Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-02-2020 02
Exécuté par pl (administrateur) sur PL-PC (Hewlett-Packard HP Pavilion g7 Notebook PC) (08-02-2020 19:04:24)
Exécuté depuis G:\z telechargement
Profils chargés: pl (Profils disponibles: pl)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Opera)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Comodo Security Solutions -> Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Dexpot GbR -> Dexpot GbR) C:\Program Files (x86)\Dexpot\dexpot.exe
(Dexpot GbR -> Dexpot GbR) C:\Program Files (x86)\Dexpot\Dexpot64.exe
(Dexpot GbR -> Dexpot GbR) C:\Program Files (x86)\Dexpot\plugins\DexControl.exe
(Dexpot GbR -> Dexpot GbR) C:\Program Files (x86)\Dexpot\plugins\SevenDex.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(My Digital Life Forums) [Fichier non signé] C:\Windows\KMSServerService\KMS Server Service.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\66.0.3515.72\opera_crashreporter.exe
(Outertech e.K. -> Outertech) C:\Program Files (x86)\Cacheman\CachemanServ.exe
(Outertech e.K. -> Outertech) C:\Program Files (x86)\Cacheman\CachemanTray.exe
(Shanghai Oriental Webcasting Co. Ltd. -> www.ejie.me) C:\Program Files (x86)\Clover\Clover.exe
(Winstep Software Technologies) [Fichier non signé] C:\Program Files (x86)\Winstep\WsxService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [Dexpot] => C:\Program Files (x86)\Dexpot\dexpot.exe [1845296 2014-09-04] (Dexpot GbR -> Dexpot GbR)
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [CachemanTray] => C:\Program Files (x86)\Cacheman\CachemanTray.exe [1576136 2016-10-27] (Outertech e.K. -> Outertech)
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [ACDSeeCommanderPro9] => C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe [3220488 2017-08-27] (ACD Systems International -> ) [Fichier non signé]
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [17074688 2018-03-06] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [ultracopier] => C:\Program Files (x86)\Ultracopier\ultracopier.exe [1191936 2016-01-02] (ultracopier.first-world.info) [Fichier non signé]
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Run: [WinFLTray] => C:\Windows\SysWow64\WinFLTray.ex
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Policies\Explorer: [NoDesktopCleanupWizard] 1
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: H - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {1deb0031-6796-11e7-9090-ec9a7462ee24} - J:\Setup.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {2a14e7b5-f87c-11e8-a9c7-ec9a7462ee24} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {2a14e7be-f87c-11e8-a9c7-ec9a7462ee24} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {2c9075dc-292b-11e9-9681-ec9a7462ee24} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {51cc8e30-9184-11e7-82d4-ec9a7462ee24} - H:\AutoRun.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {5856d35e-d9a7-11e7-87a6-ec9a7462ee24} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {5f8cc0b9-b764-11e8-9e9c-ec9a7462ee24} - H:\Setup.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {b00706af-7d3e-11e7-89d1-ec9a7462ee24} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {b85fe9ed-a7b4-11e9-ad13-ec9a7462ee24} - V:\FLINST.EXE
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {c8b746a0-49d7-11ea-a2c7-ec9a7462ee24} - V:\OInstall.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {e07180ea-ac3f-11e8-8844-ec9a7462ee24} - H:\Setup.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {e6149f8c-6063-11e8-bd69-ec9a7462ee24} - H:\Setup.exe
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {ea2e5004-485a-11ea-a940-ec9a7462ee24} - V:\SETUP.EXE
HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\MountPoints2: {ea2e5038-485a-11ea-a940-ec9a7462ee24} - V:\SETUP.EXE
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{66C64F22-FC60-4E6C-A6B5-F0D580E680CE}] -> C:\Windows\System32\ie4uinit.exe -EnableTLS
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{7D715857-A67C-4C2F-A929-038448584D63}] -> C:\Windows\System32\ie4uinit.exe -DisableSSL3
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4383}] -> C:\Windows\System32\ie4uinit.exe -UserConfig
HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] ->
HKLM\Software\...\Authentication\Credential Providers: [{AA96996E-48DD-4D31-A94D-8563298A8C2D}] -> C:\Windows\system32\WACP.dll [2018-06-28] (Softomotive Ltd. -> )
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {095F9E38-11F9-42D0-871A-1EB1ABF7C97F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1E746905-F143-4EE0-BD5F-CD5221121F25} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {6C483E16-3936-423D-A13B-41B86D40D1CB} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {81EAECBD-B8DF-4AD2-8C45-E54726045531} - System32\Tasks\Opera scheduled Autoupdate 1523632851 => C:\Program Files\Opera\launcher.exe [1532952 2020-02-05] (Opera Software AS -> Opera Software)
Task: {A085BCD0-C925-4C85-9070-7C134B6B7415} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {AF2143D9-A4AB-4678-A250-5CEA2FFF3464} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {DB5CFE93-AF35-41E8-9220-EA44337B62E0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [12762872 2018-03-06] (Piriform Ltd -> Piriform Ltd)
Task: {DF41A332-C0B5-4A17-A746-F27607C6D579} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
Task: {EBA6DF7C-17E2-4783-89BB-0306B5C61A88} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [6983240 2019-11-14] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {ED8431B9-FCDF-46E2-8988-05A6AC4B5EEE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {EFC0D77A-9C7F-4529-BD32-F87B12A7A792} - System32\Tasks\{E56AFC35-2573-46C9-9836-834626570218} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ZebHelpProcess\ZHPHep.exe" -d "C:\Users\pl\Desktop 1"

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{00ABDCC0-8BAB-4A0D-94CF-C4F2F129F98E}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{18323DDE-8A05-4B61-BFEA-AC74B9769166}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{24B1F596-1596-497C-B641-6966B88632E9}: [NameServer] 1.1.1.1,1.0.0.1,192.168.1.1
Tcpip\..\Interfaces\{24B1F596-1596-497C-B641-6966B88632E9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{51F7B745-9200-480C-965C-E761332DCBCC}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{91F454A3-A8CC-4885-BE4D-31EC31B636A3}: [NameServer] 1.1.1.1,1.0.0.1,192.168.1.1
Tcpip\..\Interfaces\{91F454A3-A8CC-4885-BE4D-31EC31B636A3}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B2D8E91F-3D8A-44B3-BA1A-C1185126AE63}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{C5CF8D99-59A4-493A-808F-1AD851932556}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{D833578B-33EB-4591-8800-1B362102C609}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2899033941-139227418-65469307-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=fp-comodo&type=81_25050030005_77.0.3865.120_u_hp_sp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2899033941-139227418-65469307-1000 -> DefaultScope {0AA24E16-07B3-4694-8357-3C21ACC5F516} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_77.0.3865.120_u_ds_sp&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2899033941-139227418-65469307-1000 -> {0AA24E16-07B3-4694-8357-3C21ACC5F516} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030005_77.0.3865.120_u_ds_sp&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2899033941-139227418-65469307-1000 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo&type=33050001005_10.2.0.6526_u_ds
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2020-02-03] (Shanghai Oriental Webcasting Co. Ltd. -> EJIE Technology)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2015-08-07] (Softdeluxe Ltd. -> FreeDownloadManager.ORG)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper32.dll [2020-02-03] (Shanghai Oriental Webcasting Co. Ltd. -> EJIE Technology)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: x-wpexpert - {382E05AF-964B-41CE-B2B5-ED0BF48013C0} - C:\Program Files (x86)\WildPackets\OmniPeek Demo\peekrecon.dll [2013-11-21] (WildPackets, Inc. -> WildPackets, Inc.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: d9ouj11e.default
FF ProfilePath: C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default [2020-02-07]
FF Homepage: Mozilla\Firefox\Profiles\d9ouj11e.default -> hxxps://fr.yahoo.com/?fr=fp-comodo&type=81_25050030004_77.0.3865.120_u_hp_sp
FF NetworkProxy: Mozilla\Firefox\Profiles\d9ouj11e.default -> type", 0
FF Extension: (Push To JDownloader) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid0-2XdU72GlY0qYebdQ9MsfVfaVmiI@jetpack.xpi [2017-07-17] []
FF Extension: (Google search link fix) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid0-XWJxt5VvCXkKzQK99PhZqAn7Xbg@jetpack.xpi [2017-07-16]
FF Extension: (Debrid-Link) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid1-6kU7yIbrTcZvJg@jetpack.xpi [2017-07-17]
FF Extension: (Firefox Lightbeam) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2018-09-21]
FF Extension: (YouTube Video Downloader - For Context Menu) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid1-KWFaW5zc0EbtBQ@jetpack.xpi [2017-07-17] []
FF Extension: (Official My JDownloader AddOn) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2017-07-17] []
FF Extension: (KGen) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\kgen@elitwork.com.xpi [2017-07-11] []
FF Extension: (Mega-Debrid) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\megadebridplugin@mega-debrid.eu.xpi [2017-07-17]
FF Extension: (Avast Online Security) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\wrc@avast.com.xpi [2018-09-04]
FF Extension: (Pas de nom) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-02-16]
FF Extension: (eCleaner (Forget Button)) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{13ea5d17-aa13-474a-b8cd-891073b53c66}.xpi [2017-07-17]
FF Extension: (Linkification) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}.xpi [2017-07-16] []
FF Extension: (Multiple File Downloader) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{3f1d5914-65d6-4344-985b-2c6c28a40398}.xpi [2018-01-20]
FF Extension: (HackBar) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{4c98c9c7-fc13-4622-b08a-a18923469c1c}.xpi [2018-06-21]
FF Extension: (Download Status Bar) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2017-07-11] []
FF Extension: (Link Cleaner) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{6d85dea2-0fb4-4de3-9f8c-264bce9a2296}.xpi [2017-07-17]
FF Extension: (Smart Right-click YouTube Video Downloader.) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{8527a848-7fa0-4946-9545-cc5e9c71fcce}.xpi [2017-10-04]
FF Extension: (Video DownloadHelper) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-02-16]
FF Extension: (Adblock Plus) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-01-09]
FF Extension: (DownThemAll!) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-07-17] []
FF Extension: (Ouvrir le lien dans...) - C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\Extensions\{ff81e780-5cc0-11d9-9669-0800200c9a66}.xpi [2017-07-17] []
FF Extension: (Pas de nom) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [non trouvé(e)]
FF SearchPlugin: C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\searchplugins\AdTrustMediaComodo Dragon.xml [2019-10-23]
FF SearchPlugin: C:\Users\pl\AppData\Roaming\Mozilla\Firefox\Profiles\d9ouj11e.default\searchplugins\google-avast.xml [2017-09-16]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-09-19]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: (Free Download Manager extension) - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13 [2017-07-17] []
FF HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi => non trouvé(e)
FF HKU\S-1-5-21-2899033941-139227418-65469307-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll [2018-03-20] (Adobe Systems Incorporated -> )
FF Plugin: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer64.DLL [2015-09-10] (ELECO Software GmbH -> ELECO Software GmbH)
FF Plugin: @java.com/DTPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll [2018-03-20] (Adobe Systems Incorporated -> )
FF Plugin-x32: @eleco.com/o2cplayer -> C:\Program Files (x86)\Eleco\o2c Player\npO2CPlayer.DLL [2015-09-10] (ELECO Software GmbH -> ELECO Software GmbH)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-02-27] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2899033941-139227418-65469307-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\pl\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2019-11-04] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]
FF Plugin HKU\S-1-5-21-2899033941-139227418-65469307-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\pl\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2019-11-04] (Google Inc (TEST) -> Epic Privacy Browser) [Fichier non signé]

Chrome:
=======
CHR Profile: C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default [2020-02-07]
CHR StartupUrls: Default -> "hxxps://fr.yahoo.com/?fr=fpc-comodo&type=81_25050030006_77.0.3865.120_u_hp_sp"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=81_25050030006_77.0.3865.120_u_ds_sp&p={searchTerms}
CHR DefaultSearchKeyword: Default -> yahoo.com
CHR Extension: (Slides) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-25]
CHR Extension: (Docs) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-25]
CHR Extension: (Google Drive) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-25]
CHR Extension: (YouTube) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-25]
CHR Extension: (Adobe Acrobat) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-09-25]
CHR Extension: (Sheets) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-25]
CHR Extension: (Avast Online Security) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-03-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-25]
CHR Extension: (Gmail) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-27]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - <pas de Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-12-17]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

Opera:
=======
OPR DownloadDir: G:\z telechargement
OPR Notifications: hxxps://2ec65.alexsoff.com; hxxps://5.notifscreen.com; hxxps://c48e.musicnewsupdate.info; hxxps://calendar.google.com; hxxps://g539.tionsnewsupdate.info; hxxps://gelacrabuld.info; hxxps://jxc9.cornwallsdraft.club; hxxps://pdftoword-converter.online; hxxps://www.argentdubeurre.com; hxxps://www.esky.fr; hxxps://www.eventbrite.com; hxxps://www.facebook.com; hxxps://www.jetcost.com; hxxps://www.tomtop.com
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\pl\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2018-08-21]
OPR Extension: (History Eraser) - C:\Users\pl\AppData\Roaming\Opera Software\Opera Stable\Extensions\lfpoajlbkhlfoeeokbppmecpplmieedm [2018-04-13]
OPR Extension: (Copy URL + Title) - C:\Users\pl\AppData\Roaming\Opera Software\Opera Stable\Extensions\nhmdngoiikdcodlpeifbjcjpjhefipal [2019-07-18]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [249344 2016-02-26] (Advanced Micro Devices, Inc. -> AMD)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-20] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S4 Becca Service; C:\Program Files (x86)\Rene.E Laboratory\Becca\x64\bcservice.exe [79792 2019-03-27] (Jiangmen Ruili Software Co., Ltd. -> Rene.E Laboratory)
R2 CachemanService; C:\Program Files (x86)\Cacheman\CachemanServ.exe [713928 2016-10-27] (Outertech e.K. -> Outertech)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2973592 2019-12-17] (Comodo Security Solutions -> Comodo)
S4 FLService; C:\Windows\SysWow64\WinFLService.exe [94768 2018-03-22] (NewSoftwares.net, Inc SDN. BHD. -> NewSoftwares.net)
R2 HCloverService; C:\Program Files (x86)\Clover\CloverSvc.dll [717424 2020-02-03] (Shanghai Oriental Webcasting Co. Ltd. -> )
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 KMSServerService; C:\Windows\KMSServerService\KMS Server Service.exe [236032 2020-02-07] (My Digital Life Forums) [Fichier non signé]
S1 luminati_net_updater_win_flactomp3_4dotssoftware_com; C:\Program Files (x86)\4dots Software\Free Convert FLAC to MP3\net_updater32.exe [1596336 2019-01-26] (Luminati Networks -> Luminati Networks Ltd.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S2 MSSQL$EBP; C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\sqlservr.exe [62218696 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
S3 SQLAgent$EBP; C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\SQLAGENT.EXE [441288 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
S3 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation -> Microsoft Corporation)
S3 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12097024 2019-11-06] (TeamViewer GmbH -> TeamViewer Germany GmbH)
S3 WinAutomation Machine Agent; C:\Program Files\WinAutomation\WinAutomation.MachineAgent.exe [258256 2018-06-28] (Softomotive Ltd. -> Softomotive)
S3 WinAutomation Service; C:\Program Files\WinAutomation\WinAutomation.Server.exe [1754320 2018-06-28] (Softomotive Ltd. -> Softomotive)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService.exe [775680 2018-06-06] (Winstep Software Technologies) [Fichier non signé]
S3 0015341510854088mcinstcleanup; pas de ImagePath
S3 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [X]
S3 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 amdefix; C:\Windows\System32\DRIVERS\amdefix.sys [18456 2015-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [23981568 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [674816 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [85704 2018-09-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [43720 2018-09-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] (CHENGDU AOMEI Tech Co., Ltd. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 Capsax64Drv; C:\Windows\System32\Drivers\Capsax64Drv.sys [53616 2017-07-11] (Colasoft Co., Ltd -> Colasoft Co., Ltd.)
R1 cfywlan1; C:\Windows\System32\DRIVERS\cfywlan1.sys [36736 2018-09-21] (Connectify (Connectify, Inc.) -> Connectify)
S3 CH341_A64; C:\Windows\System32\Drivers\CH341W64.SYS [31232 2009-06-11] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [34280 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [867864 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [59096 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [43872 2018-09-21] (Connectify (Connectify, Inc.) -> Connectify)
S3 CsrBtPort; C:\Windows\System32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\Windows\System32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\Windows\System32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S2 DgiVecp; pas de ImagePath
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2018-09-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 DrvSnSht; G:\drive i\DrvSnSht64.sys [132432 2010-06-01] (R-tools Technology Inc. -> R-TT Inc.)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [25032 2018-01-16] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [20936 2017-11-23] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
S3 evserial7; C:\Windows\System32\DRIVERS\evserial7.sys [71432 2011-10-31] (Eltima Software -> ELTIMA Software)
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2018-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [60928 2018-09-28] (Microsoft Windows Hardware Compatibility Publisher -> GenesysLogic)
R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [55960 2019-02-06] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-07-09] (Martin Malik - REALiX -> REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 INFUNLTD; C:\Windows\System32\drivers\SiUSBXp.sys [16384 2007-05-29] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [126680 2019-03-15] (Comodo Security Solutions, Inc. -> COMODO)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [51368 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 ksapi64; C:\Windows\system32\drivers\ksapi64.sys [81584 2018-07-11] (Beijing Kingsoft Security software Co.,Ltd -> Kingsoft Corporation)
R2 MEmuDrv; C:\Program Files (x86)\Microvirt\MEmuHyperv\MEmuDrv.sys [319304 2018-03-30] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R1 ndiskhaz; C:\Windows\System32\DRIVERS\ndiskhaz.sys [42424 2015-12-14] (Khalil Azzouzi -> Khalil Azzouzi)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [43088 2014-08-14] (Mainline Net Holdings Limited -> NT Kernel Resources)
S3 Neo_atlas; C:\Windows\System32\DRIVERS\Neo_0100.sys [38088 2018-09-16] (SoftEther Corporation -> SoftEther Corporation)
S3 Neo_atlastest; C:\Windows\System32\DRIVERS\Neo_0121.sys [38088 2018-09-17] (SoftEther Corporation -> SoftEther Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0099.sys [38088 2018-09-13] (SoftEther Corporation -> SoftEther Corporation)
S3 Neo_VPN2; C:\Windows\System32\DRIVERS\Neo_0100.sys [38088 2018-09-16] (SoftEther Corporation -> SoftEther Corporation)
R2 NEWDRIVER; C:\Windows\SysWow64\WinVDEdrv6.sys [197648 2018-03-22] (NewSoftwares.net Inc. SDN. BHD. -> )
R1 npcap; C:\Windows\System32\DRIVERS\npcap.sys [72400 2018-03-13] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [39104 2015-03-10] (IObit Information Technology -> IObit Information Technology)
S3 R-ImageDisk; G:\drive i\R-ImageDisk64.sys [181840 2013-01-15] (R-Tools Technology Inc. -> R-TT Inc.)
R1 RegHiveRecovery; C:\Windows\system32\drivers\RegHiveRecovery.sys [48304 2014-02-20] (Microsoft Corporation -> Microsoft Corporation)
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [321992 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [783808 2017-06-26] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [424384 2018-09-28] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [3709656 2015-01-06] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapwindscribe0901; C:\Windows\System32\DRIVERS\tapwindscribe0901.sys [45560 2018-06-19] (Windscribe Limited -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [60640 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [236352 2019-05-13] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174520 2019-05-13] (Oracle Corporation -> Oracle Corporation)
R3 vl810filter; C:\Windows\System32\DRIVERS\vl810filter.sys [17008 2011-11-17] (VIA Technologies Inc. -> VIA Labs, Inc.)
R3 VSBC7; C:\Windows\System32\DRIVERS\evsbc7.sys [36616 2011-10-31] (Eltima Software -> ELTIMA Software)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\8.1\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [40552 2013-08-22] (Microsoft Corporation -> Microsoft Corporation)
R1 WinFLAdrv; C:\Windows\SysWow64\WinFLAdrv.sys [36472 2018-03-22] (Newsoftwares.net, Inc SDN BHD -> )
S4 WinVDEDrv; C:\Windows\SysWow64\WinVDEdrv.sys [225680 2018-03-22] (NewSoftwares.net Inc. SDN. BHD. -> NewSoftwares.net, Inc.)
S1 CsNdisLWF; System32\Drivers\CsNdisLWF.sys [X]
U3 iswSvc; pas de ImagePath
U4 npcap_wifi; pas de ImagePath
U0 Partizan; system32\drivers\Partizan.sys [X]
S2 RHDISK_AMD64; \??\C:\Program Files (x86)\Rohos\RHDISK_AMD64.SYS [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-08 17:37 - 2020-02-08 17:37 - 000003136 _____ C:\Windows\system32\Tasks\{E56AFC35-2573-46C9-9836-834626570218}
2020-02-08 17:29 - 2020-02-08 17:29 - 000000975 _____ C:\Users\pl\Desktop 1\ZHP.lnk
2020-02-08 17:29 - 1999-11-12 05:11 - 000183808 _____ C:\Windows\SysWOW64\BDEADMIN.CPL
2020-02-08 17:29 - 1999-01-20 05:01 - 000210032 _____ C:\Windows\SysWOW64\DBCLIENT.DLL
2020-02-08 17:28 - 2020-02-08 17:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2020-02-08 17:28 - 2020-02-08 17:41 - 000000000 ____D C:\Program Files (x86)\ZebHelpProcess
2020-02-08 16:24 - 2020-02-08 16:27 - 000000000 ____D C:\Program Files (x86)\CleanUp!
2020-02-08 16:24 - 2020-02-08 16:24 - 000000000 ____D C:\Users\pl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CleanUp!
2020-02-08 16:24 - 2020-02-08 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleanUp!
2020-02-08 15:08 - 2020-02-08 15:08 - 000081693 _____ C:\Users\pl\Desktop 1\ZHPDiag.txt
2020-02-08 15:05 - 2020-02-08 15:05 - 000000814 _____ C:\Users\pl\Desktop 1\ZHPDiag.lnk
2020-02-08 14:56 - 2020-02-08 14:56 - 000000000 ____D C:\zzz nettoyage
2020-02-08 10:29 - 2020-02-08 16:38 - 000000040 _____ C:\Users\pl\Documents\Working Copy of Untitled 1.txt
2020-02-07 17:19 - 2020-02-07 17:19 - 000000853 _____ C:\Users\pl\Documents\objet soyons.txt
2020-02-07 17:19 - 2020-02-07 17:19 - 000000128 _____ C:\Users\pl\Documents\greve.txt
2020-02-07 12:06 - 2020-02-07 12:06 - 000076232 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2020-02-07 12:06 - 2020-02-07 12:06 - 000000262 _____ C:\Users\pl\Documents\Windows 7 Home Premium Key.txt
2020-02-07 11:02 - 2020-02-07 11:02 - 000000000 ____D C:\Windows\KMSServerService
2020-02-06 20:00 - 2020-02-06 20:00 - 000001370 _____ C:\Users\pl\Desktop 1\Outils Microsoft Office 2016.lnk
2020-02-06 14:32 - 2020-02-06 14:32 - 000000000 _____ C:\Windows\SysWOW64\tmp5D3E.changes
2020-02-06 13:59 - 2020-02-06 14:04 - 000000000 ____D C:\Users\pl\Desktop 1\adoption tribunal
2020-02-06 13:58 - 2020-02-07 21:23 - 000000000 ____D C:\Users\pl\AppData\LocalLow\Mozilla
2020-02-06 02:09 - 2020-02-06 02:09 - 000000000 ____D C:\Users\Default\AppData\Roaming\Clover.users
2020-02-06 02:09 - 2020-02-06 02:09 - 000000000 ____D C:\Users\Default\AppData\Roaming\Clover
2020-02-06 02:09 - 2020-02-06 02:09 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Clover.users
2020-02-06 02:09 - 2020-02-06 02:09 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Clover
2020-02-05 20:21 - 2020-02-05 21:49 - 000000000 ____D C:\Users\pl\Desktop 1\RECAP M1
2020-02-05 20:12 - 2020-02-05 20:21 - 000700300 _____ C:\Users\pl\Desktop 1\TOTAL RECAP 2020 RECAP MAIRIE HEURE KM PEAGE .pdf
2020-02-05 19:49 - 2020-02-05 21:10 - 000247861 _____ C:\Users\pl\Desktop 1\2020 RECAP MAIRIE HEURE KM PEAGE FORMATION.pdf
2020-02-05 18:27 - 2020-02-07 13:34 - 000002778 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-02-05 09:16 - 2020-02-05 09:16 - 000000107 _____ C:\Users\pl\Documents\sql modif.txt
2020-02-04 14:13 - 2020-02-04 14:13 - 000001366 _____ C:\Windows\system32\Blonde Pornstar Carmen Valentina & Dirty Blonde Housewife Kelly go down on each other's sweet juicy pussies & then take a lucky guy's cock into their welcoming holes! Major hot threesome!.mp4.lnk
2020-02-03 20:48 - 2020-02-03 20:48 - 000000000 ____D C:\Users\pl\AppData\Local\enchant
2020-02-03 20:47 - 2020-02-03 20:48 - 000000000 ____D C:\Users\pl\AppData\Roaming\polau26@sfr.fr
2020-02-03 18:56 - 2020-02-03 18:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Claws Mail
2020-02-03 18:55 - 2020-02-03 18:56 - 000000000 ____D C:\Program Files\Claws Mail
2020-02-03 18:52 - 2020-02-03 18:52 - 000000000 ____D C:\Users\pl\AppData\Roaming\Pegasus Mail
2020-02-03 18:51 - 2020-02-03 18:51 - 000000000 ____D C:\Users\pl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pegasus Mail
2020-02-03 18:51 - 2020-02-03 18:51 - 000000000 ____D C:\PMAIL
2020-02-03 18:46 - 2020-02-03 18:47 - 000001954 _____ C:\Windows\unins000.dat
2020-02-03 18:46 - 2020-02-03 18:46 - 001005278 _____ C:\Windows\unins000.exe
2020-02-03 15:46 - 2020-02-03 15:46 - 000000000 ____D C:\Users\pl\AppData\LocalLow\JP
2020-02-03 15:44 - 2020-02-03 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover
2020-02-03 15:43 - 2020-02-03 15:44 - 000000000 ____D C:\Program Files (x86)\Clover
2020-02-03 15:23 - 2020-02-08 14:48 - 000430976 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-03 14:53 - 2020-02-03 14:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BabelSoft
2020-02-03 14:53 - 2020-02-03 14:53 - 000000000 ____D C:\Program Files\Media Preview
2020-02-03 14:53 - 2020-02-03 14:53 - 000000000 ____D C:\Program Files (x86)\Media Preview
2020-02-02 18:29 - 2020-02-07 21:31 - 000126496 _____ C:\Users\pl\AppData\Local\GDIPFONTCACHEV1.DAT
2020-02-02 16:30 - 2020-02-02 16:30 - 000001256 _____ C:\Windows\system32\Britney Amber was getting ready for a night out but thought of having a naughty play first! While being in a sexy, lacy outfit, busty blondie enjoyed stuffing her pink pussy with a b.mp4.lnk
2020-02-02 16:29 - 2020-02-02 16:29 - 000001292 _____ C:\Windows\system32\Big Butt Nina Kayy needs Mr. Juan's hard cock, who is cheating on his wife! This unfaithful Latino fucks thick Nina while Agent Sara Jay films the everything! Full Video & more Nina &.mp4.lnk
2020-01-31 10:04 - 2020-01-31 15:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-01-30 12:59 - 2020-01-30 12:59 - 000001346 _____ C:\Windows\system32\Lucky Rubber Torso Toy, Chad, gets to shove his headless cock into thick phat Vicky Jay until she starts cumming like she's in heat! Full Video & Vickie Live @ TheVickieJay.co.mp4.lnk
2020-01-29 21:50 - 2019-10-13 21:16 - 000915280 _____ C:\Users\pl\Desktop 1\mairie km 2020.pdf
2020-01-28 09:59 - 2020-02-06 23:08 - 000000000 ____D C:\Users\pl\AppData\Local\CrashDumps
2020-01-28 09:59 - 2020-01-28 09:59 - 000000927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover.lnk
2020-01-28 09:20 - 2020-01-28 09:21 - 000000000 ____D C:\Users\pl\Desktop 1\LUNETTES
2020-01-27 17:54 - 2019-11-02 17:33 - 000001885 _____ C:\Users\pl\Desktop 1\Malwarebytes.lnk
2020-01-27 13:04 - 2020-02-07 13:34 - 000003854 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1523632851
2020-01-26 17:33 - 2020-01-26 17:36 - 000000712 _____ C:\Users\pl\Documents\riz au lait.txt
2020-01-26 10:55 - 2020-01-26 10:55 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-01-26 10:34 - 2020-01-26 10:34 - 000000000 ____D C:\Windows\system32\Tasks\WPD
2020-01-25 19:52 - 2020-01-25 19:52 - 000000000 ____D C:\Users\pl\AppData\Roaming\WiseUpdate
2020-01-25 19:03 - 2020-01-25 19:03 - 000000000 ____D C:\Users\pl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft OpenedFilesView
2020-01-25 18:46 - 2020-01-25 18:46 - 000000000 ____D C:\Users\pl\AppData\Local\Clover
2020-01-25 18:02 - 2020-02-08 11:49 - 000000000 ____D C:\Users\pl\AppData\LocalLow\Clover
2020-01-25 18:02 - 2020-01-25 18:02 - 000000000 ____D C:\Users\pl\AppData\LocalLow\Clover.users
2020-01-25 17:39 - 2020-01-25 17:39 - 000000000 _____ C:\Users\pl\0
2020-01-25 10:13 - 2020-01-27 17:30 - 000000000 ____D C:\Users\pl\Desktop 1\DIVERS 2020
2020-01-25 09:49 - 2020-01-25 09:49 - 000000137 _____ C:\Users\pl\Documents\Fauteuil roulant éléctrique.txt
2020-01-25 09:48 - 2020-01-25 09:48 - 000000545 _____ C:\Users\pl\Documents\mam agf prelevement.txt
2020-01-25 09:35 - 2020-01-25 09:35 - 000000101 _____ C:\Users\pl\Documents\dll a voir.txt
2020-01-25 09:04 - 2020-01-25 09:04 - 000024730 _____ C:\Users\pl\Documents\cc_20200125_090411.reg
2020-01-25 09:03 - 2020-01-25 09:03 - 000028990 _____ C:\Users\pl\Documents\cc_20200125_090332.reg
2020-01-24 15:25 - 2020-02-07 11:04 - 000000000 ____D C:\Users\pl\Desktop 1\jac omri avocat lyon 2020
2020-01-24 15:06 - 2020-01-24 15:06 - 000000078 _____ C:\Users\pl\Documents\JAC RAPPORT K.txt
2020-01-22 16:17 - 2020-01-22 18:03 - 000000000 ____D C:\Users\pl\Documents\ShareX
2020-01-22 16:17 - 2020-01-22 16:17 - 000000744 _____ C:\Users\pl\Desktop 1\ShareX.lnk
2020-01-22 16:17 - 2020-01-22 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShareX
2020-01-22 16:17 - 2020-01-22 16:17 - 000000000 ____D C:\Program Files\ShareX
2020-01-21 09:54 - 2020-01-21 09:54 - 000000108 _____ C:\Users\pl\Documents\MAMI INFO ASSURANCE.txt
2020-01-20 18:00 - 2020-01-20 18:00 - 000000000 ____D C:\Program Files\Easy Context Menu
2020-01-18 15:01 - 2020-01-18 15:01 - 000000000 ____D C:\Users\pl\AppData\Local\FirmwareFinder
2020-01-17 11:53 - 2020-01-17 12:58 - 000000669 _____ C:\Users\pl\Documents\mama michel secu info.txt
2020-01-17 09:53 - 2020-01-17 09:53 - 000000066 _____ C:\Users\pl\Documents\111eovi.txt
2020-01-14 07:46 - 2020-01-14 07:46 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignae12ee69b7c5e5b4
2020-01-14 07:46 - 2020-01-14 07:46 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignaddddad7d25e1b74
2020-01-14 07:38 - 2020-01-14 07:38 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignf0aa4f526881796c
2020-01-14 07:38 - 2020-01-14 07:38 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignb8fe7a361f2b9316
2020-01-13 09:42 - 2019-10-03 12:00 - 000355720 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-01-10 16:16 - 2020-01-10 16:16 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign7af65d1d88ab3f23
2020-01-10 16:16 - 2020-01-10 16:16 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign54654ffdf384876f
2020-01-10 16:16 - 2020-01-10 16:16 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign367390ace4b9398c
2020-01-10 16:08 - 2020-01-10 16:08 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsigna11bae1a59f97cc7
2020-01-10 16:08 - 2020-01-10 16:08 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign1e14232c3504cbee
2020-01-10 15:56 - 2020-01-10 15:56 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsigna4cbb19b16cf7488
2020-01-10 15:56 - 2020-01-10 15:56 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign8b06b0fd01e003c7
2020-01-10 15:52 - 2020-01-10 15:52 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign698f2e90f5679552
2020-01-10 15:50 - 2020-01-10 15:50 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignabf6736513a7f8de
2020-01-10 15:50 - 2020-01-10 15:50 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign5267e2e9ae86bd54
2020-01-10 15:43 - 2020-01-10 15:43 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignfcf9b001c7ad3edc
2020-01-10 15:43 - 2020-01-10 15:43 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign748e5bfbeed0bc89
2020-01-10 15:43 - 2020-01-10 15:43 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign4f98387b486a1400
2020-01-10 15:20 - 2020-01-10 15:20 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignfb29c1bba8f4c42e
2020-01-10 15:16 - 2020-01-10 15:16 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsignda27c5687e154227
2020-01-10 15:16 - 2020-01-10 15:16 - 000000000 ____D C:\Users\pl\AppData\Local\Tempzxpsign46dc10a6ad414406
2020-01-10 08:49 - 2020-02-03 15:39 - 000000000 ____D C:\Users\pl\Desktop 1\Z EMAIL

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-02-08 19:06 - 2019-06-14 02:00 - 000000000 ____D C:\FRST
2020-02-08 18:30 - 2017-07-09 18:39 - 000000000 ____D C:\Users\pl\AppData\Local\JDownloader v2.0
2020-02-08 18:27 - 2018-01-07 22:55 - 024453486 _____ C:\Windows\system32\Drivers\fvstore.dat
2020-02-08 17:29 - 2019-03-14 17:46 - 000000000 ___RD C:\Users\pl\Desktop 1
2020-02-08 17:04 - 2009-07-14 05:45 - 000032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-08 17:04 - 2009-07-14 05:45 - 000032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-08 16:58 - 2017-07-11 09:35 - 000000000 ____D C:\Program Files (x86)\Samsung
2020-02-08 16:54 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-08 16:52 - 2018-09-28 19:39 - 000000000 ____D C:\Users\pl\AppData\Roaming\IObit
2020-02-08 16:52 - 2018-01-10 10:09 - 000000000 ____D C:\Users\pl\AppData\Roaming\Hewlett-Packard
2020-02-08 16:52 - 2018-01-09 17:54 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2020-02-08 16:52 - 2018-01-09 17:54 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2020-02-08 16:51 - 2018-03-27 10:42 - 000000000 ____D C:\AdwCleaner
2020-02-08 16:46 - 2018-09-04 17:05 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-02-08 16:42 - 2019-03-13 12:35 - 000000000 ____D C:\Users\pl\AppData\Roaming\Dexpot
2020-02-08 16:25 - 2019-07-16 22:11 - 000000000 ____D C:\temp
2020-02-08 15:08 - 2018-11-10 12:58 - 000000000 ____D C:\Users\pl\AppData\Roaming\ZHP
2020-02-08 15:05 - 2018-11-10 12:58 - 000000000 ____D C:\Users\pl\AppData\Local\ZHP
2020-02-08 15:03 - 2018-04-13 16:20 - 000000000 ____D C:\Program Files\Opera
2020-02-07 16:28 - 2017-07-17 23:37 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-07 16:28 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-02-07 16:21 - 2017-07-17 23:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-07 16:21 - 2017-07-17 23:41 - 000000000 ____D C:\Windows\SHELLNEW
2020-02-07 15:43 - 2011-04-12 10:16 - 000881840 _____ C:\Windows\system32\perfh00C.dat
2020-02-07 15:43 - 2011-04-12 10:16 - 000200186 _____ C:\Windows\system32\perfc00C.dat
2020-02-07 15:43 - 2009-07-14 06:13 - 002045334 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-07 15:43 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-02-07 13:34 - 2019-09-28 08:43 - 000003326 _____ C:\Windows\system32\Tasks\SidebarExecute
2020-02-07 13:34 - 2017-12-06 14:18 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-02-06 23:46 - 2017-07-08 22:39 - 002020402 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-02-06 23:05 - 2017-07-12 06:57 - 000000000 ____D C:\Users\pl\AppData\Roaming\KeePass
2020-02-06 18:46 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\System
2020-02-06 18:46 - 2009-07-14 03:34 - 000000565 _____ C:\Windows\win.ini
2020-02-06 18:45 - 2017-07-09 18:29 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-02-06 18:45 - 2017-07-09 18:28 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-02-06 18:14 - 2019-09-13 09:59 - 000000000 ____D C:\z-----tuti illustrator
2020-02-06 18:07 - 2017-09-18 21:03 - 000000000 ____D C:\decompress
2020-02-06 14:46 - 2017-07-17 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-02-06 14:22 - 2018-02-03 14:19 - 000000000 ____D C:\Users\pl\AppData\Local\Deployment
2020-02-06 13:58 - 2017-07-10 23:34 - 000000000 ____D C:\Users\pl\AppData\Roaming\Thunderbird
2020-02-06 13:58 - 2017-07-08 20:05 - 000000000 ____D C:\Users\pl\AppData\Roaming\Mozilla
2020-02-06 13:35 - 2017-07-24 18:51 - 000000000 ____D C:\Users\pl\AppData\Roaming\MPC-HC
2020-02-05 21:56 - 2017-07-11 09:25 - 000000000 ____D C:\Users\pl\AppData\Local\PDFCreator
2020-02-05 17:00 - 2018-01-07 22:46 - 000000000 ____D C:\Users\pl\AppData\Roaming\Comodo
2020-02-05 08:51 - 2019-12-21 21:29 - 000054782 _____ C:\Users\pl\Documents\travail 2017.kdbx
2020-02-03 20:48 - 2019-09-24 16:50 - 000000000 ____D C:\Users\pl\AppData\Roaming\Claws-mail
2020-02-02 17:28 - 2019-07-27 13:52 - 000000000 ____D C:\Users\pl\AppData\Roaming\Wise Disk Cleaner
2020-01-31 12:26 - 2018-04-15 19:22 - 000000000 ____D C:\Users\pl\AppData\Roaming\vlc
2020-01-28 10:04 - 2017-07-17 14:26 - 000000000 ____D C:\Users\pl\AppData\Roaming\Free Download Manager
2020-01-25 19:59 - 2019-03-14 17:24 - 000000000 ___RD C:\Users\pl\Desktop 3
2020-01-25 19:57 - 2019-12-21 19:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-01-25 19:57 - 2019-11-01 12:34 - 000000000 ____D C:\Users\pl\AppData\Local\WEB2Print
2020-01-25 19:57 - 2019-09-27 17:22 - 000000000 ____D C:\Users\pl\AppData\Local\Rohos
2020-01-25 19:57 - 2018-06-24 19:22 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 7.0
2020-01-25 19:57 - 2017-10-11 16:22 - 000000000 ____D C:\ProgramData\tmp
2020-01-25 19:55 - 2018-11-19 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2020-01-25 19:03 - 2018-11-05 19:15 - 000000000 ____D C:\Program Files (x86)\NirSoft
2020-01-25 17:39 - 2017-07-08 18:55 - 000000000 ___SD C:\Users\pl
2020-01-25 10:12 - 2019-03-14 17:24 - 000000000 ____D C:\Users\pl\Desktop 4
2020-01-25 08:53 - 2017-07-18 21:22 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-01-24 17:55 - 2019-09-15 18:32 - 000000000 ____D C:\41
2020-01-24 14:34 - 2019-04-18 19:13 - 000000000 ____D C:\Program Files (x86)\MSECACHE
2020-01-23 14:46 - 2019-04-18 19:06 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2020-01-23 14:46 - 2019-04-18 19:06 - 000000918 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2020-01-23 14:46 - 2019-04-18 19:06 - 000000000 ____D C:\Program Files\FreeFileSync
2020-01-20 17:59 - 2017-07-09 19:22 - 000000000 ____D C:\LOGICIEL M
2020-01-14 07:45 - 2017-08-31 18:08 - 000000034 _____ C:\Users\pl\AppData\Roaming\AdobeWLCMCache.dat
2020-01-13 14:30 - 2019-01-03 11:24 - 000000039 _____ C:\Users\pl\Documents\oney.txt
2020-01-10 15:55 - 2017-10-10 12:16 - 000000673 _____ C:\Users\pl\AppData\Roaming\Planche contact II.xml

==================== Fichiers à la racine de certains dossiers ========

2019-06-21 23:52 - 2018-09-12 14:15 - 000000160 _____ () C:\ProgramData\dbdacm.dll
2019-11-04 21:25 - 2019-11-04 21:25 - 074610680 _____ () C:\Users\pl\mydoc3d.exe
2017-01-14 12:37 - 2017-01-14 12:37 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2019-11-12 12:01 - 2019-11-12 12:01 - 000000288 _____ () C:\Users\pl\AppData\Roaming\.backup.dm
2017-08-31 18:08 - 2020-01-14 07:45 - 000000034 _____ () C:\Users\pl\AppData\Roaming\AdobeWLCMCache.dat
2018-07-08 10:45 - 2018-07-08 11:29 - 000000019 _____ () C:\Users\pl\AppData\Roaming\ArchiFacile.json
2018-06-13 23:56 - 2019-09-28 09:17 - 000001203 _____ () C:\Users\pl\AppData\Roaming\Ashampoo Gadge It event.log
2017-10-10 12:16 - 2020-01-10 15:55 - 000008636 _____ () C:\Users\pl\AppData\Roaming\ContactSheetII.log
2019-08-26 16:54 - 2019-08-26 16:54 - 000000049 ____H () C:\Users\pl\AppData\Roaming\eMail Extractor registration.ini
2017-12-24 17:16 - 2017-12-24 17:16 - 000000004 _____ () C:\Users\pl\AppData\Roaming\paclan.ini
2017-10-10 12:16 - 2020-01-10 15:55 - 000000673 _____ () C:\Users\pl\AppData\Roaming\Planche contact II.xml
2020-01-02 17:44 - 2020-01-02 17:44 - 000000112 _____ () C:\Users\pl\AppData\Roaming\Préfs JP2K CS6
2014-06-02 09:38 - 2014-06-02 09:38 - 000001163 _____ () C:\Users\pl\AppData\Roaming\ShiftN.ini
2019-04-26 14:20 - 2019-04-26 14:20 - 000000290 _____ () C:\Users\pl\AppData\Local\config.ini
2018-06-24 15:56 - 2018-06-24 15:56 - 000000001 _____ () C:\Users\pl\AppData\Local\llftool.4.40.agreement
2017-12-12 21:43 - 2017-12-23 13:43 - 000000068 _____ () C:\Users\pl\AppData\Local\oPkLgHcDYt
2017-10-22 13:23 - 2017-10-22 13:23 - 000000718 _____ () C:\Users\pl\AppData\Local\recently-used.xbel
2017-11-13 20:19 - 2019-09-05 13:54 - 000007619 _____ () C:\Users\pl\AppData\Local\Resmon.ResmonCfg
2018-01-18 16:14 - 2019-04-26 14:20 - 000000034 _____ () C:\Users\pl\AppData\Local\simedit.log
2019-08-09 01:05 - 2019-08-09 01:05 - 000000000 _____ () C:\Users\pl\AppData\Local\zenmap.exe.log

==================== FCheck ================================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

FCheck: C:\Windows\SysWOW64\C56TCLAS.DLL [2019-04-06] <==== ATTENTION (zéro octet Fichier/Dossier)

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2020-02-08 12:56
==================== Fin de FRST.txt ========================