Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05-2022
Exécuté par Frédéric (administrateur) sur CARNON (TOSHIBA Satellite L350) (12-05-2022 10:35:03)
Exécuté depuis C:\Users\Frédéric\Downloads
Profils chargés: Frédéric
Plate-forme: Microsoft Windows 10 Professionnel Version 1909 18363.1198 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\FormatFactory\net_updater64.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\FormatFactory\luminati\brightdata.exe
(C:\Program Files (x86)\FormatFactory\net_updater64.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\FormatFactory\luminati\idle_report.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(CompatTelRunner.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SearchIndexer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(services.exe ->) (Bright Data Ltd -> Bright Data Ltd.) C:\Program Files (x86)\FormatFactory\net_updater64.exe
(services.exe ->) (Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\dynabookSystemService.exe
(services.exe ->) (Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\RMService.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.722.3302.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1573160 2008-08-14] (Synaptics Incorporated -> Synaptics, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [46568 2022-04-25] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [10994528 2022-04-20] (Support.com, Inc. -> SUPERAntiSpyware)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5348480 2022-05-06] (IObit CO., LTD -> IObit)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36705520 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe -os-restarted -osint -url hxxps://www.iobit.com/appgoto.php?name=asc&ver=15.4.0.246&lan=fr&type=free&st=asc_promote27&ref=asc15&aff=&idata=eyJhc2MiOj (l'élément de données a 103 caractères en plus). [625680 2022-05-05] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-889809927-4042332466-1107588656-1000\...\MountPoints2: {ae88b718-806a-11e2-83f5-001e339cc936} - "E:\iStudio.exe"
HKLM\...\Windows x64\Print Processors\Canon MP190 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9I.DLL [27648 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2009-07-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109080 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP190 series: C:\Windows\system32\CNMLM9I.DLL [279040 2008-02-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2009-07-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP AC11 Status Monitor: C:\Windows\system32\hpinkstsAC11LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [34816 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Frédéric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 2510 series.lnk [2020-10-23]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 2510 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2A83JJ7N05QX;CONNECTION=USB;MONITOR=1;
BootExecute: autocheck autochk * BootDefrag.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {023E05E9-8EE0-4BB6-BEBA-FDC59EB4E957} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {03A0B1F1-24E4-4068-9B02-F514F74F9753} - System32\Tasks\Games\UpdateCheck_S-1-5-21-889809927-4042332466-1107588656-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {073CDD30-9035-4F73-BF77-69F309CC4253} - System32\Tasks\{9FB63BAE-394B-4223-9516-B4DD3FC5018B} => C:\Windows\system32\pcalua.exe -a "E:\Defamation de Yoav Shamir.exe" -d E:\
Task: {0972F215-5668-4CEA-BC3E-2E25738C0B79} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {12739C31-7239-411F-9E0F-9A5B52CFDDEF} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [5466752 2022-04-27] (IObit CO., LTD -> IObit)
