Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2019 01
Exécuté par chewnakin (administrateur) sur SKYWALKIN (Hewlett-Packard p6-2040fr) (11-06-2019 17:32:25)
Exécuté depuis C:\Users\chewnakin\Desktop
Profils chargés: chewnakin (Profils disponibles: chewnakin & DefaultAppPool)
Platform: Windows 10 Home Version 1803 17134.706 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19031.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\chewnakin\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\chewnakin\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\xvpnd\expressvpn-browser-helper.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\xvpnd\expressvpn-browser-helper.exe
(Express Vpn LLC -> ) C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVPN.exe
(Express Vpn LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpnNotificationService.exe
(Express Vpn LLC -> The OpenVPN Project) C:\Program Files (x86)\ExpressVPN\xvpnd\windows\openvpn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\hp\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Iain Patterson) [Fichier non signé] C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(QFX Software Corporation -> QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(QFX Software Corporation -> QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(RealNetworks, Inc. -> RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [5126432 2018-06-18] (O&O Software GmbH -> O&O Software GmbH)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [516240 2018-09-12] (QFX Software Corporation -> QFX Software Corporation)
HKLM-x32\...\Run: [ExpressVpnNotificationService] => C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpnNotificationService.exe [773248 2019-03-21] (Express Vpn LLC -> ExpressVPN)
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKLM\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [DashlanePlugin] => C:\Users\chewnakin\AppData\Roaming\Dashlane\DashlanePlugin.exe [413264 2019-05-28] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [Dashlane] => C:\Users\chewnakin\AppData\Roaming\Dashlane\Dashlane.exe [390736 2019-05-28] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [SmartRAM] => C:\Users\chewnakin\Desktop\ASC12\Suo10_SmartRAM.exe [480528 2019-06-09] (IObit Information Technology -> IObit)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2019-06-10] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVPN.exe [799872 2019-03-21] (Express Vpn LLC -> ExpressVPN)
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKU\S-1-5-21-2451943935-529709864-1479247760-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [570368 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.80\Installer\chrmstp.exe [2019-06-10] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0477CC59-DA08-428E-9C51-325ECF52E5D6} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\Real\RealDownloader\downloader2.exe [1259704 2017-08-17] (RealNetworks, Inc. -> )
Task: {0F40A586-C491-4688-988F-2F356CA452BD} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {181C52FB-8B62-4D9E-82C8-C1561E4AC0E7} - System32\Tasks\ReclaimerUpdateFiles_chewnakin => C:\Users\chewnakin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.08\agent\rnupgagent.exe [701136 2017-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {250F71C9-2FF3-4823-9AE7-A18990BE61EC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {252DC96A-7026-4003-AF45-6246A7CB94D3} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {2DAB9005-74E3-407F-860D-D935B340D7B9} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {2E792F5E-BE1C-4DB8-A3BA-58D676361B12} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {32074C6F-864E-469C-BC7A-E9FCF15F1359} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION
Task: {35058198-90A3-4B6D-8717-AB5546E015A5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {35588EBE-577C-4915-AE79-E353CF9CFAA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-02] (Google Inc -> Google Inc.)
Task: {3AF413CA-C80E-40ED-BB55-C2A1B9CCDB89} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2451943935-529709864-1479247760-1000 => C:\Program Files (x86)\Real\RealDownloader\RealUpgrade.exe [135504 2017-08-17] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {3B2EF48F-74C9-4461-AEBF-7EE2B126A1DD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)
Task: {3DB422A1-D496-4352-8D3E-BC37FBC907B3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [629184 2017-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40462A5E-9A8E-4ED0-8747-618997655BA4} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2451943935-529709864-1479247760-1000 => C:\Program Files (x86)\Real\RealDownloader\RealUpgrade.exe [135504 2017-08-17] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {48C9E894-2335-44F9-A3DA-BA56C6E94BEB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {49F78BB2-833D-4FA0-AB6F-2E44052AACB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {52E2B770-6ADF-4BA0-A2E3-DBDF7C70E61A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-19] (Adobe Inc. -> Adobe)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5BEE7D6D-9C43-4EAB-AE30-897510DA12BD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {6A60187F-9BC5-4171-97F0-41C9B0B903A5} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {6B959AD8-1116-4071-94A5-DA94B13A7C83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6C2A8319-B324-4FF3-A1B7-49AAAB374781} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)
Task: {6E260D27-D4C9-412D-84C0-91367AA61BE7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [629184 2017-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {73039FF3-C086-470B-A928-158CB123EAE7} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [6978120 2019-03-18] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {7F24AA3F-EF8F-4603-AA4B-71CC6EFB9A8F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {89B15564-C2B4-4AC6-B4E2-107CF27146A5} - System32\Tasks\RNUpgradeHelperResumePrompt_chewnakin => C:\Users\chewnakin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.08\agent\rnupgagent.exe [701136 2017-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {89C7CD53-4F37-4DED-AF95-98FF8179E83D} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {95728A69-E75F-422A-B6A0-3D7C44F3E669} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [5626 2010-05-21] () [Fichier non signé]
Task: {9FF59B0A-7C69-4A65-96EE-B83B0053423A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0497E6B-3949-4996-A8F1-F0D6FF8E87A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-10-02] (Google Inc -> Google Inc.)
