Publicité
Publicité
Commentaire : FRST.txt
Format du document : text/plain
Prévisualisation
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2947681316-3453812307-2936987856-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2947681316-3453812307-2936987856-1001\...\Run: [AvastBrowserAutoLaunch_1A136014D2A0B8A1FB17499CB34625E2] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-08-31] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-2947681316-3453812307-2936987856-1001\...\Run: [GoToMeeting] => C:\Users\Maya\AppData\Local\GoToMeeting\17359\g2mstart.exe [32256 2020-04-29] (LogMeIn, Inc. -> LogMeIn, Inc.)
HKU\S-1-5-21-2947681316-3453812307-2936987856-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91667312 2020-05-12] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\...\Windows x64\Print Processors\Canon MP495 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA9.DLL [28672 2010-08-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP495 series: C:\WINDOWS\system32\CNMLMA9.DLL [361472 2010-08-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP495 series XPS: C:\WINDOWS\system32\CNMXLMA9.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-10-05] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5674.83\Installer\chrmstp.exe [2020-09-14] (Avast Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02AC471D-6327-44EE-9ABE-D45BAA82D829} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145768 2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {0BA3FDBF-75D3-406F-BA3D-B5E0EA674F51} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3339872 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
Task: {0BC680F2-5E28-4AE4-8DA0-2E803F0ADEBB} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {12DB06DC-E925-48B7-833C-F2F36D735994} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {154B6E56-BD73-4DC1-957F-41314774864D} - System32\Tasks\G2MUploadTask-S-1-5-21-2947681316-3453812307-2936987856-1001 => C:\Users\Maya\AppData\Local\GoToMeeting\18705\g2mupload.exe [31320 2020-09-30] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {1FED3521-A1AF-448A-B513-516856E98923} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1FF33E74-E72B-4509-9776-053A6F2E283B} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [181360 2013-10-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {28CDEC6E-5950-482F-B6A8-EA716D6EAE47} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {2EEC35E6-CB35-4F2C-A7F7-DCD7E2D09421} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552 2015-03-23] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {332D5446-C5D2-4978-AB18-F0DCDD491F85} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {48154834-F356-4199-8DD3-C1E170F4B0DC} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {4A4EC842-93F3-4406-A5EB-F53CA726C12D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145768 2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D446139-F8AC-4827-BB87-7B6204A3E149} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {4EDA08F0-1131-4B22-8F53-4C27A47CDB36} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [12288 2015-02-12] () [Fichier non signé]
Task: {5014BE0D-F429-4004-BC5F-9EEAA827E9BB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {5121B3EE-E6BD-44B8-8F33-DD44AC5C2A7E} - System32\Tasks\ASUS InstantOn Config => C:\Program Files\ASUS\P4G\InsOnCfg.exe
Task: {54429283-45F0-44AA-B0A0-431C614196ED} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5885297B-5E33-4F5E-BF57-14C440D9A633} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5DC5F46D-0C9A-4016-A334-D641B7C772F1} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55880 2013-10-07] (ASUSTeK Computer Inc. -> ASUS)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7788B68F-E645-4A57-AB55-17F5B0F3FB2D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-08-31] (Avast Software s.r.o. -> AVAST Software)
Task: {77C14D28-F21C-4145-B50F-DB838B5A9A27} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {80F442CC-8176-4CA7-8475-7722D7B82D13} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1741416 2020-10-04] (Avast Software s.r.o. -> Avast Software)
Task: {85A8E71D-0B32-4424-AD76-D724B42F7B1A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {93737004-92E7-4EE5-9760-A12C95639DA7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-08] (Google Inc -> Google Inc.)
Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {9BE77CAA-AEFD-4758-AD3B-AE714E870F20} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {9D076578-CB5C-4CE7-9C04-D1C3AEA101E9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {A84CF097-B401-4340-8E86-B30A125E57B2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {AA8F2D37-28CD-472B-BD07-E4371BEA39DD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1910664 2020-08-31] (Avast Software s.r.o. -> AVAST Software)
Task: {B5EE6B09-CC67-4EB7-B240-3B34B4AC8896} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {B62B1075-1B1C-4B14-A621-29D2C62E0879} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-25] (AVAST Software s.r.o. -> AVAST Software)
Task: {B7D52203-1171-4D62-8222-0894D81D2FCE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {BBC3A2A4-0FD5-44C4-ACD1-6521FF3D6107} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764408 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {BBCF0845-C70E-4182-9A69-4B326FCDD044} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5057952 2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6A64A2E-1749-4ACF-9F59-8F39F0C491DA} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C8E15274-5C63-4010-97C5-DAC7BD5E096D} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552 2015-03-23] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CCE79D89-883D-4096-B9DC-8D44E105183E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CE9940A1-EA45-48D6-AADB-9D864EB2B67A} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-11-04] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
Task: {DB5F45E8-D1D3-4558-BEA9-AE4BEAC83F1C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-08] (Google Inc -> Google Inc.)
Task: {E938912D-4D55-4F24-A19B-B3D70E27BBAD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22764408 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB3733DA-0122-487E-BED2-C89A3A826A5F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5057952 2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC58BABC-986B-4ED5-BC7F-43D34B88CCBF} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648 2013-08-29] (ASUSTeK Computer Inc. -> ASUS)
Task: {EC693281-ECD0-4EE5-ADA1-31A76D94082E} - System32\Tasks\G2MUpdateTask-S-1-5-21-2947681316-3453812307-2936987856-1001 => C:\Users\Maya\AppData\Local\GoToMeeting\18705\g2mupdate.exe [31320 2020-09-30] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {ED2FF45C-1166-4900-B94B-CA3A6C3FD506} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EE96B719-A248-409A-90A8-86A9699ADBD2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2947681316-3453812307-2936987856-1001.job => C:\Users\Maya\AppData\Local\GoToMeeting\18705\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2947681316-3453812307-2936987856-1001.job => C:\Users\Maya\AppData\Local\GoToMeeting\18705\g2mupload.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{74b18145-91c2-4228-a665-d259bdbd312a}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{e0b03eda-79d7-4719-b0cf-5c8978b7fb56}: [DhcpNameServer] 192.168.0.254
Edge:
======
Edge Profile: C:\Users\Maya\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-05]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-10-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default [2020-10-05]
CHR Extension: (Slides) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-05]
CHR Extension: (Docs) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-05]
CHR Extension: (Google Drive) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-05]
CHR Extension: (YouTube) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-05]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-10-05]
CHR Extension: (Sheets) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-05]
CHR Extension: (Protection Web Avira) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-10-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-05]
CHR Extension: (Avast Online Security) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-10-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-10-05]
CHR Extension: (Gmail) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-05]
CHR Extension: (Chrome Media Router) - C:\Users\Maya\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-05]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUSTeK Computer Inc. -> ASUS)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [Fichier non signé]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6514072 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-25] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [356824 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1065456 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-08-25] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\85.0.5674.83\elevation_service.exe [1080640 2020-08-31] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8838528 2020-09-04] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205880 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [514448 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [466232 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216816 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [323272 2020-07-22] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-11] (Microsoft Corporation) [Fichier non signé]
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] (ASUSTeK Computer Inc. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ===================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-10-05 13:33 - 2020-10-05 13:37 - 000023771 _____ C:\Users\Maya\Desktop\FRST.txt
2020-10-05 13:31 - 2020-10-05 13:35 - 000000000 ____D C:\FRST
2020-10-05 13:29 - 2020-10-05 13:29 - 002299392 _____ (Farbar) C:\Users\Maya\Desktop\FRST64.exe
2020-10-05 12:45 - 2020-10-05 12:45 - 000299736 _____ C:\Users\Maya\Desktop\ZHPDiag.txt
2020-10-05 12:32 - 2020-10-05 12:32 - 000000906 _____ C:\Users\Maya\Desktop\ZHPSuite.lnk
2020-10-05 12:30 - 2020-10-05 12:31 - 003435904 _____ (Nicolas Coolman) C:\Users\Maya\Downloads\ZHPSuite.exe
2020-10-05 09:21 - 2020-10-05 09:21 - 000025841 _____ C:\Users\Maya\Desktop\ZHPCleaner (R).html
2020-10-05 09:21 - 2020-10-05 09:21 - 000015437 _____ C:\Users\Public\Desktop\ZHPCleaner (R).txt
2020-10-05 08:55 - 2020-10-05 09:53 - 000008644 _____ C:\Users\Maya\Desktop\ZHPCleaner (S).html
2020-10-05 08:55 - 2020-10-05 09:53 - 000002263 _____ C:\Users\Public\Desktop\ZHPCleaner (S).txt
2020-10-05 08:28 - 2020-10-05 08:28 - 000000916 _____ C:\Users\Maya\Desktop\ZHPCleaner.lnk
2020-10-05 08:27 - 2020-10-05 08:28 - 003329920 _____ (Nicolas Coolman) C:\Users\Maya\Downloads\ZHPCleaner.exe
2020-10-05 08:22 - 2020-10-05 08:22 - 000301949 _____ C:\Users\Public\Desktop\ZHPDiag.txt
2020-10-05 08:11 - 2020-10-05 12:45 - 000000000 ____D C:\Users\Maya\AppData\Roaming\ZHP
2020-10-05 08:11 - 2020-10-05 12:32 - 000000000 ____D C:\Users\Maya\AppData\Local\ZHP
2020-10-05 08:11 - 2020-10-05 08:11 - 000000906 _____ C:\Users\Maya\Desktop\ZHPDiag.lnk
2020-10-05 08:10 - 2020-10-05 08:10 - 003273600 _____ (Nicolas Coolman) C:\Users\Maya\Downloads\ZHPDiag3.exe
2020-10-05 08:02 - 2020-10-05 08:02 - 001170192 _____ (So Montreal Ltd) C:\Users\Maya\Downloads\Setup_2YT7P-V2N4B-KX246-83KHG-2BBCY__fr_FR___22446 (1).exe
2020-10-05 07:55 - 2020-10-05 07:55 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000002395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-10-05 07:55 - 2020-10-05 07:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-10-05 07:53 - 2020-10-05 07:53 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-10-05 07:20 - 2020-10-05 07:54 - 000000000 ____D C:\Program Files\Microsoft Office
2020-10-05 07:20 - 2020-10-05 07:20 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-10-05 07:19 - 2020-10-05 07:19 - 006462032 _____ (Microsoft Corporation) C:\Users\Maya\Downloads\OfficeSetup.exe
2020-10-04 18:57 - 2020-10-04 18:58 - 001170192 _____ (So Montreal Ltd) C:\Users\Maya\Downloads\Setup_2YT7P-V2N4B-KX246-83KHG-2BBCY__fr_FR___22446.exe
2020-10-04 17:44 - 2020-10-04 17:45 - 006526760 _____ (Microsoft Corporation) C:\Users\Maya\Downloads\Setup.x86.fr-FR_ProPlus2019Retail_2YT7P-V2N4B-KX246-83KHG-2BBCY_TX_PR_.exe
2020-10-04 17:44 - 2020-10-04 17:44 - 000000053 _____ C:\Users\Maya\Documents\Clé Mircrosoft Office.txt
2020-10-04 17:09 - 2020-10-04 17:10 - 000000000 ____D C:\Users\Maya\Documents\CC Cleaner
2020-10-01 20:29 - 2020-10-01 20:31 - 133763588 _____ C:\Users\Maya\Downloads\Projet Farhan Bolbol (Le Moulin) 2020 (2).mp4
2020-10-01 20:21 - 2020-10-01 20:25 - 133763588 _____ C:\Users\Maya\Downloads\Projet Farhan Bolbol (Le Moulin) 2020 (1).mp4
2020-10-01 20:18 - 2020-10-01 20:23 - 133763588 _____ C:\Users\Maya\Downloads\Projet Farhan Bolbol (Le Moulin) 2020.mp4
2020-09-30 19:50 - 2020-09-30 19:50 - 000000000 ____D C:\Users\Maya\Documents\Nouveau dossier
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-10-05 13:40 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-05 13:36 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-10-05 13:30 - 2019-11-11 21:40 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4E7BAF59-C769-48BE-903D-0F6AF237806A}
2020-10-05 13:26 - 2019-11-11 21:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-05 12:06 - 2019-11-11 21:39 - 000049533 _____ C:\WINDOWS\diagwrn.xml
2020-10-05 12:06 - 2019-11-11 21:39 - 000049533 _____ C:\WINDOWS\diagerr.xml
2020-10-05 12:00 - 2019-11-11 21:40 - 000003544 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update1
2020-10-05 12:00 - 2019-11-11 21:40 - 000003534 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update2
2020-10-05 10:02 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration
2020-10-05 10:01 - 2019-12-07 17:30 - 000000000 ___HD C:\$WINDOWS.~BT
2020-10-05 08:35 - 2019-08-13 11:22 - 000000000 ___DC C:\WINDOWS\Panther
2020-10-05 08:04 - 2019-11-10 18:42 - 000000000 ____D C:\Users\Maya\Documents\Discours avant départ
2020-10-05 07:54 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-10-04 23:11 - 2014-07-26 18:30 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-04 23:02 - 2014-07-26 18:04 - 000000074 _____ C:\Users\Maya\AppData\Roaming\sp_data.sys
2020-10-04 23:00 - 2017-08-25 10:04 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2020-10-04 22:58 - 2019-11-11 21:40 - 000002926 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2020-10-04 22:58 - 2019-11-11 21:40 - 000002332 _____ C:\WINDOWS\system32\Tasks\ASUS P4G
2020-10-04 22:58 - 2019-11-11 21:40 - 000002258 _____ C:\WINDOWS\system32\Tasks\AsusVibeSchedule
2020-10-04 22:58 - 2019-11-11 21:40 - 000002248 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2020-10-04 22:58 - 2019-11-11 21:40 - 000002130 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ColorU
2020-10-04 22:58 - 2019-11-11 21:40 - 000002114 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2020-10-04 22:57 - 2019-11-11 21:40 - 000002034 _____ C:\WINDOWS\system32\Tasks\ASUS InstantOn Config
2020-10-04 22:56 - 2016-04-24 00:05 - 000000000 __SHD C:\Users\Maya\IntelGraphicsProfiles
2020-10-04 22:53 - 2019-11-11 21:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-04 22:53 - 2019-11-11 21:06 - 000438192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-04 22:52 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-04 22:48 - 2019-11-11 20:12 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-10-04 22:48 - 2016-02-13 15:01 - 000000000 ____D C:\WINDOWS\ShellNew
2020-10-04 22:45 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-04 22:45 - 2012-07-26 07:26 - 000000108 _____ C:\WINDOWS\win.ini
2020-10-04 22:30 - 2019-04-14 17:51 - 000000000 ____D C:\Users\Maya\AppData\Local\D3DSCache
2020-10-04 20:19 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-10-04 19:33 - 2018-11-14 21:13 - 000000000 ____D C:\Users\Maya\AppData\Local\CrashDumps
2020-10-04 19:08 - 2019-11-11 21:28 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-04 19:08 - 2019-03-19 14:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat
2020-10-04 19:08 - 2019-03-19 14:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat
2020-10-04 19:02 - 2017-11-15 19:37 - 000000000 ____D C:\Users\Maya\AppData\Local\ConnectedDevicesPlatform
2020-10-04 19:01 - 2020-04-29 15:08 - 000000646 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2947681316-3453812307-2936987856-1001.job
2020-10-04 19:01 - 2020-04-29 15:08 - 000000550 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2947681316-3453812307-2936987856-1001.job
2020-10-04 18:23 - 2020-04-29 15:08 - 000000000 ____D C:\Users\Maya\AppData\Local\GoToMeeting
2020-10-04 17:17 - 2020-08-09 18:52 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-04 17:17 - 2020-08-09 18:52 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-04 17:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-04 16:54 - 2019-11-11 21:40 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-04 16:54 - 2017-05-18 23:28 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-04 16:40 - 2020-05-08 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-10-01 20:35 - 2020-08-09 18:52 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-01 20:35 - 2020-08-09 18:52 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-01 20:35 - 2020-04-29 15:08 - 000003244 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-2947681316-3453812307-2936987856-1001
2020-10-01 20:35 - 2020-04-29 15:08 - 000003148 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-2947681316-3453812307-2936987856-1001
2020-10-01 20:35 - 2019-11-11 21:40 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-01 20:35 - 2019-11-11 21:40 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-01 20:35 - 2019-11-11 21:40 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2947681316-3453812307-2936987856-1001
2020-10-01 20:35 - 2019-11-11 21:40 - 000002752 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2947681316-3453812307-2936987856-1001
2020-10-01 20:35 - 2019-11-11 21:40 - 000002750 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2947681316-3453812307-2936987856-500
2020-10-01 20:35 - 2019-11-11 21:40 - 000002428 _____ C:\WINDOWS\system32\Tasks\Update Checker
2020-10-01 20:35 - 2019-11-11 21:40 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-01 20:35 - 2019-11-11 21:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-10-01 20:16 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-01 17:19 - 2018-08-25 14:17 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-10-01 17:19 - 2018-08-25 14:17 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-10-01 15:23 - 2019-11-11 21:40 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-10-01 15:19 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-01 15:19 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
==================== Fichiers à la racine de certains dossiers ========
2014-07-26 18:04 - 2020-10-04 23:02 - 000000074 _____ () C:\Users\Maya\AppData\Roaming\sp_data.sys
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================