Task: {12FA9A15-E3C1-40B3-895E-5601545C88DE} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {165F23DD-9460-4DE5-BCF0-7B7DF3E3BBB3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Pas de fichier)
Task: {1BDD33C8-FC7D-4D90-A9BD-83C593FC728F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {1C37F413-076F-4EDA-9F45-46A5CBD62693} - System32\Tasks\{FB07887A-DDFC-46E5-A878-57E68AF904D7} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {242360FC-B189-4E5E-839C-3CDB0B5E9EDE} - System32\Tasks\{2ED2926A-3F58-4BE9-A9B0-92E2ADD43F9C} => C:\Windows\system32\pcalua.exe -a D:\SETUP.EXE -d D:\
Task: {2652D6E2-19CE-4575-BBF1-37731E0260D6} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {31565BE5-4B3F-410F-A498-9475441F831C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3383CFD2-3EE9-4E02-B73C-AAD9DCC9EE15} - System32\Tasks\{BE9B5A0A-1F17-4C35-A227-2069782D001D} => D:\start.exe (Pas de fichier)
Task: {362017FF-707B-4891-85DB-2AC70C5D1FBC} - System32\Tasks\{0F2207BA-0622-4CCE-8DFD-BAE1497561E2} => C:\Windows\system32\pcalua.exe -a C:\Users\Frédéric\Downloads\msicuu-7.2.exe -d C:\Users\Frédéric\Downloads
Task: {38BBCE43-1B47-4ECD-A73B-6F5A037B7136} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {3C45A3FB-8C45-4061-8BEE-C9F66247F13C} - System32\Tasks\{33D9C9F1-CE49-4346-A686-12262207EE6A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller" -c -hunter
Task: {3D23C723-ADED-483A-B52C-CCB6C03E7A45} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4A35C30D-709D-49B1-B810-213001E14F5F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51F5983D-A817-4F52-BDEF-811141D79720} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5CE25770-A8D0-48E4-8279-08A995B6609E} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {5F007F84-7F6E-48E9-AE18-3D11BB551F6F} - System32\Tasks\{99C8D3C1-8FB9-4AE8-BF12-A66ABF943617} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B5CECFB-5D6A-4BDD-AF28-20CB440034F3} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe -LogonOrUnlock (Pas de fichier)
Task: {6F3C2044-F3E3-4452-A538-7A266D964A8D} - System32\Tasks\{905069EB-6071-4BE9-80D4-0B555D72F6F0} => C:\Windows\system32\pcalua.exe -a C:\Users\Frédéric\Desktop\glary-utilities_glary_utilities_2.34.0.1190_portable_francais_73266.exe -d C:\Users\Frédéric\Desktop
Task: {8259ABC3-75EF-40F8-AE6C-77B3DFDE4F1B} - System32\Tasks\iTopVPN_Scheduler_Frédéric => C:\Program Files (x86)\iTop VPN\iTopVPN.exe /autostart (Pas de fichier)
Task: {826A6714-75BF-4C41-BF12-155AB8C32089} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task (Pas de fichier)
Task: {831EB9EB-164A-44F8-A60A-A973A7212BA4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-04-07] (Piriform Software Ltd -> Piriform)
Task: {9A30C684-DDFE-4232-B504-074F8FC647DF} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [5466752 2022-04-27] (IObit CO., LTD -> IObit)
Task: {9E0F1FDD-6ED9-49BD-9ADC-30AB2A3A3525} - System32\Tasks\{781E7159-22B0-40D7-A2EC-834B36DDC741} => D:\start.exe (Pas de fichier)
Task: {A2A0446C-5E76-4EF1-91CF-8F8A5B7A7959} - System32\Tasks\CCleanerSkipUAC - Frédéric => C:\Program Files\CCleaner\CCleaner.exe [30836464 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A2B4CECD-6F41-47DF-852D-0FAE1D53F2C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2DDEA82-CD6E-4738-861C-DC9AF8D989A2} - System32\Tasks\ASC12_SkipUac_Frédéric => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10951808 2022-05-06] (IObit CO., LTD -> IObit)
Task: {A48C8FAD-CDB7-42B2-B4F3-D6945119723C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-12] (Google Inc -> Google Inc.)
