fr; hxxps//www.calagenda.fr; hxxps//www.commentcamarche.net; hxxps//www.facebook.com; hxxps//www.lnr.fr; hxxps//www.pinterest.fr; hxxps//www.samsung.com; hxxps//www.techniconnexion.com; hxxps//www.voici.fr; hxxps//www.wish.com
CHR Extension: (Slides) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-15]
CHR Extension: (Adobe Acrobat) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-10-12]
CHR Extension: (Sheets) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-13]
CHR Extension: (Télécharger des vidéos Facebook) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hgknmjhmcbimcpdmmfeafjbdccaheaeg [2020-08-05]
CHR Extension: (The Flash Video Downloader) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmieilamoollaknppoffbmdgdcolcafa [2021-09-29]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2020-04-05]
CHR Extension: (Desktopify) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nlhjgcligpbnjphflfdbmabbmjidnmek [2020-08-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Correcteur de texte — LanguageTool) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oldceeleldhonbafppcapldpdifcinji [2021-09-23]
CHR Extension: (Gmail) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-10-15]
CHR Extension: (Slides) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-02]
CHR Extension: (Docs) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-02]
CHR Extension: (Google Drive) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-02]
CHR Extension: (YouTube) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-02]
CHR Extension: (Adobe Acrobat) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-04-02]
CHR Extension: (Sheets) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-02]
CHR Extension: (NetNut Extension) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gcnfpjoimnmmdiokmpaebcacnnpdifbn [2021-04-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-02]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-04-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-02]
CHR Extension: (Gmail) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-02]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-15]
CHR HKU\S-1-5-21-835827082-1591139184-2353512274-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\jerome\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2021-05-12]
CHR HKU\S-1-5-21-835827082-1591139184-2353512274-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-12-17]
CHR HKLM-x32\...\Chrome\Extension: [gcnfpjoimnmmdiokmpaebcacnnpdifbn]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Inc. -> Adobe Systems)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
S3 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-10-17] (Sony Corporation -> Sony Corporation)
S3 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [230920 2014-08-01] (Nitro PDF Software -> Nitro PDF Software)
S3 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [418312 2014-08-01] (Nitro PDF Software -> )
S3 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [69640 2014-08-01] (Nitro PDF Software -> Nalpeiron Ltd.)
S3 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation -> Sony Corporation)
S3 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 TenorshareWinAdService; C:\Program Files (x86)\UltData\service\TenorshareWinAdService.exe [27648 2016-11-07] (Tenorshare Co,Ltd) [Fichier non signé]
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-27] (Sony Corporation) [Fichier non signé]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1265824 2012-10-23] (Sony Corporation -> Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [165344 2013-07-29] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\WINDOWS\system32\DRIVERS\amppal.sys [165344 2013-07-29] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2016-03-24] (Anvsoft Inc. -> AnvSoft Inc.)
R3 btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [1448248 2017-08-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [32400 2016-03-04] (ThreatTrack Security, Inc. -> ThreatTrack Security)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [380384 2021-08-09] (Google LLC -> Google, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc. -> McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc. -> McAfee, Inc.)
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [777944 2016-01-13] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-21] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 SensorsServiceDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [226304 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 SFEP; C:\WINDOWS\System32\drivers\SFEP.sys [15360 2013-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation)
R3 sonyfelicaportm; C:\WINDOWS\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-26] (Sony Corporation -> Sony Corporation)
R3 sonynfcport100c; C:\WINDOWS\System32\Drivers\sonynfcport100c.sys [66224 2015-05-27] (Sony Corporation -> Sony Corporation)
R3 sonynfcport100f; C:\WINDOWS\System32\Drivers\sonynfcport100f.sys [743664 2016-03-14] (Sony Corporation -> Sony Corporation)