Task: {A0BA6AE4-2F0D-4642-AB29-DBF27B0D4A99} - System32\Tasks\RNUpgradeHelperLogonPrompt_chewnakin => C:\Users\chewnakin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.08\agent\rnupgagent.exe [701136 2017-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {A3DAE83F-4D08-4273-BFD4-727F9AD319D3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [237432 2019-04-29] (HP Inc. -> HP Inc.)
Task: {A7B63FC7-7C9C-4D1F-BCDB-00EEAE440DB7} - System32\Tasks\HPCeeScheduleForchewnakin => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97848 2016-01-22] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {AAC97A2B-8B06-4B34-95B9-D5203D8DE2B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B19D649F-5EC4-40DC-AA0C-F8281343A5A7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {B5420F54-726B-4DBA-B8A3-65FBCCB01B6C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {B78EFDAE-77DA-4752-9FF2-A274EFBCA1F1} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-20] (HP Inc. -> )
Task: {B8FD2812-1FC5-417D-9761-D21C81E4D032} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BB1D91EC-FA34-4ED3-9F17-9118BD23CDE1} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2451943935-529709864-1479247760-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880 2017-08-17] (RealNetworks, Inc.) [Fichier non signé]
Task: {BC8A4383-F239-42A8-B343-432652E4358E} - System32\Tasks\ReclaimerUpdateXML_chewnakin => C:\Users\chewnakin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.08\agent\rnupgagent.exe [701136 2017-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {BD77B8CC-366C-4648-B1B7-78B85CB2A785} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {BE81813E-FF01-430E-A0AB-DAD7968F95DA} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2451943935-529709864-1479247760-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880 2017-08-17] (RealNetworks, Inc.) [Fichier non signé]
Task: {C146B6A2-6993-42C1-8862-3EA2F4B0DE2C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {C4A12F21-E9F8-4EBD-B2B6-3B4F62077B76} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {C6244D54-2EF3-485C-BE2F-725BDC6A1520} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {C733316F-A5F8-446B-AB50-EE05EE26762F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CDEB0677-3374-4B05-A0D8-BEA64D54DAB5} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2451943935-529709864-1479247760-1000 => C:\Program Files (x86)\Real\RealDownloader\recordingmanager.exe [948560 2017-08-17] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {CE2F27D7-3186-4CF8-A36B-2C3B9043F3EE} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [1456128 2019-01-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {D2D3BA4D-B1C0-4009-BE9D-B7D482E4C673} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {D7E266EA-50AB-4D66-A073-63819468D6A3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {D9460527-767B-4FE9-A701-A6BF544F3267} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-19] (Adobe Inc. -> Adobe)
Task: {DAFA86A7-B7BB-48B1-ADD6-C94AD6445C62} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {DF463771-AF4D-4220-8F75-6F30915B1AA0} - System32\Tasks\ASUS Live Update1 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" searchlocal.win
Task: {E74F4867-F34B-4BF7-80C4-3B94B6A1BB22} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [5663 2010-05-21] () [Fichier non signé]
Task: {E8593985-A19B-4AD7-B60D-D1F5609E9DD2} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {EC56A6BA-F441-4832-9A4C-4B33EB701FA7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {EDD6FD44-1AD7-49B8-94AD-D97E12C892FF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F1FAC24D-4578-46CC-93D3-F325129BA307} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F5739301-1FD5-4678-8D8E-8C37C3C8B734} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [704960 2017-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F63DD444-0088-47F4-9F89-35E9DBEB7A16} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2417032 2011-08-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7BAD059-01F5-44D5-9C49-F3154CE5E756} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [704960 2017-02-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FD5DDD3B-CD1D-4045-8AD1-26A37A8B8E61} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForchewnakin.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.193.0.1
Tcpip\..\Interfaces\{9f5b170d-6b8e-4004-a1fd-e044b69f2606}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{f1af6c75-527a-4632-a450-4410aa797c4a}: [DhcpNameServer] 10.193.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-2/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM -> {DDCEF3A1-D3A0-406D-AE15-DFFB09622AA3} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-2/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-2/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: Pas de nom -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> Pas de fichier
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2017-08-17] (RealNetworks, Inc. -> RealDownloader)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll [2011-06-09] (AuthenTec, Inc. -> HP)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-08-17] (RealNetworks, Inc. -> RealDownloader)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\chewnakin\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-05-28] (Dashlane USA, Inc. -> Dashlane, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll [2011-06-09] (AuthenTec, Inc. -> HP)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
Toolbar: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2451943935-529709864-1479247760-1000 -> hxxps://www.qwant.com/?l=fr
Edge Extension: (AdGuard AdBlocker) -> EdgeExtension_AdguardAdguardAdBlocker_m055xr0c82818 => C:\Program Files\WindowsApps\Adguard.AdguardAdBlocker_3.0.13.0_neutral__m055xr0c82818 [2019-05-01]

FireFox:
========
FF DefaultProfile: kraydfgq.default-1458583834665-1557049544517
FF ProfilePath: C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517 [2019-06-11]
FF user.js: detected! => C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\user.js [2019-06-08]
FF Homepage: Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517 -> hxxps://www.qwant.com/?l=fr
FF Session Restore: Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517 -> est activé.
FF Extension: (ExpressVPN : un proxy VPN qui vous donne accès à tout) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\firefox-addon@expressvpn.com.xpi [2019-05-16]
FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-15]
FF Extension: (Dashlane) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\jetpack-extension@dashlane.com.xpi [2019-06-01] [UpdateUrl:hxxps://ws1.dashlane.com/5/binaries/query?logins=&platform=firefox&target=ff_web_extension&format=json&version=]
FF Extension: (uBlock Origin) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\uBlock0@raymondhill.net.xpi [2019-06-01]
FF Extension: (Google Analytics Opt-out) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\{2f182d41-fd03-4a6d-938d-081419586c37}.xpi [2019-05-05]
FF Extension: (Google Traduction) - C:\Users\chewnakin\AppData\Roaming\Mozilla\Firefox\Profiles\kraydfgq.default-1458583834665-1557049544517\Extensions\{f959a2e9-f211-424b-b0cd-ea7ecf269753}.xpi [2019-05-05] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-12-01] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKU\S-1-5-21-2451943935-529709864-1479247760-1000\...\Firefox\Extensions: [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}] - C:\Users\chewnakin\AppData\Roaming\Dashlane\6.1922.0.20737\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}
FF Extension: (Pas de nom) - C:\Users\chewnakin\AppData\Roaming\Dashlane\6.1922.0.20737\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f} [2019-05-28] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-19] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-19] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-12-01] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.9.106 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2017-09-16] (RealNetworks, Inc. -> RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.9.106 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2017-09-16] (RealNetworks, Inc. -> RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> qwant.com
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch&lang=fr_fr
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default [2019-06-11]
CHR Extension: (Google Traduction) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-21]
CHR Extension: (AdGuard AdBlocker) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2019-06-08]
CHR Extension: (Honey) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2019-06-08]
CHR Extension: (uBlock Origin) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-06-08]
CHR Extension: (Dashlane) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2019-06-08]
CHR Extension: (ExpressVPN : un proxy VPN qui vous donne accès à tout) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2019-06-08]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2017-01-27]
CHR Extension: (Lazy Loading) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfakljakeajoanhledgfkhmikmnmbdkg [2015-11-15]
CHR Extension: (Qwant) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2019-01-03]
CHR Extension: (Disconnect) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2019-06-08]
CHR Extension: (Video DownloadHelper) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\chewnakin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-10]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-12-01]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-12-01]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <pas de Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [jpgfhihjicjofdejkbjgnjlaglaciobe] - C:\Program Files (x86)\HP SimplePass 2011\tschrome.crx [2011-08-22]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 ExpressVPNService; C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe [368640 2019-03-21] (Iain Patterson) [Fichier non signé]
S3 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé]
S3 FoxitPhantomService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-12-12] (Foxit Software Incorporated -> Foxit Software Inc.)