Task: {A8A28B53-8765-4E93-BFD0-0BF5669FDFC3} - System32\Tasks\{BB534130-C143-4722-8401-DEB2715DC5C4} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8BE1F51-6C0A-45CD-AB5F-8613E746F315} - \ASC10_SkipUac_Frédéric -> Pas de fichier <==== ATTENTION
Task: {A9700092-76E2-40E7-9D66-D5D9089FBC0C} - System32\Tasks\{7CA94A86-F892-471E-884F-1E35E198BFD1} => C:\Windows\system32\pcalua.exe -a C:\Users\Frédéric\Downloads\UDPixel22_installer.exe -d C:\Users\Frédéric\Downloads
Task: {AB405266-BDD9-4335-8CF5-892D4B16FCA2} - System32\Tasks\ASC_SkipUac_Frédéric => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10951808 2022-05-06] (IObit CO., LTD -> IObit)
Task: {AC5DFAFD-9116-4D02-B4E9-42A39B1F29E3} - System32\Tasks\{D2F0AF3E-C27D-4649-A13D-5DBFE2F3262B} => D:\start.exe (Pas de fichier)
Task: {ADAC1648-36CC-47FE-AF64-3D76B1E8AA37} - System32\Tasks\{C34C683C-1F7C-4420-8CE8-A467F41F5A71} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF6F4D2F-B4BD-48E1-B88A-45FF82A4609C} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe -Daily (Pas de fichier)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B98DB8CB-369D-4BD5-B8AA-891B0CB76B20} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [21039208 2022-04-12] (Goversoft LLC -> Goversoft LLC)
Task: {C0C1DCC2-1464-439D-B587-ADBBF253C83B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C30A7546-D7A5-4F53-91A2-8B78C38B8C1B} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {C618D856-01A3-4CE1-9137-DEAB50CCAC7C} - System32\Tasks\{B1CDE4DD-27EA-4665-83DE-50F504A2F7DB} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB6B1E53-0E39-486A-8908-82135910909B} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Pas de fichier)
Task: {CFB137A5-D48C-4570-943C-CF9832686D9F} - System32\Tasks\{3488E077-88B2-46F0-B6EE-FFA3B69B388C} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3F20341-A33E-4317-9CC4-581E936B5037} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-12] (Google Inc -> Google Inc.)
Task: {D4834348-719A-47C8-A378-64CF3E40892F} - System32\Tasks\{56A1CF12-1B64-4063-8533-C061129D2056} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA8EF064-E27C-4CF7-9CCF-BA5BDB1A6073} - System32\Tasks\iTopVPN_SkipUAC_Frédéric => C:\Program Files (x86)\iTop VPN\iTopVPN.exe /SkipUac (Pas de fichier)
Task: {E34BD2D1-4F6A-4FDD-B10B-605FCF5B8E3B} - System32\Tasks\{AD5A2D84-A68C-479D-9311-BBE9B2FC4813} => C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE [12973792 2017-07-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5D83D37-861E-4DDB-8D1E-DE2E3F65FD79} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {E61C1649-86C0-4FA9-B294-5F3A708B679A} - System32\Tasks\UCheck => C:\Program Files\UCheck\UCheck64.exe [30482984 2022-05-04] (ADLICE -> )
Task: {E6AFE700-9BEC-4F20-A6A2-9A12F5BD9911} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8B1853E-0202-43E8-9224-D47453FF7B95} - System32\Tasks\{8E6C8D4F-DC5B-42E5-878E-EEE17F13E87B} => C:\Windows\system32\pcalua.exe -a C:\Users\Frédéric\Downloads\msicuu-7.2(1).exe -d C:\Users\Frédéric\Downloads
Task: {EF7FB547-15BA-4169-A29E-8CAC25A5A2DD} - System32\Tasks\{825D1381-D798-4DCA-BEEC-7C92B5F20C31} => C:\Windows\system32\pcalua.exe -a C:\Users\Frédéric\Downloads\JavaUninstallTool.exe -d C:\Users\Frédéric\Downloads
Task: {F9AD9379-6E80-4FC6-866E-EB808EFC0A52} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {FEE38700-BB15-4980-B144-9827F3D6C7A5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Pas de fichier)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{850C84D4-C514-4AF4-88AF-7571456953A2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{9480DEEC-A3FB-4371-8330-944813A20001}: [NameServer] 212.27.40.240,212.27.40.241
Tcpip\..\Interfaces\{9480DEEC-A3FB-4371-8330-944813A20001}: [DhcpNameServer] 192.168.0.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-11]
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-05-06]
Edge Extension: (DuckDuckGo) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2022-05-06]
Edge Extension: (Urban Anti-Malware - Safe Browsing) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gemndobjhbcgnpbennkdglahpppmieea [2022-03-14]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-03-14]
Edge Extension: (Video DownloadHelper) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2021-09-01]
Edge Extension: (Translator) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kahdfckelhhchlaolmacnfdeghbifgpa [2020-11-01]
Edge Extension: (Urban Free VPN proxy Unblocker - Best VPN) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nimlmejbmnecnaghgmbahmbaddhjbecg [2022-03-14]
Edge Extension: (VK Downloader) - C:\Users\Frédéric\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ppfnmhmnnlbnihgkmdidfmjhfconblcl [2021-11-16]

FireFox:
========
FF DefaultProfile: 1x7oj30q.default
FF ProfilePath: C:\Users\Frédéric\AppData\Roaming\Profiles\1x7oj30q.default [non trouvé(e)] <==== ATTENTION
FF DefaultProfile: h2to15z7.default
FF DefaultProfile: z12eo1l1.default-1475907995859-1511166895807
FF ProfilePath: C:\Users\Frédéric\AppData\Roaming\Waterfox\Profiles\h2to15z7.default [2020-04-09]
FF ProfilePath: C:\Users\Frédéric\AppData\Roaming\Waterfox\Profiles\ppxveyz5.68-edition-default [2022-05-12]
FF ProfilePath: C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807 [2022-05-12]
FF user.js: detected! => C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\user.js [2022-05-11]
FF Homepage: Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807 -> chrome://branding/locale/browserconfig.properties
FF Session Restore: Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807 -> est activé.
FF HomepageOverride: Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807 -> Disabled: qwantcomforfirefox@jetpack
FF Extension: (XDM Browser Monitor) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\browser-mon@xdman.sourceforge.net.xpi [2021-01-17]
FF Extension: (Enhancer for YouTube™) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-04-03]
FF Extension: (OneTab) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\extension@one-tab.com.xpi [2022-05-11]
FF Extension: (Dictionnaire français) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2021-02-09]
FF Extension: (Pushbullet) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\jid1-BYcQOfYfmBMd9A@jetpack.xpi [2020-08-25]
FF Extension: (Avast Passwords) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-11] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Français Language Pack) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\langpack-fr@firefox.mozilla.org.xpi [2022-05-06]
FF Extension: (S3.Traducteur) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\s3firefox@translator1.xpi [2021-07-15] [UpdateUrl:hxxps://s3blog.org/files/s3gt/update.json]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\sp@avast.com.xpi [2022-02-03]
FF Extension: (Avast Online Security & Privacy) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\wrc@avast.com.xpi [2022-04-28]
FF Extension: (Startpage.com - recherche privé) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2022-01-21]
FF Extension: (Désactivation de Google Analytics) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2020-10-13] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF Extension: (Logitech SetPoint) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2018-11-29]
FF Extension: (Facebook video download) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{8e51e928-adac-409c-afc6-6a5f112b9e74}.xpi [2018-10-03]
FF Extension: (Open in Tor Browser) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{9d3b260b-886d-4263-b9d6-81d756ee4929}.xpi [2019-10-20]
FF Extension: (Video DownloadHelper) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Frédéric\AppData\Roaming\Mozilla\Firefox\Profiles\z12eo1l1.default-1475907995859-1511166895807\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-05-04]
FF HKLM-x32\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync
FF Extension: (PC Sync 2 Synchronisation Extension) - C:\Program Files (x86)\Nokia\Nokia PC Suite 7\bkmrksync [2012-09-25] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-11-29] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (Pas de nom) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2014-02-23] [non signé]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2018-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2018-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> )
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-889809927-4042332466-1107588656-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gbjeiekahklbgbfccohipinhgaadijad]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <pas de Path/update_url>

Brave:
=======
BRA Profile: C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-05-08]
BRA HomePage: Default -> yandex.ru
BRA Extension: (Стартовая — Яндекс) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gbjeiekahklbgbfccohipinhgaadijad [2019-04-10]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-04-10]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-05-11]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-04-10]
BRA Extension: (PDF Viewer) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2019-04-10]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Frédéric\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-04-10]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdvancedSystemCareService15; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1300096 2022-04-20] (IObit CO., LTD -> IObit)
S2 DSDFunctionKeyCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\DSDFunctionKeyCtlService.exe [615760 2020-06-15] (Dynabook Inc. -> Dynabook Inc.)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [878464 2022-02-27] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [71144 2022-04-25] (Glarysoft LTD -> Glarysoft Ltd)
R2 luminati_net_updater_win_formatfactory_pcfreetime_com; C:\Program Files (x86)\FormatFactory\net_updater64.exe [7894840 2022-04-27] (Bright Data Ltd -> Bright Data Ltd.)