R3 SOWS; C:\WINDOWS\System32\drivers\sows.sys [24280 2012-06-10] (WDKTestCert kaneda,129651282666891607 -> Sony Corporation)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2020-05-14] (NCH Software, Inc. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S1 bylviduz; \??\C:\WINDOWS\system32\drivers\bylviduz.sys [X]
S3 cpuz138; \??\C:\Users\jerome\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATTENTION
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
S3 DIRECTIO; \??\C:\Program Files\PerformanceTest\DirectIo64.sys [X]
S1 ebfuqung; \??\C:\WINDOWS\system32\drivers\ebfuqung.sys [X]
S1 ktqtowzm; \??\C:\WINDOWS\system32\drivers\ktqtowzm.sys [X]
S1 leozevvp; \??\C:\WINDOWS\system32\drivers\leozevvp.sys [X]
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-16 18:43 - 2021-10-16 18:47 - 000040447 _____ C:\Users\jerome\Downloads\FRST.txt
2021-10-16 18:40 - 2021-10-16 18:40 - 002310656 _____ (Farbar) C:\Users\jerome\Downloads\FRST64-2.1.exe
2021-10-16 18:40 - 2021-10-16 18:40 - 000000000 ____D C:\Users\jerome\Downloads\FRST-OlderVersion
2021-10-15 18:03 - 2021-10-15 18:03 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002358 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002336 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-10-15 17:33 - 2021-10-15 17:33 - 000002784 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-10-15 08:53 - 2021-10-15 08:53 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign983d00b84e013262
2021-10-15 08:53 - 2021-10-15 08:53 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign304990cc7aa1479a
2021-10-12 08:31 - 2021-10-12 08:32 - 000013885 _____ C:\Users\jerome\Downloads\AttestationHebergement.pdf
2021-10-07 01:13 - 2021-10-07 01:13 - 000000000 ____D C:\Users\jerome\AppData\LocalLow\uTorrent
2021-10-03 18:42 - 2021-10-15 18:41 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-835827082-1591139184-2353512274-1001
2021-09-30 17:35 - 2021-09-30 17:35 - 000000266 _____ C:\Users\jerome\Documents\hashtags ASGM.txt
2021-09-24 13:45 - 2021-09-24 13:45 - 000002339 _____ C:\Users\jerome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2021-09-22 09:49 - 2021-09-22 09:49 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsigne704056aec3d4a5a
2021-09-22 09:49 - 2021-09-22 09:49 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign1cb83d7d4c4e939a
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2021-10-16 18:46 - 2019-02-22 13:23 - 000000000 ____D C:\FRST
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2021-10-16 18:02 - 2016-11-15 16:22 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-16 17:56 - 2014-08-20 11:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-16 17:35 - 2020-12-26 17:32 - 000000392 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2021-10-15 18:29 - 2012-07-26 03:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-15 18:06 - 2021-08-31 14:09 - 000002007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001838 _____ C:\Users\Default\Desktop\Google Slides.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001838 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001826 _____ C:\Users\Default\Desktop\Google Docs.lnk
2021-10-15 18:06 - 2021-04-10 10:15 - 000001802 _____ C:\Users\jerome\Desktop\Google Drive.lnk
2021-10-15 18:05 - 2013-08-22 09:36 - 000000000 ____D C:\WINDOWS\Inf
2021-10-15 18:03 - 2021-05-22 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-10-15 18:02 - 2016-09-12 09:13 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-15 17:47 - 2016-09-12 09:07 - 000000000 ____D C:\Users\jerome\AppData\Roaming\uTorrent
2021-10-15 17:46 - 2020-08-26 02:25 - 000000000 ____D C:\Users\jerome\AppData\Local\CrashDumps
2021-10-15 17:43 - 2016-09-11 21:12 - 000000000 ___DO C:\Users\jerome\OneDrive
2021-10-15 17:18 - 2016-09-11 12:49 - 000000000 ____D C:\Users\jerome
2021-10-15 17:16 - 2013-08-22 10:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-15 17:10 - 2016-09-11 12:49 - 000000000 ____D C:\Users\Administrator
2021-10-15 17:10 - 2013-08-22 11:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-10-15 17:09 - 2013-08-22 09:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-10-15 16:56 - 2013-08-22 11:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-15 16:39 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\registration
2021-10-15 12:45 - 2017-12-06 10:28 - 000000000 ____D C:\Users\jerome\Documents\NATHALIE Reflexo Sophro
2021-10-15 04:21 - 2016-09-10 21:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-15 03:53 - 2019-12-26 20:19 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-14 09:13 - 2014-08-21 23:45 - 000000000 ____D C:\Users\jerome\Documents\Logos
2021-10-13 19:45 - 2016-09-09 14:35 - 000000000 ____D C:\Users\jerome\AppData\Local\Packages
2021-10-13 10:19 - 2014-11-20 18:46 - 001820486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-13 10:19 - 2014-11-20 18:03 - 000807880 _____ C:\WINDOWS\system32\perfh00C.dat
2021-10-13 10:19 - 2014-11-20 18:03 - 000157198 _____ C:\WINDOWS\system32\perfc00C.dat
2021-10-12 10:12 - 2013-08-22 09:25 - 000786432 ___SH C:\WINDOWS\system32\config\BBI
2021-10-12 09:29 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-12 09:08 - 2019-06-20 23:45 - 000000000 ____D C:\Users\jerome\AppData\Local\BitTorrentHelper
2021-10-02 17:15 - 2021-03-07 10:28 - 000000000 ____D C:\Program Files (x86)\Steam
