cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-02-2021
Exécuté par fred (administrateur) sur DESKTOP-1FK3BDR (ASUSTeK COMPUTER INC. X751NV) (20-02-2021 13:30:00)
Exécuté depuis C:\Users\fred\Downloads
Profils chargés: fred
Platform: Windows 10 Home Version 2004 19041.804 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <31>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [324352 2017-12-18] (ESET, spol. s r.o. -> ESET)
HKU\S-1-5-21-3548980462-1377514853-3215692515-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1942400 2021-02-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-19] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {05D52EBC-D3EB-43DB-95B1-0FA88819FB9E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2016-10-12] (ASUS) [Fichier non signé]
Task: {078CC815-92AF-4B51-B7EC-A7314635DDC0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {197FA6D9-F89E-4AB0-BDF5-FA3DFF41A2DD} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {27FD6F36-19C3-4A74-8A2E-0831B4E805BE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-10] (Google Inc -> Google Inc.)
Task: {2F3025A7-77E5-4B22-A498-15D1443D370C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {309E3EF8-8C76-4B15-8BA2-267A6707F7A7} - System32\Tasks\WpsKtpcntrQingTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exe [1531136 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {4EB97F04-1CD5-461E-ACDF-F9AD81394BC9} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {526B461F-F78A-4DA3-BEE2-98A3AC71F919} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049600 2017-09-18] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {5EE08B53-5F87-4A5E-86DF-72BD5B745C05} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-07] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {6FA2527B-3733-4EAF-986C-B5BE6D5366E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {707AC37A-85EA-4180-A24C-03257F8836F6} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {77C619E9-B8EF-4088-BB4B-73E059C21EF3} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84364720-746A-4FBA-8CDE-E29E09FAF40A} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {8C981C09-29C3-47E3-8A91-680D49323326} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {972C7603-BCFC-4FBA-AF33-A245DFEE28EC} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [855352 2016-05-23] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {9967C3A2-2ACC-42AE-9C65-620221A71896} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16735744 2016-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {AB3FF189-92FD-4E0D-80F5-3F04C77A7770} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2862440 2021-02-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0ABCCE0-F6AF-4938-806C-367629D6D6F0} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1472000 2016-11-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B92F076B-C16A-4393-A366-E44919D032E2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DE21C25E-22C4-4533-9545-D017C385C9BA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-10] (Google Inc -> Google Inc.)
Task: {E39B04FB-3166-494E-B519-06F60D7B1BBC} - System32\Tasks\WpsExternal_20161111081738 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe [516352 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {EC79E2CF-0150-4953-A095-CCB91442C6EE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F77C3718-35BA-43B2-88F2-ECC1BE139BDF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\WpsExternal_20161111081738.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
Task: C:\WINDOWS\Tasks\WpsKtpcntrQingTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exeÃqing 10.1.0.5644 xxx server_url=hxxp:/kdl1.cache.wps.com/ksodl/wpscfg/client/____client____html____service____bubble.html ic_server_url=hxxp:/info.kingsoftstore.com/wpsv6internet/infos.ads

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{abae939c-8585-4362-9ddc-48323d6839b5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d220c201-1831-47a9-b987-ef9bf6c19297}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\fred\Downloads
Edge Notifications: HKU\S-1-5-21-3548980462-1377514853-3215692515-1001 -> hxxps://www.facebook.com; hxxps://www.marmiton.org; hxxps://www.youtube.com; hxxps://www.750g.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\fred\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-20]
Edge DownloadDir: C:\Users\fred\Downloads
Edge Notifications: Default -> hxxps://www.750g.com; hxxps://www.facebook.com; hxxps://www.marmiton.org; hxxps://www.youtube.com

FireFox:
========
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-15] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default [2021-02-20]
CHR Notifications: Default -> hxxps://immobilier.mitula.fr; hxxps://outlook.live.com; hxxps://www.elle.fr; hxxps://www.facebook.com; hxxps://www.kelprof.com; hxxps://www.lexpress.fr; hxxps://www.mercotte.fr; hxxps://www.pinterest.fr
CHR Extension: (Slides) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-22]
CHR Extension: (Docs) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-22]
CHR Extension: (Google Drive) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-10]
CHR Extension: (Adobe Acrobat) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-16]
CHR Extension: (Sheets) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03]
CHR Extension: (Gmail) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\fred\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-06]