S3 FPLService; C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [264008 2011-06-09] (AuthenTec, Inc. -> HP)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-05-08] (Mixbyte Inc -> Freemake)
S3 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [17792 2019-05-08] (Mixbyte Inc -> Ellora Assets Corp.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R3 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1733408 2018-06-18] (O&O Software GmbH -> O&O Software GmbH)
S3 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete -> PDF Complete Inc)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 QFXUpdateService; C:\Program Files (x86)\KeyScrambler\x64\QFXUpdateService.exe [87184 2018-09-12] (QFX Software Corporation -> )
S2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [37104 2017-08-17] (RealNetworks, Inc. -> RealNetworks, Inc.)
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [989912 2017-09-16] (RealNetworks, Inc. -> RealNetworks, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268368 2019-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ahcix64s; C:\WINDOWS\system32\drivers\ahcix64s.sys [280656 2011-03-23] (Promise Technology -> Advanced Micro Devices, Inc)
S3 amdhub30; C:\WINDOWS\system32\drivers\amdhub30.sys [87168 2011-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
S3 amdxhc; C:\WINDOWS\system32\drivers\amdxhc.sys [188544 2011-03-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
S3 amd_sata; C:\WINDOWS\system32\drivers\amd_sata.sys [79488 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 amd_xata; C:\WINDOWS\system32\drivers\amd_xata.sys [40064 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2019-01-04] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 CySmb; C:\WINDOWS\System32\drivers\cysmb.sys [10752 2016-03-23] (Cypress Semiconductor, Inc.) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Hewlett-Packard Company -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [49056 2012-10-19] (Hewlett-Packard Company -> Microsoft Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\expressvpnsplittunnel.sys [28160 2019-03-21] (ExprsVPN LLC -> )
R0 fixustor; C:\WINDOWS\System32\DRIVERS\fixustor.sys [52408 2014-07-11] (BROADWAY SEMICONDUCTOR INC -> Genesys Logic)
S0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [359584 2018-12-12] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2019-06-09] (Glarysoft LTD -> Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-07-15] (Martin Malik - REALiX -> REALiX(tm))
S3 iaStorS; C:\WINDOWS\system32\drivers\iaStorS.sys [630552 2011-06-22] (Intel Corporation -> Intel Corporation)
R3 KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [243800 2018-09-08] (QFX Software Corporation -> QFX Software Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-06-11] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-06-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73912 2019-06-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-06-11] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [117344 2019-06-11] (Malwarebytes Corporation -> Malwarebytes)
S3 megasas2; C:\WINDOWS\system32\drivers\megasas2.sys [51280 2010-11-02] (LSI Corporation -> LSI Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [78848 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [180224 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_be596c6172bb5f17\nvlddmkm.sys [17544792 2019-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [82816 2017-04-07] (VSO Software) [Fichier non signé]
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2011-11-22] (PAIPTAC Driver -> )
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141536 2019-06-09] (Realtek Semiconductor Corp. -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [45024 2018-11-06] (ExprsVPN LLC -> The OpenVPN Project)
S3 tihub3; C:\WINDOWS\system32\drivers\tihub3.sys [131656 2011-04-21] (MCCI Corporation -> Texas Instruments Incorporated)
S3 tixhci; C:\WINDOWS\system32\drivers\tixhci.sys [399944 2011-04-21] (MCCI Corporation -> Texas Instruments Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [337632 2019-06-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-06] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]
U3 idsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-06-11 17:32 - 2019-06-11 17:33 - 000052682 _____ C:\Users\chewnakin\Desktop\FRST.txt
2019-06-11 17:31 - 2019-06-11 17:31 - 000000000 ____D C:\Users\chewnakin\Desktop\Nouveau dossier
2019-06-11 17:02 - 2019-06-11 17:02 - 000001532 _____ C:\Users\chewnakin\Desktop\mbam.txt
2019-06-11 16:53 - 2019-06-11 16:53 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-06-11 16:53 - 2019-06-11 16:53 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-06-11 16:53 - 2019-06-11 16:53 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-06-11 16:53 - 2019-06-11 16:53 - 000117344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-06-11 16:53 - 2019-06-11 16:53 - 000073912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-06-11 16:53 - 2019-06-11 16:53 - 000001922 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-06-11 16:53 - 2019-06-11 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-06-11 16:53 - 2019-06-11 16:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-06-11 16:53 - 2019-06-11 16:53 - 000000000 ____D C:\Program Files\Malwarebytes
2019-06-11 16:53 - 2019-02-01 12:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-06-11 16:53 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-06-11 13:18 - 2019-06-11 13:35 - 000000000 ____D C:\Users\chewnakin\Desktop\MUTUELLES
2019-06-11 08:39 - 2019-06-11 08:39 - 000009087 _____ C:\Users\chewnakin\Desktop\ZHPCleaner (R).txt
2019-06-11 08:34 - 2019-06-11 08:34 - 000009431 _____ C:\Users\chewnakin\Desktop\ZHPCleaner (S).txt
2019-06-11 08:25 - 2019-06-11 08:39 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\ZHP
2019-06-11 08:25 - 2019-06-11 08:25 - 000000924 _____ C:\Users\chewnakin\Desktop\ZHPCleaner.lnk
2019-06-11 08:25 - 2019-06-11 08:25 - 000000000 ____D C:\Users\chewnakin\AppData\Local\ZHP
2019-06-11 08:24 - 2019-06-11 08:24 - 003148672 _____ (Nicolas Coolman) C:\Users\chewnakin\Desktop\ZHPCleaner.exe
2019-06-11 08:19 - 2019-06-11 08:19 - 000003684 _____ C:\Users\chewnakin\Desktop\AdwCleaner[C15].txt
2019-06-10 20:33 - 2019-06-11 17:32 - 000000000 ____D C:\FRST
2019-06-10 20:29 - 2019-06-10 20:29 - 002418688 _____ (Farbar) C:\Users\chewnakin\Desktop\FRST64.exe
2019-06-10 17:32 - 2019-06-10 17:32 - 000000918 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-06-10 17:28 - 2019-06-10 17:28 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-06-10 17:28 - 2019-06-10 17:28 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-06-10 15:18 - 2019-06-10 15:18 - 000002340 _____ C:\Users\chewnakin\Desktop\Molotov.lnk
2019-06-10 15:18 - 2019-06-10 15:18 - 000000000 ____D C:\Users\chewnakin\AppData\Local\Molotov
2019-06-10 15:13 - 2019-06-11 08:12 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Molotov
2019-06-10 15:13 - 2019-06-10 15:18 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2019-06-10 15:13 - 2019-06-10 15:18 - 000000000 ____D C:\Users\chewnakin\AppData\Local\SquirrelTemp
2019-06-10 07:41 - 2019-06-10 07:42 - 024699883 _____ C:\Users\chewnakin\Downloads\Notice TV SONY KDL 46W4500.pdf
2019-06-10 07:00 - 2019-06-10 17:57 - 000003091 _____ C:\Users\chewnakin\Desktop\OOSU10.ini
2019-06-09 23:42 - 2019-06-09 23:53 - 000003091 _____ C:\Users\chewnakin\Downloads\OOSU10.ini
2019-06-09 23:41 - 2019-06-09 23:41 - 001309080 _____ (BraveSoftware Inc.) C:\Users\chewnakin\Downloads\BraveBrowserSetup-CLU884.exe
2019-06-09 23:41 - 2019-06-09 23:41 - 001054208 _____ (O&O Software GmbH) C:\Users\chewnakin\Desktop\o-o-shutup10_1-6-1402_en_432419.exe
2019-06-09 19:57 - 2019-06-11 08:42 - 125030400 _____ C:\WINDOWS\system32\config\SOFTWARE
2019-06-09 19:57 - 2019-06-11 08:42 - 016515072 _____ C:\WINDOWS\system32\config\SYSTEM
2019-06-09 19:57 - 2019-06-11 08:42 - 000921600 _____ C:\WINDOWS\system32\config\DEFAULT
2019-06-09 19:57 - 2019-06-09 19:57 - 000061440 _____ C:\WINDOWS\system32\config\SAM.gu
2019-06-09 19:57 - 2019-06-09 19:57 - 000040960 _____ C:\WINDOWS\system32\config\SECURITY.gu