2021-10-02 17:10 - 2020-10-25 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-10-02 17:02 - 2019-08-21 16:26 - 000000000 ____D C:\ProgramData\Wondershare
2021-10-02 16:59 - 2021-09-13 16:44 - 000000000 ____D C:\Wondershare UniConverter 13
2021-10-02 16:59 - 2020-12-26 17:51 - 000000000 ____D C:\ProgramData\TEMP
2021-10-02 11:11 - 2020-12-04 13:44 - 000000000 ____D C:\Users\jerome\AppData\Roaming\WhatsApp
2021-09-30 21:55 - 2021-04-08 10:31 - 000003504 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 21:55 - 2021-04-08 10:31 - 000003376 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 13:43 - 2021-08-25 19:37 - 000000071 _____ C:\Users\jerome\Desktop\Nouveau document texte.txt
2021-09-30 13:11 - 2019-12-16 12:42 - 000000000 ___HD C:\adobeTemp
2021-09-30 13:11 - 2016-09-12 08:44 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-09-30 13:10 - 2016-09-12 08:40 - 000000000 ____D C:\Program Files\Adobe
2021-09-21 01:11 - 2021-01-06 08:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-09-20 20:59 - 2019-03-13 09:22 - 000000000 ____D C:\Users\jerome\AppData\Roaming\Syncios Data Transfer
2021-09-20 20:58 - 2019-03-13 09:21 - 000000000 ____D C:\Users\jerome\AppData\Roaming\Syncios
2021-09-19 20:33 - 2018-07-23 13:01 - 000003926 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{8CA0B408-8D69-4FC8-B725-51F089166253}
2021-09-19 11:24 - 2013-08-22 10:44 - 005293216 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-18 09:33 - 2021-09-13 10:21 - 000000000 ____D C:\Users\jerome\Downloads\70's Mixtape (2021)
2021-09-17 10:32 - 2016-09-10 21:15 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2016-06-08 23:10 - 2016-11-16 12:18 - 000000000 _____ () C:\Users\jerome\ZHPCleaner.exe
2020-12-17 10:09 - 2020-12-17 10:09 - 001183217 _____ () C:\Users\jerome\AppData\Roaming\530354923
2020-08-20 14:39 - 2021-08-30 22:36 - 000000096 _____ () C:\Users\jerome\AppData\Roaming\Camdata.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000000408 _____ () C:\Users\jerome\AppData\Roaming\CamLayout.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000000408 _____ () C:\Users\jerome\AppData\Roaming\CamShapes.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000004534 _____ () C:\Users\jerome\AppData\Roaming\CamStudio.cfg
2021-01-22 12:37 - 2021-01-22 12:37 - 000000068 _____ () C:\Users\jerome\AppData\Roaming\changzhi_leidian.data
2018-01-05 16:47 - 2018-01-10 12:18 - 000032293 _____ () C:\Users\jerome\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-08-30 14:30 - 2021-08-30 14:30 - 000000096 _____ () C:\Users\jerome\AppData\Roaming\version2.xml
2021-03-26 17:12 - 2021-03-26 17:34 - 000000081 _____ () C:\Users\jerome\AppData\Local\.bidstack.fault
2016-12-21 08:32 - 2019-11-13 13:00 - 000001456 _____ () C:\Users\jerome\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2020-04-01 13:02 - 2020-04-03 14:21 - 000004608 _____ () C:\Users\jerome\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-12 12:49 - 2018-11-12 12:49 - 000140800 _____ () C:\Users\jerome\AppData\Local\installer.dat
2019-12-26 20:53 - 2019-12-26 20:53 - 000000000 _____ () C:\Users\jerome\AppData\Local\oobelibMkey.log
2021-03-25 12:16 - 2021-03-25 12:16 - 000016438 _____ () C:\Users\jerome\AppData\Local\partner.bmp
2020-06-25 21:32 - 2020-06-25 21:32 - 000000218 _____ () C:\Users\jerome\AppData\Local\recently-used.xbel
2019-05-30 07:53 - 2019-05-30 07:53 - 000000017 _____ () C:\Users\jerome\AppData\Local\resmon.resmoncfg
2018-02-13 20:04 - 2018-02-13 20:05 - 014960677 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-13-19-56-16.skp
2018-02-14 08:52 - 2018-02-14 08:52 - 014955629 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-14-08-51-41.skp
2018-02-18 12:07 - 2018-02-18 12:07 - 015210084 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-12-06-12.skp
2018-02-18 12:08 - 2018-02-18 12:08 - 015215944 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-12-08-09.skp
2018-02-18 14:45 - 2018-02-18 14:45 - 000413404 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-14-45-19.skp
2018-02-18 14:45 - 2018-02-18 14:45 - 000413404 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-14-45-45.skp
2018-02-18 18:52 - 2018-02-18 18:52 - 018952787 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-18-51-44.skp
==================== FLock ==============================
2021-03-25 13:02 C:\Users\jerome\AppData\Local\Disk
==================== FCheck ================================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
FCheck: C:\WINDOWS\SysWOW64\wpcmon.exe [2018-06-16] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUH.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUISkin.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUISkin32.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-05-22 05:53
==================== Fin de FRST.txt ========================
Exécuté par jerome (administrateur) sur VAIO (Sony Corporation SVJ2022M1EWI) (16-10-2021 18:43:07)
Exécuté depuis C:\Users\jerome\Downloads
Profils chargés: jerome
Platform: Microsoft Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\51.0.15.0\crashpad_handler.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\51.0.16.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <6>