CHR Profile: C:\Users\fred\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-11-17]
CHR Profile: C:\Users\fred\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [325600 2016-08-26] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1940584 2017-12-18] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\FileSyncHelper.exe [2198376 2021-02-17] (Microsoft Corporation -> Microsoft Corporation)
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\OneDriveUpdaterService.exe [2573160 2021-02-17] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2020-03-06] (Samsung Electronics CO., LTD. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusSGDrv; C:\WINDOWS\System32\drivers\AsusSGDrv.sys [140032 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [134368 2018-01-19] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180088 2018-01-19] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [106304 2018-01-19] (ESET, spol. s r.o. -> ESET)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49552 2021-02-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [419040 2021-02-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-17] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsla930f9ce; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0176F142-15AC-41A6-B7B0-9360CE77360B}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-20 13:28 - 2021-02-20 13:29 - 002301440 _____ (Farbar) C:\Users\fred\Downloads\FRST64 (1).exe
2021-02-19 21:13 - 2021-02-19 21:29 - 000042471 _____ C:\Users\fred\Downloads\Addition.txt
2021-02-19 21:05 - 2021-02-20 13:33 - 000019877 _____ C:\Users\fred\Downloads\FRST.txt
2021-02-19 21:04 - 2021-02-20 13:32 - 000000000 ____D C:\FRST
2021-02-19 21:03 - 2021-02-19 21:03 - 002298368 _____ (Farbar) C:\Users\fred\Downloads\FRST64.exe
2021-02-19 17:26 - 2021-02-19 17:26 - 000336279 _____ C:\Users\fred\Desktop\ZHPDiag.txt
2021-02-19 17:18 - 2021-02-19 17:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-19 17:17 - 2021-02-19 17:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-19 17:17 - 2021-02-19 17:17 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-19 17:17 - 2021-02-19 17:17 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-19 17:14 - 2021-02-19 17:14 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-19 16:43 - 2021-02-19 17:26 - 000000000 ____D C:\Users\fred\AppData\Roaming\ZHP
2021-02-19 16:43 - 2021-02-19 16:43 - 000000866 _____ C:\Users\fred\Desktop\ZHPSuite.lnk
2021-02-19 16:43 - 2021-02-19 16:43 - 000000000 ____D C:\Users\fred\AppData\Local\ZHP
2021-02-19 16:42 - 2021-02-19 16:42 - 003478152 _____ (Nicolas Coolman) C:\Users\fred\Downloads\ZHPSuite.exe
2021-02-17 20:43 - 2021-02-17 20:43 - 000000000 _____ C:\Users\fred\AppData\Local\{D5A317E6-E57E-41EA-A624-F5699F5205D3}
2021-02-09 17:28 - 2021-02-10 18:06 - 000000000 ____D C:\Users\fred\Desktop\PIVOINE 16.02 21
2021-02-08 16:14 - 2021-02-08 16:14 - 000000000 ____D C:\Users\fred\Desktop\belle assiette
2021-02-06 21:55 - 2021-02-06 21:55 - 000000000 ____D C:\Users\fred\AppData\Local\Cyberlink
2021-02-04 16:53 - 2021-02-04 16:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-02-04 16:51 - 2020-08-07 13:52 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-04 16:51 - 2020-08-07 13:52 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-02-04 16:51 - 2020-08-07 13:52 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-04 16:51 - 2020-08-07 13:52 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-02-04 16:51 - 2020-08-07 13:52 - 001086672 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-02-04 16:51 - 2020-08-07 13:52 - 001086672 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-02-04 16:51 - 2020-08-07 13:52 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-04 16:51 - 2020-08-07 13:52 - 000946384 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-02-04 16:51 - 2020-08-07 13:52 - 000456592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-02-04 16:51 - 2020-08-07 13:52 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 006652816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 005883280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 003901672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 002367720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 002076568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 001722096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445167.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 001569688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 001486744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445167.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 001146264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000812440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000674032 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000655600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-02-04 16:51 - 2020-08-07 13:50 - 000541936 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-02-04 16:51 - 2020-08-07 13:48 - 004716168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-02-02 15:13 - 2021-02-10 17:22 - 000000000 ____D C:\Users\fred\Desktop\LIEUX
2021-01-31 14:54 - 2021-01-31 14:54 - 000000000 ____D C:\Users\fred\AppData\Roaming\Kingsoft
2021-01-22 22:29 - 2021-01-22 22:35 - 872129633 _____ C:\Users\fred\Downloads\wetransfer-80d79b (1).zip