2019-06-09 19:56 - 2019-05-27 04:10 - 000035824 _____ (Glarysoft Ltd) C:\WINDOWS\system32\RegBootDefrag.exe
2019-06-09 19:48 - 2019-06-09 19:48 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
2019-06-09 18:07 - 2019-06-09 18:07 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2019-06-09 18:07 - 2019-06-09 18:07 - 000228608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2019-06-09 18:07 - 2019-06-09 18:07 - 000046848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2019-06-09 18:07 - 2019-06-09 18:07 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-06-09 18:06 - 2019-06-09 18:06 - 001141536 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2019-06-09 18:04 - 2019-06-09 18:05 - 000000000 ____D C:\Users\chewnakin\Desktop\IObit Driver Booster PRO v6.4.0.398 Portable
2019-06-09 18:01 - 2019-06-10 17:30 - 000001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2019-06-09 18:01 - 2019-06-09 18:01 - 000028936 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2019-06-09 18:01 - 2019-06-09 18:01 - 000001161 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2019-06-09 18:01 - 2019-06-09 18:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2019-06-09 18:00 - 2019-06-10 19:59 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2019-06-09 16:14 - 2019-06-09 16:14 - 000000000 ____D C:\Users\chewnakin\Desktop\1aaLAST LOGICIELS
2019-06-09 14:28 - 2019-06-09 14:28 - 000005568 _____ C:\Users\chewnakin\Documents\Wise Video Converter Pro 2.3.1.65.torrent
2019-06-09 14:26 - 2019-06-09 14:26 - 000062344 _____ C:\Users\chewnakin\Documents\Glary.Utilities.PRO.v5.120.0.145+V Portable.Multilang.Incl-Keygen---.torrent
2019-06-09 14:24 - 2019-06-09 14:24 - 000020909 _____ C:\Users\chewnakin\Documents\IObit Driver Booster PRO v6.4.0.398 Portable.torrent
2019-06-09 13:53 - 2019-06-09 13:53 - 000000000 ____D C:\Users\chewnakin\AppData\Local\mbamtray
2019-06-09 13:53 - 2019-06-09 13:53 - 000000000 ____D C:\Users\chewnakin\AppData\Local\mbam
2019-06-09 13:03 - 2019-06-09 13:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\etc\BACKUP
2019-06-09 12:57 - 2019-06-09 12:58 - 000011906 _____ C:\Users\chewnakin\Documents\Malwarebytes Premium Pré activé v3.5.1.2522 Multilingue [Windows].torrent
2019-06-09 11:23 - 2019-06-09 11:23 - 000001818 _____ C:\Users\Public\Desktop\iTunes.lnk
2019-06-09 11:23 - 2019-06-09 11:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-06-09 11:23 - 2019-06-09 11:23 - 000000000 ____D C:\Program Files\iPod
2019-06-09 11:22 - 2019-06-09 11:23 - 000000000 ____D C:\Program Files\iTunes
2019-06-09 10:10 - 2019-06-10 15:35 - 000000000 ____D C:\Users\chewnakin\Desktop\MAJ LG OLED
2019-06-09 07:37 - 2019-06-09 13:08 - 000000368 _____ C:\WINDOWS\Tasks\HPCeeScheduleForchewnakin.job
2019-06-09 07:37 - 2019-06-09 07:37 - 000003276 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForchewnakin
2019-06-08 23:32 - 2019-06-11 08:39 - 000000000 ____D C:\ProgramData\IObit
2019-06-08 23:32 - 2019-06-11 08:14 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\IObit
2019-06-08 23:32 - 2019-06-09 14:21 - 000000000 ____D C:\Users\chewnakin\AppData\LocalLow\IObit
2019-06-08 15:04 - 2019-06-09 17:28 - 000000000 ____D C:\Users\chewnakin\Desktop\ASC12
2019-06-08 14:26 - 2011-12-19 22:51 - 000456552 _____ (Apple Inc.) C:\WINDOWS\system32\sqlite3.dll
2019-06-08 12:53 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2019-06-08 12:53 - 2016-03-25 14:33 - 000128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2019-06-08 12:53 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2019-06-08 11:25 - 2019-06-08 11:25 - 124473344 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2019-06-08 11:25 - 2019-06-08 11:25 - 000921600 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2019-06-08 11:25 - 2019-06-08 11:25 - 000061440 _____ C:\WINDOWS\system32\config\SAM.iobit
2019-06-08 11:25 - 2019-06-08 11:25 - 000040960 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2019-06-08 11:00 - 2019-06-08 11:29 - 000000000 ____D C:\Users\chewnakin\AppData\Local\Opera Software
2019-06-08 10:59 - 2019-06-08 11:29 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Opera Software
2019-06-08 10:58 - 2019-06-08 10:58 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2019-06-08 10:57 - 2019-06-08 10:57 - 000003590 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2019-06-08 10:55 - 2019-06-08 10:55 - 000000000 ____D C:\Users\chewnakin\Desktop\Logiciels Osny
2019-06-08 08:38 - 2019-06-08 08:38 - 000000000 ____D C:\Users\chewnakin\Desktop\OLED FNAC
2019-06-07 18:18 - 2019-06-07 18:21 - 000000000 ____D C:\Users\chewnakin\Desktop\IMPLANT
2019-06-07 13:12 - 2019-06-07 13:13 - 000182503 _____ C:\Users\chewnakin\Desktop\Attestation Dom EDF M. LAIGNEAU.pdf
2019-06-06 07:53 - 2019-06-06 07:53 - 000016278 _____ C:\Users\chewnakin\Desktop\Tableau detaille des garanties SWISSLIFE.pdf
2019-06-04 09:57 - 2019-06-04 10:20 - 000000000 ____D C:\Users\chewnakin\Desktop\MIF
2019-06-01 18:04 - 2019-06-01 18:04 - 000085946 _____ C:\Users\chewnakin\Desktop\CR sang M. Laigneau.pdf
2019-06-01 18:01 - 2019-06-01 18:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2019-05-18 10:35 - 2019-06-07 18:14 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Kodi
2019-05-18 10:33 - 2019-05-18 10:33 - 083883525 _____ (XBMC-Foundation) C:\Users\chewnakin\Downloads\kodi-17.3-Krypton.exe
2019-05-17 11:33 - 2019-05-18 10:20 - 000000000 ____D C:\Users\chewnakin\Desktop\SG relevés 13.12.18 à 11.05.19
2019-05-14 19:26 - 2019-05-04 01:53 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-14 19:26 - 2019-05-04 01:53 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-12 12:01 - 2019-05-12 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2019-05-12 12:00 - 2019-05-12 12:01 - 000000000 ____D C:\Program Files (x86)\Kodi
2019-05-12 11:53 - 2019-05-12 11:53 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Safer-Networking Ltd

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-06-11 16:53 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-06-11 16:52 - 2019-01-13 20:59 - 000000000 ____D C:\Users\chewnakin\Desktop\NEW
2019-06-11 16:45 - 2018-05-26 15:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-11 15:12 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-11 13:50 - 2018-05-26 15:36 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{39A8667B-EDB7-4500-BB15-399427050026}
2019-06-11 10:40 - 2017-03-11 15:57 - 000000000 ____D C:\ProgramData\Foxit Software
2019-06-11 08:43 - 2018-05-26 15:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-11 08:43 - 2017-04-22 15:05 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-11 08:43 - 2016-11-18 08:38 - 000000000 ____D C:\Users\chewnakin\AppData\LocalLow\Mozilla
2019-06-11 08:42 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-10 22:35 - 2019-03-17 16:35 - 000000000 ____D C:\Users\chewnakin\AppData\Local\FSDART
2019-06-10 22:35 - 2015-11-22 13:32 - 000000000 ____D C:\Program Files\WinRAR
2019-06-10 20:10 - 2019-03-17 16:35 - 000000000 ____D C:\ProgramData\F-Secure
2019-06-10 17:54 - 2015-11-22 13:32 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-06-10 17:54 - 2015-11-22 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-06-10 17:50 - 2012-01-09 03:18 - 000000000 ____D C:\Program Files (x86)\7-Zip
2019-06-10 17:47 - 2019-01-05 18:01 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\uTorrent
2019-06-10 17:29 - 2017-12-02 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron
2019-06-10 17:29 - 2017-12-02 11:07 - 000000000 ____D C:\Program Files (x86)\SRWare Iron
2019-06-10 17:28 - 2016-10-02 17:22 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-06-10 17:25 - 2019-03-29 12:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-06-10 17:25 - 2019-03-29 12:29 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2019-06-09 19:57 - 2019-05-01 23:03 - 125042688 _____ C:\WINDOWS\system32\config\SOFTWARE.gu.bak
2019-06-09 19:57 - 2019-05-01 23:03 - 016515072 _____ C:\WINDOWS\system32\config\SYSTEM.gu.bak
2019-06-09 19:57 - 2018-05-26 15:16 - 000000000 ____D C:\Users\chewnakin
2019-06-09 19:56 - 2019-05-01 23:03 - 001048576 _____ C:\WINDOWS\system32\config\DEFAULT.gu.bak
2019-06-09 19:50 - 2019-01-04 11:14 - 000000000 ____D C:\ProgramData\GlarySoft
2019-06-09 18:07 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-06-09 18:01 - 2019-01-04 11:02 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\GlarySoft
2019-06-09 17:28 - 2018-03-26 14:54 - 000000000 ____D C:\Users\chewnakin\Desktop\LAST
2019-06-08 14:33 - 2019-02-17 03:21 - 000000000 ____D C:\ProgramData\ProductData
2019-06-08 13:43 - 2012-01-07 14:19 - 000000000 ____D C:\Users\chewnakin\AppData\Local\CrashDumps
2019-06-08 11:36 - 2018-05-20 16:21 - 000000000 ___DC C:\WINDOWS\Panther
2019-06-08 11:16 - 2015-11-15 23:42 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Notepad++
2019-06-08 10:55 - 2015-11-15 23:46 - 000000000 ____D C:\ProgramData\OO Software
2019-06-07 07:29 - 2015-11-15 20:09 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\Dashlane
2019-06-07 00:30 - 2016-07-15 11:02 - 000000000 ____D C:\Users\chewnakin\AppData\Roaming\vlc
2019-06-06 07:14 - 2018-04-28 15:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-06-05 23:22 - 2017-06-26 13:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-06-03 13:36 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-02 09:12 - 2015-11-15 18:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-06-01 18:28 - 2015-11-15 23:56 - 000000000 ____D C:\Users\chewnakin\AppData\Local\ElevatedDiagnostics
2019-06-01 17:59 - 2019-04-20 17:10 - 000000000 ____D C:\Users\chewnakin\AppData\Local\BitTorrentHelper
2019-05-19 10:09 - 2018-11-04 19:42 - 000004756 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-19 10:09 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-05-19 10:09 - 2015-11-15 19:14 - 000000000 ____D C:\Users\chewnakin\AppData\Local\Adobe
2019-05-19 10:08 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-05-17 12:03 - 2019-01-04 19:45 - 000000000 ____D C:\Users\chewnakin\Desktop\Fortuneo
2019-05-17 11:54 - 2019-04-23 18:52 - 000000000 ____D C:\Users\chewnakin\Desktop\MyMoneyBank LIVRET D'EPARGNE
2019-05-16 23:22 - 2018-02-01 19:03 - 000000000 ____D C:\Program Files\rempl
2019-05-15 02:14 - 2018-05-26 15:36 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-15 02:14 - 2018-05-26 15:36 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-14 19:26 - 2015-11-15 16:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-14 19:22 - 2012-01-07 16:03 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-13 19:26 - 2019-04-20 14:42 - 000000000 ____D C:\Users\chewnakin\Desktop\OUVERTURE BOURSORAMA VIE
2019-05-13 18:50 - 2016-03-21 19:50 - 000000000 __RHD C:\MSOCache

==================== Fichiers à la racine de certains dossiers ================

2016-05-22 12:14 - 2016-05-23 13:41 - 000195296 _____ () C:\Users\chewnakin\comcat5.dll
2011-11-22 17:43 - 2011-06-10 01:44 - 000002792 _____ () C:\Program Files\HP SimplePass 2011
2016-09-11 08:29 - 2017-04-07 22:52 - 000007859 _____ () C:\Users\chewnakin\AppData\Roaming\pcouffin.cat
2016-09-11 08:29 - 2017-04-07 22:52 - 000001167 _____ () C:\Users\chewnakin\AppData\Roaming\pcouffin.inf
2016-09-11 08:29 - 2017-04-07 22:52 - 000082816 _____ (VSO Software) C:\Users\chewnakin\AppData\Roaming\pcouffin.sys
2018-11-05 01:08 - 2019-03-17 23:38 - 000147062 _____ () C:\Users\chewnakin\AppData\Local\ars.cache
2018-11-05 01:09 - 2019-03-17 23:39 - 000541150 _____ () C:\Users\chewnakin\AppData\Local\census.cache
2016-09-23 10:24 - 2016-10-01 16:55 - 000007168 _____ () C:\Users\chewnakin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-05 00:23 - 2018-11-05 00:23 - 000000036 _____ () C:\Users\chewnakin\AppData\Local\housecall.guid.cache
2019-03-15 16:00 - 2019-03-15 16:00 - 000000431 _____ () C:\Users\chewnakin\AppData\Local\read.bat
2016-12-27 22:41 - 2016-12-27 22:41 - 000000017 _____ () C:\Users\chewnakin\AppData\Local\resmon.resmoncfg
2019-04-11 19:00 - 2019-04-11 19:00 - 002529622 _____ () C:\Users\chewnakin\AppData\Local\[j0003]-[p24].bmp

==================== FLock ================

2019-06-10 17:26 C:\System Volume Information

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ============================