(Microleaves LTD -> Advanced Windows Manager) C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tenorshare Co,Ltd) [Fichier non signé] C:\Program Files (x86)\UltData\service\TenorshareWinAdService.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\jerome\AppData\Local\Microsoft\Teams\Update.exe [2330784 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49952240 2021-09-09] (Google LLC -> )
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-07] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [BIBLauncher] => C:\Program Files (x86)\Business-in-a-Box 2021\BIBLauncher.exe [2790536 2021-01-13] (Biztree Inc. -> )
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-835827082-1591139184-2353512274-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-835827082-1591139184-2353512274-500\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.16.0\GoogleDriveFS.exe [54124376 2021-10-14] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\WINDOWS\system32\nitrolocalmon9.dll [29704 2014-08-01] (Nitro PDF Software -> Nitro PDF Software)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-13] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\Users\jerome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-09-19]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {07153FEA-9252-4BD4-A6E5-4F61AF351488} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1277EB76-227C-49DD-B79A-3CFC559288DA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134488 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {199AB816-E772-42D5-BADC-522AB48F41CB} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {19DF271D-535C-446E-BD32-1AA17FD30807} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [1151648 2012-10-23] (Sony Corporation -> Sony Corporation)
Task: {2DAF24B2-731E-4AD3-A725-2DEC61164116} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [34976 2012-10-23] (Sony Corporation -> Sony Corporation)
Task: {2E2B9242-6FC3-4EF8-966D-9B1DF60BE9CB} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492712 2012-10-30] (Sony Corporation -> Sony Corporation)
Task: {2F26C35B-590C-4A21-8450-40F09DC50EDE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729184 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {31EA3DE0-57FD-4A6D-BE57-561A4DF1A6F0} - System32\Tasks\Microsoft\Windows\Time Synchronization\ViewUtcTime => C:\Users\jerome\AppData\Roaming\\utctimer\\utc.exe
Task: {34C17809-7694-486D-B875-B5A112A6EA79} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {443FAA8A-A37F-4201-9216-A19EE6C44C03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {44DE627A-8976-4AD5-AF62-0211A718FF6C} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-05] (Sony Corporation -> Sony Corporation)
Task: {45F4A688-3F91-47D2-82B5-576ACB83E501} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5729184 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {481047CE-D8C8-4955-9087-9E1ECECBFA7D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {57BB58C0-0129-41DD-B312-2422CF6839DB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2021-07-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5B349126-71C7-4BFD-A519-62A56E087548} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5FC0AAED-EDBD-4268-ADB9-1CB398FC8DA5} - System32\Tasks\AdvancedWindowsManager #3 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {639749E7-C824-42AB-96DB-7B93C6698BCD} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {74460153-028B-429A-BFD8-33BEA00824DA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {7A3EB36F-AE2F-4A28-B7D3-A6E648649BE6} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [492712 2012-10-30] (Sony Corporation -> Sony Corporation)
Task: {82B28E91-605A-4F2E-B1BC-3D8D098EC9DE} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [681400 2021-08-28] (Mozilla Corporation -> Mozilla Foundation)
Task: {8A4AC11C-CAD0-4380-A813-1B42197F9EF9} - System32\Tasks\AdvancedWindowsManager #4 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {90D20FC8-F70C-49F9-B05A-54BB50167E46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13769584 2018-09-07] (Piriform Ltd -> Piriform Ltd)
Task: {93F928C3-AF44-4230-9982-9766EE9D4851} - System32\Tasks\CastVPN => "cmd" /c sc stop CastVPN & sc start CastVPN"
Task: {95CBCFD6-0D46-4751-B914-6B1FD29D121E} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {9BE13247-93A0-477D-A55D-000E1C44084B} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {A0FECE74-4B10-4DEA-BD65-7AC8D5B3683F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-08] (Google LLC -> Google LLC)
Task: {A184AB32-059C-4F5A-B6A9-8243F6E5154D} - System32\Tasks\Services\Diagnostic => C:\Users\jerome\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe [1013928 2018-03-15] (AutoIt Consulting Ltd -> AutoIt Team) -> "C:\Users\jerome\AppData\Local\Disk\AutoIt3\Settings.au3"
