cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2021
Exécuté par KIWI (administrateur) sur DESKTOP-KSUNAR3 (MSI MS-7996) (26-06-2021 01:06:38)
Exécuté depuis C:\Users\KIWI\Desktop
Profils chargés: KIWI
Platform: Windows 10 Home Version 2004 19041.746 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\RocketDock\RocketDock.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdntwrk.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe <3>
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé] C:\Users\KIWI\AppData\Local\Clavier+\Clavier.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Small Business Advantage -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\SbaService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2012.16655.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843784 2016-07-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803848 2016-08-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302392 2020-03-28] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [224376 2020-12-07] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835680 2016-07-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26310800 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1266872 2019-03-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Fichier non signé]
HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Run: [Clavier+] => C:\Users\KIWI\AppData\Local\Clavier+\Clavier.exe [125440 2016-08-13] (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé]
HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Run: [com.deezer.deezer-desktop] => C:\Users\KIWI\AppData\Local\Programs\deezer-desktop\Deezer.exe [83355424 2020-03-13] (Deezer -> Deezer)
HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5549280 2021-05-28] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-24] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00E592CC-FD85-4206-B80B-427477595B27} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {2355713C-C9E2-4805-A9B4-297998E75FFE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147320 2021-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DE161B6-202B-4EF9-836C-9C3F519FCFA1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {4C4CDA92-3EB7-42B0-84A2-8C910C14D826} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {52F51A8F-D748-45FC-8507-80917728AB75} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {63CC7FFB-F6D7-41BB-AC1E-5D758FDDC82A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-24] (Google LLC -> Google LLC)
Task: {6A74A231-9719-457E-99DE-CD584C148E9A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {82B7AD21-12F8-4561-86AC-B5BD6597CDF9} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [637368 2021-06-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {8367EC18-FE9A-4F68-A6A5-AA22BC02BDF8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {84AE751E-79E8-4DF3-86D1-DD93A54B48DD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {9829B3E6-9146-42EB-850F-2881F4E60404} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {A0B1C9E7-859A-416A-8366-EA9101BF3D19} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-24] (Google LLC -> Google LLC)
Task: {CC4BF902-EDB3-411C-89CA-CCA750DA141E} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [888232 2021-01-29] (Bitdefender SRL -> Bitdefender)
Task: {D1146ECF-629F-43AA-86DC-B5BF0EE20782} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147320 2021-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1355263-34AF-4C2E-8294-3F43D440488C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {D4E54D01-89A4-440D-A52D-FBAE3BC70839} - System32\Tasks\Launch BitComet => C:\Program Files\BitComet\BitComet.exe [17968248 2017-07-06] (Xing Wang -> www.BitComet.com)
Task: {E394E4A1-F4FC-49AB-BC52-DB50A8343A20} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [954456 2021-06-25] (Bitdefender SRL -> Bitdefender)
Task: {F4C57EE7-F098-4FD1-B815-D3C33A429AE8} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
Task: {F4E0C555-8FD4-42F1-83C5-E9F22A0B08DC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{118e85b0-3833-4e4d-a842-e927c6214c0c}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{163b1b48-f908-40c3-81b5-a3af9d02d7ab}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{8d82cf19-259a-4b6c-a611-bddba03ee0a1}: [DhcpNameServer] 89.2.0.1 89.2.0.2

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-25]
Edge HomePage: Default -> qwant.com
Edge DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
Edge DefaultSearchKeyword: Default -> www.qwant.com
Edge DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch&lang=fr_fr
Edge Extension: (Nimbus Screenshot & Screen Video Recorder) - C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2021-04-02]
Edge Extension: (Disable HTML5 Autoplay) - C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efdhoaajjjgckpbkoglidkeendpkolai [2020-06-23]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-05-29]
Edge Extension: (Qwant) - C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2020-12-23]
Edge Extension: (Video DownloadHelper) - C:\Users\KIWI\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-03-05]

FireFox:
========
FF DefaultProfile: u5g5kc67.default-1624561211777
FF ProfilePath: C:\Users\KIWI\AppData\Roaming\Mozilla\Firefox\Profiles\u5g5kc67.default-1624561211777 [2021-06-26]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\KIWI\AppData\Roaming\Mozilla\Firefox\Profiles\u5g5kc67.default-1624561211777\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-06-25]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\bdwteff.xpi [2020-12-10] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbef.xpi [2020-12-10] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2020-05-14] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\bd_js_config.js [2021-06-25] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\bd_config.cfg [2021-06-25] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default [2021-06-26]
CHR Extension: (Slides) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-24]
CHR Extension: (Docs) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-06-24]
CHR Extension: (Google Drive) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-06-24]
CHR Extension: (YouTube) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-06-24]
CHR Extension: (Adobe Acrobat) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-06-25]
CHR Extension: (Sheets) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-24]
CHR Extension: (Bitdefender Wallet) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2021-06-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-06-25]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-06-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-24]
CHR Extension: (Gmail) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-06-24]
CHR Extension: (Chrome Media Router) - C:\Users\KIWI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [197624 2020-11-02] (Pango Inc. -> AnchorFree Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-03-12] (Apple Inc. -> Apple Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe [798640 2021-04-19] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe [798640 2021-04-19] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-10-10] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [250392 2020-12-07] (Bitdefender SRL -> Bitdefender)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (Shanghai Comet Network Technology -> www.BitComet.com)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4173920 2016-06-02] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2200872 2016-02-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) [Fichier non signé]
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4160976 2016-04-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2014160 2016-03-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2328160 2016-07-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2076768 2016-06-02] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [598112 2016-06-02] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2333328 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1358248 2021-01-29] (Bitdefender SRL -> Bitdefender)
R2 SbaService; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\SbaService.exe [26296 2015-10-14] (Intel(R) Small Business Advantage -> Intel Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [301144 2021-06-25] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\bdservicehost.exe [798640 2021-04-19] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2718744 2021-03-24] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [802976 2021-04-19] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
S3 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2021-06-25] (Bitdefender SRL -> © Bitdefender SRL)
S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96616 2020-05-28] (Bitdefender SRL -> BitDefender)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [488592 2021-04-19] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-12-10] (Bitdefender SRL -> BitDefender LLC)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 OSFMount; C:\Program Files\OSFMount\x64\OSFMount.sys [1038416 2018-03-22] (PassMark Software Pty Ltd -> PassMark Software)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [641728 2021-03-24] (Bitdefender SRL -> Bitdefender)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-26 01:06 - 2021-06-26 01:07 - 000028052 _____ C:\Users\KIWI\Desktop\FRST.txt
2021-06-26 01:05 - 2021-06-26 01:05 - 000341245 _____ C:\Users\KIWI\Desktop\ZHPDiag.txt
2021-06-26 00:55 - 2021-06-26 00:55 - 000000864 _____ C:\Users\KIWI\Desktop\ZHPSuite.lnk
2021-06-25 23:15 - 2021-06-25 23:15 - 003472024 _____ (Nicolas Coolman) C:\Users\KIWI\Downloads\ZHPSuite.exe
2021-06-25 19:41 - 2021-06-25 19:41 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-25 19:41 - 2021-06-25 19:41 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-25 19:41 - 2021-06-25 19:41 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-25 19:41 - 2021-06-25 19:41 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-25 19:41 - 2021-06-25 19:41 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-25 19:41 - 2021-06-25 19:41 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-25 19:41 - 2021-06-25 19:41 - 000000000 ____D C:\Users\KIWI\AppData\Local\mbam
2021-06-25 19:40 - 2021-06-25 19:40 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-06-25 19:40 - 2021-06-25 19:40 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-06-25 19:40 - 2021-06-25 19:40 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-25 19:40 - 2021-06-25 19:40 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-25 19:15 - 2021-06-26 01:05 - 000000000 ____D C:\Users\KIWI\AppData\Roaming\ZHP
2021-06-25 19:15 - 2021-06-26 00:55 - 000000000 ____D C:\Users\KIWI\AppData\Local\ZHP
2021-06-25 19:12 - 2021-06-25 19:12 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-06-25 19:04 - 2021-06-25 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-06-25 19:04 - 2021-06-25 19:04 - 000000000 ____D C:\Program Files\VS Revo Group
2021-06-25 08:59 - 2021-06-26 01:07 - 000000000 ____D C:\FRST
2021-06-25 08:59 - 2021-06-25 08:59 - 002300416 _____ (Farbar) C:\Users\KIWI\Desktop\FRST64.exe
2021-06-24 20:59 - 2021-06-24 20:59 - 000000000 ____D C:\Users\KIWI\AppData\Local\Mozilla
2021-06-24 20:47 - 2021-06-24 20:52 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-24 20:47 - 2021-06-24 20:52 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-24 20:47 - 2021-06-24 20:47 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-24 20:44 - 2021-06-25 19:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-24 20:44 - 2021-06-24 20:44 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-24 20:44 - 2021-06-24 20:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-24 20:44 - 2021-06-24 20:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-12 02:23 - 2021-06-23 23:44 - 000033176 _____ C:\Users\KIWI\Desktop\EURO 2020.xlsx
2021-06-08 23:25 - 2021-06-08 23:25 - 000000000 ____D C:\Users\KIWI\Downloads\Microsoft Office 2021
2021-06-03 22:51 - 2021-06-03 22:51 - 000962008 _____ C:\Users\KIWI\Downloads\118203-Resultats.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-26 01:05 - 2016-08-23 00:19 - 000000000 ____D C:\Users\KIWI\AppData\Roaming\vlc
2021-06-26 00:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-26 00:57 - 2016-11-20 16:58 - 000000000 ____D C:\Users\KIWI\AppData\LocalLow\Mozilla
2021-06-26 00:54 - 2020-02-01 19:58 - 000000000 ____D C:\Users\KIWI\AppData\Roaming\Molotov
2021-06-26 00:21 - 2019-11-04 18:31 - 000000000 ____D C:\Users\KIWI\AppData\Roaming\deezer-desktop
2021-06-25 19:48 - 2019-02-08 01:21 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-25 19:40 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-25 19:17 - 2020-08-21 19:02 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-25 19:17 - 2019-12-07 16:49 - 000791594 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-25 19:17 - 2019-12-07 16:49 - 000149760 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-25 19:17 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-25 19:12 - 2020-08-21 19:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-25 19:12 - 2017-06-06 08:28 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-25 19:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-25 19:10 - 2020-11-29 15:49 - 000000000 ____D C:\Users\KIWI\AppData\LocalLow\Temp
2021-06-25 19:10 - 2016-07-16 13:47 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-06-25 17:46 - 2020-08-21 18:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-25 00:56 - 2017-11-24 20:55 - 000046056 _____ (© Bitdefender SRL) C:\WINDOWS\system32\Drivers\bdprivmon.sys
2021-06-24 23:55 - 2020-08-21 18:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-24 23:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-06-24 23:55 - 2019-12-07 11:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2021-06-24 20:59 - 2016-08-22 20:15 - 000000000 ____D C:\Users\KIWI\AppData\Roaming\Mozilla
2021-06-24 20:47 - 2016-08-22 19:46 - 000000000 ____D C:\Program Files (x86)\Google
2021-06-24 20:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-06-21 21:51 - 2016-08-22 20:38 - 000000000 ____D C:\Program Files\Microsoft Office
2021-06-20 01:07 - 2021-04-22 11:18 - 000000000 ____D C:\Users\KIWI\Downloads\Nouveau dossier (2)
2021-06-19 21:18 - 2020-06-23 08:45 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-19 21:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-19 21:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-16 23:14 - 2020-08-21 19:01 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2205633058-1032291407-2753346053-1001
2021-06-16 23:14 - 2020-08-21 18:53 - 000002402 _____ C:\Users\KIWI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-16 23:14 - 2016-08-22 19:40 - 000000000 ___RD C:\Users\KIWI\OneDrive
2021-06-12 01:58 - 2017-11-22 11:27 - 000000000 ____D C:\Users\KIWI\AppData\Local\Packages
2021-06-11 09:19 - 2020-08-21 19:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-10 20:02 - 2017-04-12 23:40 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-06 13:22 - 2016-08-30 00:23 - 000000000 ____D C:\Users\KIWI\dwhelper
2021-05-29 00:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

==================== Fichiers à la racine de certains dossiers ========

2018-05-21 12:44 - 2018-05-21 12:44 - 000002258 _____ () C:\Users\KIWI\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité