Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2020
Exécuté par ASMOP (administrateur) sur ASMOP-TOSH (TOSHIBA SATELLITE PRO C70-C-19V) (14-10-2020 11:21:06)
Exécuté depuis C:\Users\ASMOP\Downloads
Profils chargés: ASMOP
Platform: Windows 10 Pro Version 1903 18362.1082 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\PVSW\Bin\w3dbsmgr.exe
() [Fichier non signé] C:\PVSW\Bin\WGE_SRV.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12109.3.52015.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Dell Technologies Inc. -> DELL EMC Corporation) C:\Program Files\avs\bin\avscc.exe
(Dell Technologies Inc. -> EMC Corporation) C:\Program Files\avs\bin\avagent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(FRANCE TELECOM -> ) [Fichier non signé] C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Wireless Display -> Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0006\FileSyncHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe <3>
(Orange -> Orange) C:\Users\ASMOP\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(RG Systemes SAS -> ) C:\Program Files (x86)\RG-Supervision\RG_Supervision.exe <2>
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Common Files\Sophos\Web Intelligence\swi_fc.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Clean\SophosCleanM.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Health\SophosHealth.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsAgent.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsClient.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Data Protection\Sophos.Encryption.BitLockerService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Endpoint Defense\SEDService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Endpoint Defense\SSPService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Safestore\SophosSafestore64.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Sophos File Scanner\SophosFileScanner.exe <2>
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Sophos File Scanner\SophosFS.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Sophos Network Threat Protection\SophosNtpService.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Sophos UI\SavApi.exe
(Sophos Ltd -> Sophos Limited) C:\Program Files\Sophos\Sophos UI\Sophos UI.exe
(Sophos Ltd -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe <2>
(TOSHIBA CORPORATION -> ) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA CORPORATION -> ) C:\Windows\System32\GFNEXSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TBatmgrTrayicon.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoHook.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Toshiba Europe GmbH -> Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3873000 2016-06-02] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1514528 2015-01-17] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé]
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [1005648 2014-10-30] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [614480 2014-11-05] (TOSHIBA CORPORATION -> )
HKLM\...\Run: [BatteryManager] => C:\Program Files\TOSHIBA\Power Saver\TBatmgrTrayIcon.exe [317016 2014-12-16] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [711040 2013-08-21] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1678920 2015-01-12] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [788896 2014-11-18] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-12] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => c:\Program Files (x86)\Toshiba\Registration\ToshibaReminder.exe [150928 2015-04-09] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
HKLM\...\Run: [Sophos UI.exe] => C:\Program Files\Sophos\Sophos UI\Sophos UI.exe [1464888 2020-04-30] (Sophos Ltd -> Sophos Limited)
HKLM-x32\...\Run: [ToshibaServiceStation] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1298816 2011-07-12] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [665568 2018-08-07] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [870368 2018-08-07] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-75302231-3184377632-643270163-1000\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1938800 2020-10-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-75302231-3184377632-643270163-1000\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- microsoft-edge:hxxps://r.orange.fr/r/Oo (l'élément de données a 62 caractères en plus).
HKLM\...\Print\Monitors\EPSON BX620FWD Series 64MonitorBU: C:\WINDOWS\system32\E_ILMGBU.DLL [118784 2008-11-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2018-05-31] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON Universal Print Driver 64MonitorBE: C:\WINDOWS\system32\E_2LM0DE.DLL [182784 2015-12-09] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON WF-3520 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMJJE.DLL [120320 2011-04-19] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON WF-C5710 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBSHE.DLL [183296 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-13] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{3AFF1C30-4959-4c2f-8BED-E6E81E39F57A}] -> C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtCp.dll [2012-02-02] (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
AppInit_DLLs: C:\WINDOWS\system32\SophosAV\SOPHOS~1.DLL => C:\WINDOWS\system32\SophosAV\SOPHOS~1.DLL [241624 2020-06-10] (Sophos Ltd -> Sophos Limited)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\SophosAV\SOPHOS~1.DLL => C:\WINDOWS\SysWOW64\SophosAV\SOPHOS~1.DLL [245792 2020-06-10] (Sophos Ltd -> Sophos Limited)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\client.lnk [2020-10-05]
ShortcutTarget: client.lnk -> C:\Program Files\avs\bin\avscc.exe (Dell Technologies Inc. -> DELL EMC Corporation)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {055CEAB4-8EB0-4352-AD8B-2E25DF6E7DB7} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {0DB7899F-C92D-44BE-B846-9AB5935A208B} - \Skype -> Pas de fichier <==== ATTENTION
Task: {1068775A-DF9B-4FFB-BD1D-1256F720F87A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {12ADF256-3ED7-4061-BF30-A80D821D07AC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {16840AF2-99D0-46D2-AA1A-C8B472DF1AA6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe <==== ATTENTION
Task: {1A20F459-357B-462A-B93D-CE62C75C6914} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe <==== ATTENTION
Task: {1C08CAA7-738A-4385-8898-E4B97EDE1EC9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {1CAED5A2-4D88-4C53-831C-3929C47A8CCE} - System32\Tasks\maLivebox => C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe [146704 2017-02-07] (Orange -> Orange) [Fichier non signé]
Task: {1DAD7ABA-835F-434D-816C-4A93E833F898} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION
Task: {1FA2C842-DD87-4964-9B84-B5F63FC716C4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {225433E1-513B-4EEB-9EAC-09DF73E5545B} - System32\Tasks\EPSON WF-C5710 Series Update {66A3D619-1399-4250-A9D4-87D6559DD648} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {24CD09E3-727E-488D-AB79-4B5DB2ED9BE9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {251FBF87-7082-4BA8-87E6-63136AB2503E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe <==== ATTENTION
Task: {25AAF531-8786-47AF-A7FA-E5E88F1775BE} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {280586B6-8C22-4F42-8705-6AF07D865D78} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {3417F0C6-552B-4CF4-B2AC-52026248CF97} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16690424 2016-08-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A8A3FCB-17FB-4470-B00C-6BA877A2FCAF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {5011B780-1CE5-4CC6-AACE-CEE1A556A4E4} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {51438297-CF8F-4BB0-AF66-D47B78535D7B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe <==== ATTENTION
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5FD9B591-AA51-445B-97AE-67817B4CF7FA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {60EC1DC2-706A-422E-8F0C-D88317E1E310} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe <==== ATTENTION
Task: {64509A1D-8C57-42D1-A300-F1D91C67BB05} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {68506EDF-F1B7-439B-AB21-C239819411DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {6F04F1FC-7EA4-4949-998E-7FDAE0517C5F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FB456AB-6A36-4273-A9D9-144A4BE6FBA1} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {732249B0-FE24-4896-9C11-FBF72CC58682} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service"
Task: {732249B0-FE24-4896-9C11-FBF72CC58682} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service"
Task: {75513085-F20E-4B68-B8E0-25CA850A3671} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2778488 2020-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {773823D0-EC0B-4851-9EDC-DE1D22E9612F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {7A514EDD-41A2-4B78-A493-5070B5B2D160} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_433_Plugin.exe [1502264 2020-09-09] (Adobe Inc. -> Adobe)
Task: {7AD3F7D0-B66F-4D80-BFC8-3ED5D94E2AFE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {7B6B7140-6447-4E78-BAE0-A5945F3DDD06} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-10-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {7E09E41E-6A50-4C95-8DD8-DD25022A9BE1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe <==== ATTENTION
Task: {8ABDD14E-EE42-40E3-9AC8-37A3D102A110} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {8F1A6464-10A4-4B7C-BD9F-28EE158CA6AA} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat [0 2020-02-25] () <==== ATTENTION
Task: {9092532A-0981-40E1-8B4D-DFFC8138634E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
Task: {9FC0CF35-21D4-41E6-ACF5-04E8330770D8} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A2DF2FDC-1FEF-4E19-A217-C55B3073B555} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {A58A4E6E-7BCA-4F57-99F8-B8E952D10936} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A84514CE-D6B1-42A0-89BA-1A880ED2B9D9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {AA9C9BD5-7B78-4860-969B-7824BB455960} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B6E3B6B4-07F8-467E-A6FA-21874C734F48} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {BB4A1978-1720-44A3-8F39-104DF67E5D3A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {BC7577C0-75FC-4C0A-8FB6-FDDB623A6870} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {C77CB694-0556-48BD-B123-B983411C7CE7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {D0C82B72-CCA3-4D1D-B694-4776776B8F6C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D0D095E7-0631-4091-BE4F-D820D731A5D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-30] (Google Inc -> Google Inc.)
Task: {D59565F9-C862-4C98-9FDC-A6627E9337E9} - System32\Tasks\EPSON WF-C5710 Series Update {D8BB51FD-AF21-4A08-A315-B522032EAD16} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {D5AC4E4A-A537-4A91-9036-6A6186774C7F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D63C25DB-C748-4DF2-B1D0-DB4FF9DFD754} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-30] (Google Inc -> Google Inc.)
Task: {DA55096B-755E-4DB7-A57E-32CA6F7E556D} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {E396202E-6A9C-4A49-9703-68B4A4B1B081} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E54E4A42-6605-4510-877F-839809B6033F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {E7698AEB-FB21-4B0D-8C85-89EC0CC20754} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E781D702-9F48-44E7-A56D-22348876CDB0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {EE0DA93F-A01B-466A-8808-4A2B209A3327} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F26946D2-594D-4E02-A3D5-ECF0D8BECA4A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {F82DE564-D71B-49C0-A8A1-555072D5F1E0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FF352D6E-A076-41DC-B383-6D76AEEC86D2} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\ASMOP\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1947864 2020-09-14] (Orange -> Orange)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\EPSON WF-C5710 Series Update {66A3D619-1399-4250-A9D4-87D6559DD648}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE:/EXE:{66A3D619-1399-4250-A9D4-87D6559DD648} /F:UpdateWORKGROUP\ASMOP-TOSH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON WF-C5710 Series Update {D8BB51FD-AF21-4A08-A315-B522032EAD16}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE:/EXE:{D8BB51FD-AF21-4A08-A315-B522032EAD16} /F:UpdateWORKGROUP\ASMOP-TOSH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d32df00f-6b67-4112-8ae1-f58a45cf9a69}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fa40a2c0-4c59-4ee5-958c-4c3fdd0e1006}: [DhcpNameServer] 192.168.1.1

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ASMOP\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-13]
Edge Notifications: Default -> hxxps://yivette.com

FireFox:
========
FF DefaultProfile: 26mk3er4.default
FF ProfilePath: C:\Users\ASMOP\AppData\Roaming\Mozilla\Firefox\Profiles\26mk3er4.default [2020-10-14]
FF Homepage: Mozilla\Firefox\Profiles\26mk3er4.default -> hxxps://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_FFe64_w10e64_odc
FF NetworkProxy: Mozilla\Firefox\Profiles\26mk3er4.default -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\26mk3er4.default -> hxxps://www.facebook.com; hxxps://www.galerieslafayette.com; hxxps://www.youtube.com; hxxps://www.brevetdescolleges.fr; hxxps://education.toutcomment.com; hxxps://wurth.os.tc; hxxps://www.fnac.com
FF Extension: (Kaspersky Password Manager) - C:\Users\ASMOP\AppData\Roaming\Mozilla\Firefox\Profiles\26mk3er4.default\Extensions\kpm_win_add_on_9.0@kaspersky.xpi [2020-10-09] [UpdateUrl:hxxps://special.s.kaspersky-labs.com/firefox_extensions/kpm_win_add_on/update.json]
FF Extension: (Français Language Pack) - C:\Users\ASMOP\AppData\Roaming\Mozilla\Firefox\Profiles\26mk3er4.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2020-09-26]
FF Extension: (Gopher) - C:\Users\ASMOP\AppData\Roaming\Mozilla\Firefox\Profiles\26mk3er4.default\Extensions\{9cee5c92-eb1e-4892-86ff-d2d1c627f5b9}.xpi [2019-01-10]
FF HKLM\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2018-10-12] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default [2020-09-20]
CHR HomePage: Default -> orange.fr
CHR Extension: (Slides) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-22]
CHR Extension: (Docs) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-22]
CHR Extension: (Google Drive) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-10]
CHR Extension: (YouTube) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-29]
CHR Extension: (Kaspersky Password Manager) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2020-09-20]
CHR Extension: (Sheets) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-19]
CHR Extension: (Orange page d'accueil) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2020-09-20]
CHR Extension: (Gmail) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-24]
CHR Extension: (Chrome Media Router) - C:\Users\ASMOP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-20]
CHR HKU\S-1-5-21-75302231-3184377632-643270163-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhnkblpjbkfklfloegejegedcafpliaa] - hxxps://chrome.google.com/webstore/detail/dhnkblpjbkfklfloegejegedcafpliaa
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
R2 avbackup; C:\Program Files\avs\bin\avagent.exe [7634248 2020-05-20] (Dell Technologies Inc. -> EMC Corporation)
R2 Dedicarz Service; C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe [1970544 2014-09-15] (FRANCE TELECOM -> ) [Fichier non signé]
R2 EBP Pervasive.SQL; C:\PVSW\Bin\WGE_SRV.exe [32768 2006-12-07] () [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-08-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0006\FileSyncHelper.exe [2189160 2020-10-11] (Microsoft Corporation -> Microsoft Corporation)
R2 GFNEXSrv; C:\Windows\System32\GFNEXSrv.exe [163168 2013-03-27] (TOSHIBA CORPORATION -> )
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [4987984 2020-03-23] (Sophos Ltd -> SurfRight B.V.)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [395744 2015-01-14] (Intel(R) Wireless Display -> Intel)
R2 MSSQL$EBP; C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\sqlservr.exe [62218696 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\20.169.0823.0006\OneDriveUpdaterService.exe [2553208 2020-10-11] (Microsoft Corporation -> Microsoft Corporation)
S2 Orange Update Core Service; C:\Program Files (x86)\Orange Update\OUService.exe [177384 2020-02-25] (Orange -> Orange) [Fichier non signé]
R2 RG-Supervision; C:\Program Files (x86)\RG-Supervision\RG_Supervision.exe [14227840 2020-10-12] (RG Systemes SAS -> )
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [291912 2020-06-10] (Sophos Ltd -> Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [217064 2020-06-10] (Sophos Ltd -> Sophos Limited)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6150504 2020-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SntpService; C:\Program Files\Sophos\Sophos Network Threat Protection\SophosNtpService.exe [4891416 2020-04-16] (Sophos Ltd -> Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [782088 2020-04-29] (Sophos Ltd -> Sophos Limited)
R2 Sophos Clean Service; C:\Program Files (x86)\Sophos\Clean\SophosCleanM.exe [1217880 2020-03-02] (Sophos Ltd -> Sophos Limited)
R3 Sophos Device Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe [561040 2020-06-10] (Sophos Ltd -> Sophos Limited)
R2 Sophos Device Encryption Service; C:\Program Files (x86)\Sophos\Sophos Data Protection\Sophos.Encryption.BitLockerService.exe [37496 2020-01-30] (Sophos Ltd -> Sophos Limited)
R2 Sophos Endpoint Defense Service; C:\Program Files\Sophos\Endpoint Defense\SEDService.exe [3547968 2020-07-06] (Sophos Ltd -> Sophos Limited)
R2 Sophos File Scanner Service; C:\Program Files\Sophos\Sophos File Scanner\SophosFS.exe [1769160 2020-04-21] (Sophos Ltd -> Sophos Limited)
R2 Sophos Health Service; C:\Program Files (x86)\Sophos\Health\SophosHealth.exe [2205288 2020-01-05] (Sophos Ltd -> Sophos Limited)
R2 Sophos MCS Agent; C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsAgent.exe [1048584 2020-06-01] (Sophos Ltd -> Sophos Limited)
R2 Sophos MCS Client; C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsClient.exe [1664288 2020-06-01] (Sophos Ltd -> Sophos Limited)
R2 Sophos Safestore Service; C:\Program Files\Sophos\Safestore\SophosSafestore64.exe [792944 2020-03-02] (Sophos Ltd -> Sophos Limited)
R2 Sophos System Protection Service; C:\Program Files\Sophos\Endpoint Defense\SSPService.exe [11012968 2020-07-06] (Sophos Ltd -> Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [361112 2020-03-20] (Sophos Ltd -> Sophos Limited)
S4 SQLAgent$EBP; C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\SQLAGENT.EXE [441288 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 swi_filter; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe [476456 2020-03-20] (Sophos Ltd -> Sophos Limited)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [3635592 2020-03-20] (Sophos Ltd -> Sophos Limited)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112536 2014-11-18] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S2 isl_desktop_restart_0; "C:\Program Files (x86)\ISL Online\ISL Restart\s_0\ISLLightService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-11] (Microsoft Corporation) [Fichier non signé]
R2 config; C:\WINDOWS\System32\drivers\ibtfudrv.sys [152008 2014-08-14] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R1 hmpalert; C:\WINDOWS\system32\drivers\hmpalert.sys [638488 2020-07-07] (Sophos Ltd -> SurfRight B.V.)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S4 RsFx0153; C:\WINDOWS\System32\DRIVERS\RsFx0153.sys [321992 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R1 SAVOnAccess; C:\WINDOWS\System32\DRIVERS\savonaccess.sys [216280 2020-06-10] (Sophos Ltd -> Sophos Limited)
R3 sdcfilter; C:\WINDOWS\system32\DRIVERS\sdcfilter.sys [38144 2020-03-20] (Sophos Limited -> Sophos Limited)
R1 sntp; C:\WINDOWS\system32\DRIVERS\sntp.sys [216848 2020-04-16] (Sophos Ltd -> Sophos Limited)
S0 Sophos ELAM; C:\WINDOWS\System32\DRIVERS\SophosEL.sys [22152 2020-02-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Sophos Limited)
R0 Sophos Endpoint Defense; C:\WINDOWS\System32\DRIVERS\SophosED.sys [1105208 2020-07-06] (Sophos Ltd -> Sophos Limited)
S4 SophosBootDriver; C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys [45840 2020-03-20] (Sophos Limited -> Sophos Limited)
R1 swi_callout; C:\WINDOWS\system32\DRIVERS\swi_callout.sys [47760 2020-03-20] (Sophos Limited -> Sophos Limited)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45720 2015-12-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
U5 TMUSB; C:\WINDOWS\System32\DRIVERS\TMUSB64.SYS [63096 2012-09-11] (SEIKO EPSON Corporation Test Signing -> Seiko Epson Corporation)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-01-14] (Intel(R) Wireless Display -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-10-14 11:21 - 2020-10-14 11:22 - 000041780 _____ C:\Users\ASMOP\Downloads\FRST.txt
2020-10-14 11:20 - 2020-10-14 11:21 - 000000000 ____D C:\FRST
2020-10-14 10:37 - 2020-10-14 10:37 - 002299392 _____ (Farbar) C:\Users\ASMOP\Downloads\FRST64.exe
2020-10-13 13:24 - 2020-10-13 14:18 - 000008839 _____ C:\Users\ASMOP\Desktop\UsbFix_Report.txt
2020-10-13 13:02 - 2020-10-13 13:23 - 000001963 _____ C:\Users\ASMOP\Desktop\UsbFix Anti-Malware.lnk
2020-10-13 13:01 - 2020-10-13 13:23 - 000000000 ____D C:\Program Files (x86)\UsbFix
2020-10-13 13:01 - 2020-10-13 13:01 - 004773088 _____ (SOSVirus) C:\Users\ASMOP\Downloads\UsbFix_2019_11.022.exe
2020-10-12 09:11 - 2020-10-12 09:11 - 000559513 _____ C:\Users\ASMOP\Documents\img20201012_09115793.pdf
2020-10-11 11:15 - 2020-10-11 11:49 - 000016559 _____ C:\Users\ASMOP\Desktop\svt.odt
2020-10-11 01:12 - 2020-10-11 01:12 - 000000000 ____D C:\Users\ASMOP\AppData\Roaming\1864F553-6B66-4BB6-9164-DB3941A51DE1
2020-10-06 21:06 - 2020-06-15 08:56 - 000000854 _____ C:\Users\ASMOP\Documents\EBP Demo Gestion 2020 12.3 FR Classic.ebp
2020-10-06 21:04 - 2020-10-06 21:04 - 000001349 _____ C:\Users\Public\Desktop\EBP Gestion Commerciale Classic 2020 12.3 (OLT).lnk
2020-10-06 21:00 - 2020-10-06 21:04 - 000000000 ___HD C:\ProgramData\{6D568D34-C2B3-4B43-86EA-D27A6B201B5D}
2020-10-06 09:11 - 2020-10-06 09:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-10-05 15:44 - 2020-10-05 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EMC Avamar
2020-10-05 09:55 - 2020-10-14 09:55 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-09-30 16:51 - 2020-09-30 16:51 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-09-30 16:51 - 2020-09-10 18:14 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-09-30 16:51 - 2020-09-10 18:14 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-09-23 09:14 - 2020-09-23 09:14 - 000000000 ____D C:\Users\ASMOP\avscc_settings
2020-09-23 08:43 - 2020-10-12 12:48 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2020-09-23 08:43 - 2020-10-11 13:59 - 000000000 ___RD C:\Users\DefaultAppPool\OneDrive
2020-09-23 08:43 - 2020-10-11 13:58 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2020-09-23 08:43 - 2020-10-11 13:58 - 000002223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-09-23 08:43 - 2020-09-23 08:43 - 000000000 ___RD C:\Users\Default\OneDrive
2020-09-23 08:43 - 2020-09-23 08:43 - 000000000 ___RD C:\Users\Default User\OneDrive
2020-09-23 08:30 - 2020-09-23 08:30 - 000000000 ____D C:\Users\ASMOP\AppData\Local\OneDrive
2020-09-18 15:35 - 2020-09-18 15:35 - 000000000 ____D C:\Users\ASMOP\AppData\Local\Sophos

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-10-14 11:20 - 2020-07-07 16:17 - 000000000 ____D C:\WINDOWS\CryptoGuard
2020-10-14 11:19 - 2016-11-18 12:33 - 000000000 ____D C:\Users\ASMOP\AppData\LocalLow\Mozilla
2020-10-14 11:15 - 2016-10-14 13:42 - 000000000 ____D C:\Users\ASMOP\AppData\Local\ElevatedDiagnostics
2020-10-14 11:14 - 2019-08-26 14:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-14 11:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-14 11:08 - 2020-07-07 16:17 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2020-10-14 10:13 - 2016-07-02 11:16 - 000000000 ___RD C:\Users\ASMOP\OneDrive
2020-10-14 09:11 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-14 08:55 - 2020-06-24 07:42 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-14 08:55 - 2020-06-24 07:42 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-14 08:48 - 2016-06-28 18:51 - 000000000 __SHD C:\Users\ASMOP\IntelGraphicsProfiles
2020-10-14 08:47 - 2017-07-13 14:44 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-10-13 15:09 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-12 21:21 - 2019-08-26 14:18 - 000000000 ____D C:\Users\ASMOP
2020-10-12 21:17 - 2019-08-26 14:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-12 21:17 - 2016-10-14 07:57 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-12 12:48 - 2018-05-16 13:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-12 12:47 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-12 09:50 - 2016-07-29 21:46 - 000000000 ____D C:\Users\ASMOP\ASMOP
2020-10-11 16:22 - 2020-02-01 19:50 - 000016298 _____ C:\Users\ASMOP\Desktop\kevin ses.odt
2020-10-11 13:56 - 2019-08-26 15:00 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-10-11 04:55 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-10 19:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-10-10 09:10 - 2020-06-24 07:42 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-10 09:10 - 2020-06-24 07:42 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-09 11:43 - 2019-08-27 08:34 - 000000000 ____D C:\Users\ASMOP\AppData\Local\Deployment
2020-10-09 10:27 - 2016-11-14 11:56 - 000000000 ____D C:\Users\ASMOP\AppData\Local\CEF
2020-10-08 09:19 - 2016-07-28 10:43 - 000000000 ____D C:\Users\ASMOP\AppData\Local\Stimulsoft
2020-10-06 21:16 - 2020-09-04 09:32 - 000000000 ____D C:\Users\ASMOP\Documents\Sauvegardes
2020-10-06 21:16 - 2016-07-27 16:33 - 000000837 _____ C:\Users\ASMOP\Documents\ETS OLIVIER POUGNET.ebp
2020-10-06 21:12 - 2019-10-15 10:14 - 000000000 ____D C:\Users\ASMOP\Documents\sauvegardes EBP
2020-10-06 21:10 - 2016-07-27 16:11 - 000000823 _____ C:\Users\ASMOP\Documents\ASMOP.ebp
2020-10-06 21:05 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Globalization
2020-10-06 21:05 - 2016-07-26 14:37 - 000000000 ____D C:\Users\ASMOP\AppData\Local\EBP
2020-10-06 21:04 - 2016-07-26 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBP
2020-10-06 21:01 - 2016-07-26 16:13 - 000000000 ____D C:\Program Files\EBP
2020-10-06 21:01 - 2016-07-26 14:37 - 000000000 ____D C:\ProgramData\EBP
2020-10-06 20:57 - 2019-10-16 09:27 - 000000000 ____D C:\Users\ASMOP\AppData\Local\IIIQF
2020-10-06 10:04 - 2017-11-22 12:31 - 000000000 ____D C:\Users\ASMOP\AppData\Local\Stimulsoft-Resources
2020-10-06 09:11 - 2018-05-16 13:18 - 000001196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-05 15:44 - 2019-09-18 14:37 - 000000000 ____D C:\Program Files\avs
2020-10-05 15:30 - 2020-01-06 21:32 - 000022497 _____ C:\Users\ASMOP\Desktop\Nouveau Texte OpenDocument (2).odt
2020-10-05 10:52 - 2019-12-19 13:02 - 000000000 ____D C:\Users\ASMOP\Documents\CHORUS factures
2020-09-26 17:42 - 2019-02-05 20:04 - 000000000 ____D C:\ProgramData\Mozilla
2020-09-25 11:00 - 2019-08-26 14:53 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-24 12:18 - 2017-04-02 10:16 - 000001332 _____ C:\Users\ASMOP\Desktop\Edge.lnk
2020-09-23 09:07 - 2016-07-29 16:19 - 000000000 ____D C:\Users\ASMOP\Sauvegardes
2020-09-23 09:00 - 2016-07-02 11:39 - 000000000 ____D C:\Users\ASMOP\AppData\Local\Comms
2020-09-23 08:49 - 2020-03-21 16:05 - 000000000 ____D C:\Users\ASMOP\Desktop\LORIC
2020-09-23 08:48 - 2016-07-29 21:47 - 000000000 ____D C:\Users\ASMOP\Desktop\KEVIN
2020-09-23 08:43 - 2019-08-26 14:18 - 000000000 ____D C:\Users\DefaultAppPool
2020-09-21 09:45 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-09-20 20:37 - 2019-08-26 14:53 - 000002990 _____ C:\WINDOWS\system32\Tasks\maLivebox
2020-09-19 16:01 - 2019-09-11 11:47 - 000000000 ____D C:\Users\ASMOP\Desktop\JORDAN
2020-09-17 10:16 - 2019-08-26 14:30 - 002005862 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-17 10:16 - 2019-03-19 14:01 - 000866922 _____ C:\WINDOWS\system32\perfh00C.dat
2020-09-17 10:16 - 2019-03-19 14:01 - 000178138 _____ C:\WINDOWS\system32\perfc00C.dat

==================== Fichiers à la racine de certains dossiers ========

2016-08-30 13:33 - 2016-08-30 13:33 - 000000129 _____ () C:\Users\ASMOP\AppData\Local\87df1c10c8000c7c562d0de5a7419cd6
2016-08-30 13:34 - 2017-02-16 10:42 - 000000130 _____ () C:\Users\ASMOP\AppData\Local\a79e395e0e4277fca3ed51fce10173de
2017-03-14 10:53 - 2018-04-19 13:41 - 000008704 _____ () C:\Users\ASMOP\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================