Task: {A1B64C0F-64FB-4325-AFC3-FA63DC2E101D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134488 2021-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9B8675B-48E2-4EDE-8D95-8F664D638E4F} - System32\Tasks\AdvancedWindowsManager #1 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {B0D1D084-69E8-4133-A057-516B8D470A01} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-04-08] (Google LLC -> Google LLC)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {CD6DCE22-F46C-41A3-9A01-86E845138AC4} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {CED80DF0-D743-44D6-9E7D-56BB2F5567F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF98EEED-D784-4F2C-BD7C-3A6182E3BA0F} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-05] (Sony Corporation -> Sony Corporation)
Task: {D34F56B0-E24F-4D72-8171-268518309D5D} - System32\Tasks\AdvancedWindowsManager #5 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {D6676EDA-9DCE-4DDB-86E2-187FC8077B22} - System32\Tasks\AdvancedWindowsManager => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {D67D8F81-B030-4B0C-93BF-71CDA2B78217} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {DABA2771-4E8C-44D0-BF55-CAB38865F256} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {E210C2B0-73C4-47C7-ACD9-D016504373DA} - System32\Tasks\AdvancedWindowsManager #6 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {EB4413EC-28D5-4016-9592-ADAE3A8AE55F} - System32\Tasks\AdvancedWindowsManager #2 => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\AdvancedWindowsManager.exe [482120 2021-04-08] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {F4487CCA-111A-42D6-A042-A0FBE86DCF4F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F51D822F-3013-4823-8F83-7574095ABA6D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F654538F-F8FC-46C5-93AA-EC61F9EAE0D8} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [735400 2012-10-22] (Sony Corporation -> Sony Corporation)
Task: {F74F69D1-6745-4036-9232-9C7F361922F6} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [908144 2017-11-02] (MICROLEAVES LTD -> Microleaves) <==== ATTENTION
Task: {FB4300AE-1C21-4F4A-97DA-EDCBF89068BF} - System32\Tasks\AdvancedUpdater => C:\Program Files (x86)\AdvancedWindowsManager\Windows Installer\Windows Updater.exe [1020024 2021-04-09] (Microleaves LTD -> AdvancedWindowsManager) <==== ATTENTION
Task: {FD083F1D-02A7-4A50-B16A-54DEDF57662A} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1479241524.job => C:\Program Files\AVAST Software\SZBrowser\launcher.exe--scheduledautoupdate $(Arg0)WORKGROUP\VAIO$.Met
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [50176 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [74240 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{14CE002F-42FB-4EA3-B515-084BAE7956B8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C337954D-0DAC-4E45-B5E1-4A09D0EB9710}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\jerome\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-24]
FireFox:
========
FF DefaultProfile: w68gaiu0.default
FF ProfilePath: C:\Users\jerome\AppData\Roaming\Mozilla\Firefox\Profiles\w68gaiu0.default [2021-10-16]
FF Homepage: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//mysearchengine.co/homepage?hp=1&bitmask=9996&pId=AE190201&iDate=2020-12-26 09:35:39&bName=
FF NewTab: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//mysearchengine.co/homepage?hp=1&bitmask=9996&pId=AE190201&iDate=2020-12-26 09:35:39&bName=
FF Notifications: Mozilla\Firefox\Profiles\w68gaiu0.default -> hxxps//fr.nametests.com
FF SearchPlugin: C:\Users\jerome\AppData\Roaming\Mozilla\Firefox\Profiles\w68gaiu0.default\searchplugins\My Bing Search.xml [2020-12-26]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-09-18] []
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e)
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-10-26] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-10-26] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-08-01] (Nitro PDF Software -> Nitro PDF)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-02-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\jerome\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\jerome\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.232\npGatewayNpapi.dll [2017-11-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\jerome\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.232\npGatewayNpapi-x64.dll [2017-11-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-500: intel.com/AppUp -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll [2012-10-04] (Intel) [Fichier non signé]
FF Plugin HKU\S-1-5-21-835827082-1591139184-2353512274-500: intel.com/AppUpx64 -> C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll [2012-10-04] (Intel) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-15]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-10-16]
CHR Notifications: Profile 2 -> hxxps//drive.google.com; hxxps//forums.commentcamarche.net; hxxps//fr.depositphotos.com; hxxps//gaming.gentside.com; hxxps//meet.google.com; hxxps//web.whatsapp.com; hxxps//www.allocine.fr; hxxps//www.backmarket.fr; hxxps//www.calagenda.fr; hxxps//www.commentcamarche.net; hxxps//www.facebook.com; hxxps//www.lnr.fr; hxxps//www.pinterest.fr; hxxps//www.samsung.com; hxxps//www.techniconnexion.com; hxxps//www.voici.fr; hxxps//www.wish.com
CHR Extension: (Slides) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Docs) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-15]
CHR Extension: (Adobe Acrobat) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-10-12]
CHR Extension: (Sheets) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-13]
CHR Extension: (Télécharger des vidéos Facebook) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hgknmjhmcbimcpdmmfeafjbdccaheaeg [2020-08-05]
CHR Extension: (The Flash Video Downloader) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmieilamoollaknppoffbmdgdcolcafa [2021-09-29]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2020-04-05]
CHR Extension: (Desktopify) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nlhjgcligpbnjphflfdbmabbmjidnmek [2020-08-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Correcteur de texte — LanguageTool) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oldceeleldhonbafppcapldpdifcinji [2021-09-23]
CHR Extension: (Gmail) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3 [2021-10-15]
CHR Extension: (Slides) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-04-02]
CHR Extension: (Docs) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-04-02]
CHR Extension: (Google Drive) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-04-02]
CHR Extension: (YouTube) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-04-02]
CHR Extension: (Adobe Acrobat) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-04-02]
CHR Extension: (Sheets) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-04-02]
CHR Extension: (NetNut Extension) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gcnfpjoimnmmdiokmpaebcacnnpdifbn [2021-04-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-02]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-04-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-02]
CHR Extension: (Gmail) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\jerome\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-02]
CHR Profile: C:\Users\jerome\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-15]
CHR HKU\S-1-5-21-835827082-1591139184-2353512274-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\jerome\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2021-05-12]
CHR HKU\S-1-5-21-835827082-1591139184-2353512274-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-12-17]
CHR HKLM-x32\...\Chrome\Extension: [gcnfpjoimnmmdiokmpaebcacnnpdifbn]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Inc. -> Adobe Systems)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-05] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
S3 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-10-17] (Sony Corporation -> Sony Corporation)
S3 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [230920 2014-08-01] (Nitro PDF Software -> Nitro PDF Software)
S3 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [418312 2014-08-01] (Nitro PDF Software -> )
S3 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [69640 2014-08-01] (Nitro PDF Software -> Nalpeiron Ltd.)
S3 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation -> Sony Corporation)
S3 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 TenorshareWinAdService; C:\Program Files (x86)\UltData\service\TenorshareWinAdService.exe [27648 2016-11-07] (Tenorshare Co,Ltd) [Fichier non signé]
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-27] (Sony Corporation) [Fichier non signé]
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1265824 2012-10-23] (Sony Corporation -> Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [165344 2013-07-29] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\WINDOWS\system32\DRIVERS\amppal.sys [165344 2013-07-29] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R3 anvsnddrv; C:\WINDOWS\system32\drivers\anvsnddrv.sys [34416 2016-03-24] (Anvsoft Inc. -> AnvSoft Inc.)
R3 btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [1448248 2017-08-20] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [32400 2016-03-04] (ThreatTrack Security, Inc. -> ThreatTrack Security)
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [380384 2021-08-09] (Google LLC -> Google, Inc.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc. -> McAfee, Inc.)
S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc. -> McAfee, Inc.)
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [777944 2016-01-13] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-21] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 SensorsServiceDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [226304 2014-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 SFEP; C:\WINDOWS\System32\drivers\SFEP.sys [15360 2013-06-28] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation)
R3 sonyfelicaportm; C:\WINDOWS\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-26] (Sony Corporation -> Sony Corporation)
R3 sonynfcport100c; C:\WINDOWS\System32\Drivers\sonynfcport100c.sys [66224 2015-05-27] (Sony Corporation -> Sony Corporation)
R3 sonynfcport100f; C:\WINDOWS\System32\Drivers\sonynfcport100f.sys [743664 2016-03-14] (Sony Corporation -> Sony Corporation)
R3 SOWS; C:\WINDOWS\System32\drivers\sows.sys [24280 2012-06-10] (WDKTestCert kaneda,129651282666891607 -> Sony Corporation)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [55976 2020-05-14] (NCH Software, Inc. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S1 bylviduz; \??\C:\WINDOWS\system32\drivers\bylviduz.sys [X]
S3 cpuz138; \??\C:\Users\jerome\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATTENTION
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
S3 DIRECTIO; \??\C:\Program Files\PerformanceTest\DirectIo64.sys [X]
S1 ebfuqung; \??\C:\WINDOWS\system32\drivers\ebfuqung.sys [X]
S1 ktqtowzm; \??\C:\WINDOWS\system32\drivers\ktqtowzm.sys [X]
S1 leozevvp; \??\C:\WINDOWS\system32\drivers\leozevvp.sys [X]
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-16 18:43 - 2021-10-16 18:47 - 000040447 _____ C:\Users\jerome\Downloads\FRST.txt
2021-10-16 18:40 - 2021-10-16 18:40 - 002310656 _____ (Farbar) C:\Users\jerome\Downloads\FRST64-2.1.exe
2021-10-16 18:40 - 2021-10-16 18:40 - 000000000 ____D C:\Users\jerome\Downloads\FRST-OlderVersion
2021-10-15 18:03 - 2021-10-15 18:03 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002358 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002336 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-10-15 18:03 - 2021-10-15 18:03 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-10-15 17:33 - 2021-10-15 17:33 - 000002784 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-10-15 08:53 - 2021-10-15 08:53 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign983d00b84e013262
2021-10-15 08:53 - 2021-10-15 08:53 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign304990cc7aa1479a
2021-10-12 08:31 - 2021-10-12 08:32 - 000013885 _____ C:\Users\jerome\Downloads\AttestationHebergement.pdf
2021-10-07 01:13 - 2021-10-07 01:13 - 000000000 ____D C:\Users\jerome\AppData\LocalLow\uTorrent
2021-10-03 18:42 - 2021-10-15 18:41 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-835827082-1591139184-2353512274-1001
2021-09-30 17:35 - 2021-09-30 17:35 - 000000266 _____ C:\Users\jerome\Documents\hashtags ASGM.txt
2021-09-24 13:45 - 2021-09-24 13:45 - 000002339 _____ C:\Users\jerome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2021-09-22 09:49 - 2021-09-22 09:49 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsigne704056aec3d4a5a
2021-09-22 09:49 - 2021-09-22 09:49 - 000000000 ____D C:\Users\jerome\AppData\Local\Tempzxpsign1cb83d7d4c4e939a
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2021-10-16 18:50 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2021-10-16 18:46 - 2019-02-22 13:23 - 000000000 ____D C:\FRST
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2021-10-16 18:45 - 2020-12-26 17:32 - 000000360 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2021-10-16 18:02 - 2016-11-15 16:22 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-16 17:56 - 2014-08-20 11:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-16 17:35 - 2020-12-26 17:32 - 000000392 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2021-10-15 18:29 - 2012-07-26 03:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-15 18:06 - 2021-08-31 14:09 - 000002007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001838 _____ C:\Users\Default\Desktop\Google Slides.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001838 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2021-10-15 18:06 - 2021-08-31 14:09 - 000001826 _____ C:\Users\Default\Desktop\Google Docs.lnk
2021-10-15 18:06 - 2021-04-10 10:15 - 000001802 _____ C:\Users\jerome\Desktop\Google Drive.lnk
2021-10-15 18:05 - 2013-08-22 09:36 - 000000000 ____D C:\WINDOWS\Inf
2021-10-15 18:03 - 2021-05-22 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2021-10-15 18:02 - 2016-09-12 09:13 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-15 17:47 - 2016-09-12 09:07 - 000000000 ____D C:\Users\jerome\AppData\Roaming\uTorrent
2021-10-15 17:46 - 2020-08-26 02:25 - 000000000 ____D C:\Users\jerome\AppData\Local\CrashDumps
2021-10-15 17:43 - 2016-09-11 21:12 - 000000000 ___DO C:\Users\jerome\OneDrive
2021-10-15 17:18 - 2016-09-11 12:49 - 000000000 ____D C:\Users\jerome
2021-10-15 17:16 - 2013-08-22 10:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-15 17:10 - 2016-09-11 12:49 - 000000000 ____D C:\Users\Administrator
2021-10-15 17:10 - 2013-08-22 11:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-10-15 17:09 - 2013-08-22 09:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-10-15 16:56 - 2013-08-22 11:36 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-15 16:39 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\registration
2021-10-15 12:45 - 2017-12-06 10:28 - 000000000 ____D C:\Users\jerome\Documents\NATHALIE Reflexo Sophro
2021-10-15 04:21 - 2016-09-10 21:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-15 03:53 - 2019-12-26 20:19 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-10-14 09:13 - 2014-08-21 23:45 - 000000000 ____D C:\Users\jerome\Documents\Logos
2021-10-13 19:45 - 2016-09-09 14:35 - 000000000 ____D C:\Users\jerome\AppData\Local\Packages
2021-10-13 10:19 - 2014-11-20 18:46 - 001820486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-13 10:19 - 2014-11-20 18:03 - 000807880 _____ C:\WINDOWS\system32\perfh00C.dat
2021-10-13 10:19 - 2014-11-20 18:03 - 000157198 _____ C:\WINDOWS\system32\perfc00C.dat
2021-10-12 10:12 - 2013-08-22 09:25 - 000786432 ___SH C:\WINDOWS\system32\config\BBI
2021-10-12 09:29 - 2013-08-22 11:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-12 09:08 - 2019-06-20 23:45 - 000000000 ____D C:\Users\jerome\AppData\Local\BitTorrentHelper
2021-10-02 17:15 - 2021-03-07 10:28 - 000000000 ____D C:\Program Files (x86)\Steam
2021-10-02 17:10 - 2020-10-25 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2021-10-02 17:02 - 2019-08-21 16:26 - 000000000 ____D C:\ProgramData\Wondershare
2021-10-02 16:59 - 2021-09-13 16:44 - 000000000 ____D C:\Wondershare UniConverter 13
2021-10-02 16:59 - 2020-12-26 17:51 - 000000000 ____D C:\ProgramData\TEMP
2021-10-02 11:11 - 2020-12-04 13:44 - 000000000 ____D C:\Users\jerome\AppData\Roaming\WhatsApp
2021-09-30 21:55 - 2021-04-08 10:31 - 000003504 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-09-30 21:55 - 2021-04-08 10:31 - 000003376 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 13:43 - 2021-08-25 19:37 - 000000071 _____ C:\Users\jerome\Desktop\Nouveau document texte.txt
2021-09-30 13:11 - 2019-12-16 12:42 - 000000000 ___HD C:\adobeTemp
2021-09-30 13:11 - 2016-09-12 08:44 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-09-30 13:10 - 2016-09-12 08:40 - 000000000 ____D C:\Program Files\Adobe
2021-09-21 01:11 - 2021-01-06 08:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-09-20 20:59 - 2019-03-13 09:22 - 000000000 ____D C:\Users\jerome\AppData\Roaming\Syncios Data Transfer
2021-09-20 20:58 - 2019-03-13 09:21 - 000000000 ____D C:\Users\jerome\AppData\Roaming\Syncios
2021-09-19 20:33 - 2018-07-23 13:01 - 000003926 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{8CA0B408-8D69-4FC8-B725-51F089166253}
2021-09-19 11:24 - 2013-08-22 10:44 - 005293216 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-18 09:33 - 2021-09-13 10:21 - 000000000 ____D C:\Users\jerome\Downloads\70's Mixtape (2021)
2021-09-17 10:32 - 2016-09-10 21:15 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2016-06-08 23:10 - 2016-11-16 12:18 - 000000000 _____ () C:\Users\jerome\ZHPCleaner.exe
2020-12-17 10:09 - 2020-12-17 10:09 - 001183217 _____ () C:\Users\jerome\AppData\Roaming\530354923
2020-08-20 14:39 - 2021-08-30 22:36 - 000000096 _____ () C:\Users\jerome\AppData\Roaming\Camdata.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000000408 _____ () C:\Users\jerome\AppData\Roaming\CamLayout.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000000408 _____ () C:\Users\jerome\AppData\Roaming\CamShapes.ini
2020-08-20 14:39 - 2021-08-30 22:36 - 000004534 _____ () C:\Users\jerome\AppData\Roaming\CamStudio.cfg
2021-01-22 12:37 - 2021-01-22 12:37 - 000000068 _____ () C:\Users\jerome\AppData\Roaming\changzhi_leidian.data
2018-01-05 16:47 - 2018-01-10 12:18 - 000032293 _____ () C:\Users\jerome\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-08-30 14:30 - 2021-08-30 14:30 - 000000096 _____ () C:\Users\jerome\AppData\Roaming\version2.xml
2021-03-26 17:12 - 2021-03-26 17:34 - 000000081 _____ () C:\Users\jerome\AppData\Local\.bidstack.fault
2016-12-21 08:32 - 2019-11-13 13:00 - 000001456 _____ () C:\Users\jerome\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2020-04-01 13:02 - 2020-04-03 14:21 - 000004608 _____ () C:\Users\jerome\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-12 12:49 - 2018-11-12 12:49 - 000140800 _____ () C:\Users\jerome\AppData\Local\installer.dat
2019-12-26 20:53 - 2019-12-26 20:53 - 000000000 _____ () C:\Users\jerome\AppData\Local\oobelibMkey.log
2021-03-25 12:16 - 2021-03-25 12:16 - 000016438 _____ () C:\Users\jerome\AppData\Local\partner.bmp
2020-06-25 21:32 - 2020-06-25 21:32 - 000000218 _____ () C:\Users\jerome\AppData\Local\recently-used.xbel
2019-05-30 07:53 - 2019-05-30 07:53 - 000000017 _____ () C:\Users\jerome\AppData\Local\resmon.resmoncfg
2018-02-13 20:04 - 2018-02-13 20:05 - 014960677 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-13-19-56-16.skp
2018-02-14 08:52 - 2018-02-14 08:52 - 014955629 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-14-08-51-41.skp
2018-02-18 12:07 - 2018-02-18 12:07 - 015210084 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-12-06-12.skp
2018-02-18 12:08 - 2018-02-18 12:08 - 015215944 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-12-08-09.skp
2018-02-18 14:45 - 2018-02-18 14:45 - 000413404 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-14-45-19.skp
2018-02-18 14:45 - 2018-02-18 14:45 - 000413404 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-14-45-45.skp
2018-02-18 18:52 - 2018-02-18 18:52 - 018952787 _____ () C:\Users\jerome\AppData\Local\TempSimLab_2018-02-18-18-51-44.skp
==================== FLock ==============================
2021-03-25 13:02 C:\Users\jerome\AppData\Local\Disk
==================== FCheck ================================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
FCheck: C:\WINDOWS\SysWOW64\wpcmon.exe [2018-06-16] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUH.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUISkin.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\system32\BDSandBoxUISkin32.dll [2017-02-10] <==== ATTENTION (zéro octet Fichier/Dossier)
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-05-22 05:53
==================== Fin de FRST.txt ========================