S3 MBAMIService; C:\ProgramData\MB3Install\MBAMIService.exe [230096 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14496296 2022-05-02] (ADLICE -> )
S2 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6153048 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TSDSettingService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\dynabookSystemService.exe [44976440 2020-06-15] (Dynabook Inc. -> Dynabook Inc.)
S2 TSDTabletControlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\TOSTABSYSSVC.exe [254272 2020-06-15] (Dynabook Inc. -> Dynabook Inc.)
R2 TSDWirelessLEDCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\RMService.exe [446232 2020-06-15] (Dynabook Inc. -> Dynabook Inc.)
S3 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [126568 2015-01-25] (Michael Maltsev -> RaMMicHaeL) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [47904 2022-03-23] (IObit CO., LTD -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46552 2021-07-07] (IObit CO., LTD -> IObit)
R0 BootDefragDriver; C:\WINDOWS\System32\drivers\BootDefragDriver.sys [27616 2021-01-26] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R0 BootDefragDriver; C:\Windows\SysWOW64\drivers\BootDefragDriver.sys [16640 2013-07-06] (Glarysoft Ltd -> <Glarysoft Ltd>)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2022-05-12] (CPUID S.A.R.L.U. -> CPUID)
R3 FwLnk; C:\WINDOWS\System32\drivers\FwLnk.sys [17920 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2021-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-12-04] (Martin Malik - REALiX -> REALiX(tm))
R1 IMFCameraProtect; C:\Windows\system32\drivers\IMFCameraProtect.sys [34008 2016-12-07] (IObit Information Technology -> IObit.com)
R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [33256 2021-08-11] (IObit CO., LTD -> IObit)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2017-05-12] (AnchorFree Inc -> Anchorfree Inc.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [47816 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
R1 TosSrvCtlDrv; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\TosSrvCtlDrv.sys [25824 2020-06-15] (Dynabook Inc. -> Dynabook Inc.)
S0 TVALZ; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
R0 TVALZ_O; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
S3 ma-config_amd64; \??\C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [X]
S3 MpKsld029c2ac; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5904F20B-B0BD-420E-BC63-F2C6D3727DE4}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-12 10:35 - 2022-05-12 10:39 - 000038541 _____ C:\Users\Frédéric\Downloads\FRST.txt
2022-05-12 10:27 - 2022-05-12 10:27 - 002366976 _____ (Farbar) C:\Users\Frédéric\Downloads\farbar-recovery-scan-tool-64-bits_08-05-2022_fr_432987.exe
2022-05-12 10:27 - 2022-05-12 10:27 - 000000000 ____D C:\Users\Frédéric\Downloads\FRST-OlderVersion
2022-05-12 10:25 - 2022-05-12 10:38 - 000000000 ____D C:\FRST
2022-05-11 19:14 - 2022-05-11 19:14 - 007061504 _____ C:\WINDOWS\system32\config\default.iobit
2022-05-11 19:14 - 2022-05-11 19:14 - 000073728 _____ C:\WINDOWS\system32\config\sam.iobit
2022-05-11 19:14 - 2022-05-11 19:14 - 000040960 _____ C:\WINDOWS\system32\config\security.iobit
2022-05-11 19:13 - 2022-05-11 19:13 - 131923968 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2022-05-11 18:58 - 2022-05-12 10:10 - 000002712 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2022-05-11 18:56 - 2022-05-12 10:10 - 000002608 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Frédéric
2022-05-11 18:56 - 2022-05-11 18:56 - 000001308 _____ C:\Users\Public\Desktop\Advanced SystemCare.lnk
2022-05-11 18:55 - 2022-05-11 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2022-05-11 18:55 - 2022-05-11 18:55 - 000000000 ____D C:\Program Files (x86)\IObit
2022-05-11 18:51 - 2022-05-11 18:51 - 046964560 _____ (IObit ) C:\Users\Frédéric\Downloads\advanced-systemcare-setup.exe
2022-05-11 13:31 - 2022-05-11 13:31 - 000000000 ___HD C:\$WINDOWS.~BT
2022-05-11 13:00 - 2022-05-11 13:00 - 000000000 ___HD C:\$WinREAgent
2022-05-11 11:01 - 2022-05-11 11:08 - 000189356 _____ C:\Users\Frédéric\Documents\Jolivade Frais de séjours 2021 pour impots 2021.pdf
2022-05-08 18:16 - 2022-05-08 18:27 - 000000000 ____D C:\Users\Frédéric\Documents\Test COVID
2022-05-08 18:13 - 2022-05-08 18:15 - 000000000 ____D C:\Users\Frédéric\Documents\Impots FP
2022-05-06 12:01 - 2022-05-06 12:01 - 000000905 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2022-05-06 11:59 - 2022-05-06 11:59 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2022-05-06 11:52 - 2022-05-06 11:52 - 000000837 _____ C:\Users\Public\Desktop\UCheck.lnk
2022-05-06 00:13 - 2022-05-06 00:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-05-05 22:08 - 2022-05-06 09:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-05-05 10:09 - 2022-05-05 10:09 - 000375628 _____ C:\Users\Frédéric\Downloads\ob_d78f31_grand-remplacement-que-faire.pdf
2022-05-05 10:08 - 2022-05-05 10:08 - 000001857 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2022-05-05 10:08 - 2022-05-05 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2022-04-30 10:48 - 2022-04-30 10:48 - 000000000 ___SD C:\Users\Frédéric\Documents\Mes sources de données
2022-04-29 21:17 - 2022-04-29 21:17 - 008393549 _____ C:\Users\Frédéric\Documents\2022 Atlas strategique_Interactif.pdf
2022-04-21 10:39 - 2022-04-21 10:39 - 005799708 _____ C:\Users\Frédéric\Downloads\Les fleurs sont des robes.mp4
2022-04-20 12:18 - 2022-04-20 12:28 - 000000000 ____D C:\Users\Frédéric\Downloads\TweakPowerX64
2022-04-20 12:17 - 2022-04-20 12:17 - 009750064 _____ C:\Users\Frédéric\Downloads\TweakPowerX64.zip
2022-04-12 18:11 - 2022-04-12 18:11 - 000000000 ____D C:\Program Files (x86)\PrivaZer
2022-04-12 17:44 - 2022-05-08 20:17 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-12 10:35 - 2011-06-14 17:44 - 000000000 ___RD C:\Users\Frédéric\Downloads
2022-05-12 10:34 - 2016-11-16 09:31 - 000000000 ____D C:\Users\Frédéric\AppData\LocalLow\Mozilla
2022-05-12 10:19 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-12 10:18 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-12 10:13 - 2013-08-17 09:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-05-12 10:10 - 2021-09-16 11:18 - 000002318 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Frédéric
2022-05-12 10:02 - 2022-02-11 12:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-05-12 09:59 - 2011-08-15 12:45 - 000000000 ____D C:\Program Files\CCleaner
2022-05-12 09:56 - 2022-03-30 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop VPN
2022-05-12 09:54 - 2017-11-17 12:14 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-05-12 09:44 - 2022-03-30 19:45 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2022-05-12 09:42 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2022-05-12 09:39 - 2011-06-25 10:38 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-05-12 09:36 - 2017-05-18 16:33 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2022-05-12 09:33 - 2020-01-16 08:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-05-12 09:33 - 2013-07-11 07:25 - 000000000 ____D C:\Users\Frédéric\AppData\Roaming\DiskDefrag
2022-05-12 00:29 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-05-11 19:19 - 2020-01-16 07:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-05-11 19:09 - 2017-12-04 18:55 - 000000000 ____D C:\Users\Frédéric\AppData\Roaming\IObit
2022-05-11 18:59 - 2017-12-04 19:00 - 000000000 ____D C:\ProgramData\ProductData
2022-05-11 18:56 - 2017-12-04 18:56 - 000000000 ____D C:\ProgramData\IObit
2022-05-11 18:55 - 2017-12-04 18:57 - 000000000 ____D C:\Users\Frédéric\AppData\LocalLow\IObit
2022-05-11 17:48 - 2020-01-16 07:42 - 000000000 ____D C:\Users\Frédéric
2022-05-11 13:42 - 2021-11-04 12:18 - 000000000 ____D C:\WINDOWS\Panther
2022-05-11 13:06 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-05-11 13:01 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-09 21:09 - 2020-01-16 08:05 - 001064898 _____ C:\WINDOWS\diagwrn.xml
2022-05-09 21:09 - 2020-01-16 08:05 - 001064898 _____ C:\WINDOWS\diagerr.xml
2022-05-08 20:39 - 2014-09-26 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-05-08 20:17 - 2020-11-01 07:07 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-05-08 20:17 - 2020-11-01 07:07 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-05-08 20:17 - 2020-01-16 08:06 - 000002486 _____ C:\WINDOWS\system32\Tasks\PrivaZer_SkipUAC
2022-05-08 20:16 - 2021-01-12 19:13 - 000002242 _____ C:\WINDOWS\system32\Tasks\UCheck
2022-05-08 19:52 - 2019-06-12 08:47 - 000000000 ____D C:\Program Files (x86)\Google
2022-05-08 18:01 - 2022-03-30 20:22 - 000002662 _____ C:\WINDOWS\system32\Tasks\iTopVPN_Scheduler_Frédéric
2022-05-08 18:01 - 2022-03-30 19:47 - 000002556 _____ C:\WINDOWS\system32\Tasks\iTopVPN_SkipUAC_Frédéric
2022-05-08 18:00 - 2020-01-16 08:06 - 000002368 _____ C:\WINDOWS\system32\Tasks\{7CA94A86-F892-471E-884F-1E35E198BFD1}
2022-05-08 17:57 - 2015-05-06 07:24 - 000000000 ____D C:\Program Files\Java
2022-05-07 17:24 - 2020-11-01 07:08 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-05-07 17:24 - 2020-11-01 07:08 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-05-06 13:41 - 2019-06-12 10:11 - 000000000 ____D C:\ProgramData\RogueKiller
2022-05-06 12:01 - 2019-06-12 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2022-05-06 12:01 - 2019-06-12 10:11 - 000000000 ____D C:\Program Files\RogueKiller
2022-05-06 11:52 - 2019-04-25 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck
2022-05-06 11:52 - 2019-04-25 18:57 - 000000000 ____D C:\Program Files\UCheck
2022-05-06 11:24 - 2020-05-22 10:31 - 000056832 _____ C:\Users\Frédéric\Documents\Codes ec.xls
2022-05-06 09:55 - 2020-01-16 07:41 - 001980238 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-05-06 09:55 - 2019-03-19 14:01 - 000867944 _____ C:\WINDOWS\system32\perfh00C.dat
2022-05-06 09:55 - 2019-03-19 14:01 - 000183604 _____ C:\WINDOWS\system32\perfc00C.dat
2022-05-06 09:51 - 2015-12-24 10:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-05-06 00:14 - 2017-04-06 10:09 - 000000000 ____D C:\Users\Frédéric\AppData\Roaming\vlc
2022-05-06 00:13 - 2015-12-24 10:48 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-05-05 23:12 - 2020-05-05 22:13 - 000000000 ____D C:\Users\Frédéric\Desktop\récup
2022-05-05 19:38 - 2021-02-21 20:59 - 000000000 ____D C:\Users\Frédéric\AppData\Roaming\Telegram Desktop
2022-05-05 18:28 - 2011-06-14 22:17 - 000000000 ____D C:\Users\Frédéric\AppData\Roaming\Stardock
2022-05-05 15:34 - 2021-12-07 18:43 - 000000000 ____D C:\Users\Frédéric\Documents\MAMAN
2022-05-05 15:28 - 2020-05-05 22:13 - 000000000 ____D C:\Users\Frédéric\Desktop\Carnet adresse et doc pomares
2022-05-05 15:18 - 2021-04-02 22:09 - 000000000 ____D C:\Users\Frédéric\Documents\FormatFactory
2022-05-05 15:15 - 2014-10-03 11:08 - 000000000 ____D C:\Users\Frédéric\Desktop\Captvty
2022-05-05 10:14 - 2014-10-15 13:56 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2022-05-04 18:42 - 2019-03-22 21:46 - 000001159 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2022-05-04 18:42 - 2017-11-17 12:14 - 000001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2022-05-04 17:55 - 2015-04-05 23:14 - 000000000 ____D C:\Users\Frédéric\AppData\Local\CrashDumps
2022-05-02 23:48 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-05-02 09:43 - 2020-01-16 08:06 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-05-02 09:43 - 2020-01-16 08:06 - 000003354 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-04-29 11:50 - 2021-01-11 18:18 - 000000000 ____D C:\Users\Frédéric\Desktop\4kvideodownloader
2022-04-25 19:37 - 2021-02-21 21:28 - 000000000 ____D C:\Users\Frédéric\Downloads\Telegram Desktop
2022-04-12 18:12 - 2018-11-17 20:35 - 000000000 ____D C:\Users\Frédéric\AppData\Local\PrivaZer
2022-04-12 17:44 - 2022-04-11 09:20 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk

==================== Fichiers à la racine de certains dossiers ========

2016-11-02 15:54 - 2016-10-26 19:12 - 003232768 _____ () C:\Users\Frédéric\Captvty.exe
2015-11-27 05:50 - 2015-12-26 10:55 - 000065632 _____ (NirSoft) C:\Program Files\MozillaCacheView.exe
2013-07-07 12:45 - 2014-11-14 16:35 - 000000133 _____ () C:\Users\Frédéric\AppData\Roaming\burnaware.ini
2016-01-23 17:56 - 2016-01-23 17:56 - 000000122 _____ () C:\Users\Frédéric\AppData\Roaming\profiles.ini
2021-07-12 23:18 - 2021-07-12 23:18 - 000000000 _____ () C:\Users\Frédéric\AppData\Roaming\Stardockfences_debug_snapshot.dat
2012-10-08 17:08 - 2012-10-08 17:08 - 000008941 _____ () C:\Users\Frédéric\AppData\Roaming\UserTile.png
2012-03-09 00:14 - 2013-07-20 11:16 - 000099443 _____ () C:\Users\Frédéric\AppData\Local\ars.cache
2012-03-09 00:15 - 2013-07-20 11:17 - 000911743 _____ () C:\Users\Frédéric\AppData\Local\census.cache
2011-06-14 21:18 - 2022-03-16 12:15 - 000017408 _____ () C:\Users\Frédéric\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-03-08 23:58 - 2012-03-08 23:58 - 000000036 _____ () C:\Users\Frédéric\AppData\Local\housecall.guid.cache
2020-08-02 20:04 - 2020-08-02 20:04 - 000000866 _____ () C:\Users\Frédéric\AppData\Local\recently-used.xbel
2013-06-25 11:13 - 2013-06-25 11:34 - 000007597 _____ () C:\Users\Frédéric\AppData\Local\resmon.resmoncfg
2021-02-07 19:03 - 2021-02-07 19:03 - 000000000 _____ () C:\Users\Frédéric\AppData\Local\{FA36012C-D499-4D0E-8E2B-268F0CD3ABE4}

==================== FCheck ================================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

FCheck: C:\WINDOWS\dmo.exe [2015-06-10] <==== ATTENTION (zéro octet Fichier/Dossier)
FCheck: C:\WINDOWS\mdmo.exe [2015-06-10] <==== ATTENTION (zéro octet Fichier/Dossier)

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================