2021-01-22 22:13 - 2021-01-22 22:13 - 000000000 ____D C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-01-22 22:12 - 2021-01-22 22:13 - 000000000 ____D C:\Users\fred\AppData\Roaming\Zoom

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-20 13:28 - 2017-05-21 11:51 - 000000182 _____ C:\Users\fred\AppData\Roaming\sp_data.sys
2021-02-20 13:26 - 2019-11-17 00:19 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2021-02-20 13:26 - 2017-05-21 11:50 - 000000000 ___RD C:\Users\fred\OneDrive
2021-02-20 13:24 - 2017-05-21 11:48 - 000000000 __SHD C:\Users\fred\IntelGraphicsProfiles
2021-02-19 22:19 - 2017-07-26 19:47 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-19 22:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-19 22:06 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-19 22:04 - 2020-11-01 17:37 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{8BA7D98C-E295-4CAF-9BBF-5154B14EDF09}
2021-02-19 21:48 - 2020-11-01 17:11 - 000005810 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-19 21:48 - 2019-12-07 15:49 - 001100906 _____ C:\WINDOWS\system32\perfh00C.dat
2021-02-19 21:48 - 2019-12-07 15:49 - 000240372 _____ C:\WINDOWS\system32\perfc00C.dat
2021-02-19 21:41 - 2020-11-01 17:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-19 21:40 - 2020-11-01 16:45 - 000449776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-19 21:40 - 2020-11-01 16:44 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-19 21:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-19 21:38 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-19 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-19 21:34 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-19 21:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-19 20:58 - 2020-11-01 16:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-19 19:50 - 2020-08-19 15:17 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-19 18:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-19 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-19 17:45 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-19 16:34 - 2019-01-03 10:12 - 000000000 ____D C:\Users\fred\Desktop\PROP TRAITEUR
2021-02-19 16:32 - 2020-06-16 09:11 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 16:31 - 2020-12-04 16:00 - 000000000 ____D C:\Users\fred\Desktop\sandra hudson
2021-02-18 17:12 - 2020-11-01 16:56 - 000000000 ____D C:\Users\fred
2021-02-18 10:19 - 2018-02-09 14:17 - 000000000 ____D C:\Users\fred\AppData\Local\Packages
2021-02-17 20:39 - 2020-03-26 16:38 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-02-17 20:30 - 2018-02-22 17:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-02-17 20:20 - 2020-11-01 17:37 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-02-17 20:20 - 2020-03-26 16:38 - 000000000 ___RD C:\Users\defaultuser0\OneDrive
2021-02-17 20:19 - 2020-08-25 22:42 - 000002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-17 20:05 - 2017-07-01 13:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-17 19:52 - 2017-07-01 13:23 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-17 19:48 - 2020-11-30 08:09 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b0691418b5b0
2021-02-17 19:48 - 2020-11-01 17:37 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-10 16:17 - 2020-12-27 17:56 - 000000000 ____D C:\Users\fred\Desktop\menu domicile
2021-02-10 09:48 - 2020-11-01 17:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-09 15:21 - 2017-07-04 10:13 - 002854912 _____ C:\Users\fred\Downloads\nigiri_maki_california_roll_et_rainbow_sushi.xls
2021-02-06 21:55 - 2017-05-21 10:49 - 000000000 ____D C:\ProgramData\CyberLink
2021-02-06 21:10 - 2017-07-26 19:46 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-02-05 03:55 - 2020-11-01 17:37 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 03:55 - 2020-11-01 17:37 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-04 16:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2021-02-04 16:55 - 2017-07-26 19:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-02-04 16:55 - 2017-05-21 10:24 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-02-02 16:21 - 2020-01-14 11:46 - 000000000 ____D C:\Users\fred\Desktop\TERRASSE
2021-02-02 15:29 - 2020-04-10 09:26 - 000000000 ____D C:\Users\fred\Desktop\TARIFS PRODUITS
2021-01-31 14:47 - 2017-06-30 08:27 - 000000000 ____D C:\Users\fred\AppData\Roaming\Skype
2021-01-22 23:00 - 2018-07-11 07:42 - 000000000 ____D C:\ProgramData\Packages
2021-01-22 22:48 - 2018-06-08 00:09 - 000000000 ____D C:\Users\fred\AppData\Local\PlaceholderTileLogoFolder
2021-01-22 16:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-22 10:55 - 2016-11-11 09:17 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-22 06:09 - 2020-09-22 18:59 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-01-22 06:07 - 2017-08-28 23:59 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Fichiers à la racine de certains dossiers ========

2020-02-24 20:10 - 2020-02-24 20:10 - 133029644 _____ () C:\Users\fred\installer_openoffice-win32.exe
2017-11-17 09:26 - 2017-11-17 09:26 - 007649280 _____ () C:\Program Files (x86)\GUT2015.tmp
2017-05-21 11:51 - 2021-02-20 13:28 - 000000182 _____ () C:\Users\fred\AppData\Roaming\sp_data.sys
2021-02-17 20:43 - 2021-02-17 20:43 - 000000000 _____ () C:\Users\fred\AppData\Local\{D5A317E6-E57E-41EA-A624-F5699F5205D3}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité