Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-08-2021
Exécuté par Proprietaire (administrateur) sur UTILISA-PT5EE5S (Gigabyte Technology Co., Ltd. H110M-S2H) (12-08-2021 11:08:13)
Exécuté depuis C:\Users\Proprietaire\Downloads
Profils chargés: Proprietaire
Platform: Windows 10 Home Version 21H1 19043.1110 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\25.0.1.192\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cec8fd58a80e6ea\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(pCloud AG -> pCloud AG) C:\Program Files\pCloud Drive\pCloud.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SFX TEAM) [Fichier non signé] C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804360 2016-03-22] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [251496 2021-06-23] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1
HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-19\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-19\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-20\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-20\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1003\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1003\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1003\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Run: [SuperCopier2.exe] => C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM) [Fichier non signé]
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3586184 2019-10-07] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\...\Policies\Explorer: [HideSCAHealth] 0
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon TS8300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFT.DLL [509952 2019-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\tpwinprn: C:\Windows\System32\spool\prtprocs\x64\TPWinPrn.dll [747224 2015-11-10] (Cortado AG -> Cortado AG)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\WINDOWS\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8300 series: C:\WINDOWS\system32\CNMLMFT.DLL [940032 2019-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-05-15] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-13] (Google LLC -> Google LLC)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => Pas de fichier
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {20978E74-1204-4A06-BF37-22095BB7BDB3} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Proprietaire\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {3720B827-0E32-4221-B8FE-2D8A979A5758} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [5541464 2020-04-23] (Lespeed Technology Ltd. -> WiseCleaner.com)
Task: {5A956953-4C09-4E1E-9AAB-D6A307303599} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-12] (Google Inc -> Google Inc.)
Task: {6C6B47F9-1995-4090-8C12-944A5A22E169} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {937B8BEF-83C7-44B4-9543-145798A422E2} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\25.0.1.192\WatchDog.exe [937064 2021-06-08] (Bitdefender SRL -> Bitdefender)
Task: {BFDF2038-BF5E-448F-94BE-F4BF74A9CA01} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {C130E72E-8C10-4F44-89F6-49523ED91967} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-12] (Google Inc -> Google Inc.)
Task: {CA539298-AD39-40BF-BC91-27B3B42C79CA} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [957016 2021-07-02] (Bitdefender SRL -> Bitdefender)
Task: {CACC545E-FEEF-48E8-8CC9-406AFC911B56} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {D0E7BC8C-DECE-47D6-9037-531F873C6481} - System32\Tasks\Driver Booster SkipUAC (Proprietaire) => C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe
Task: {DB211764-419E-43AE-9728-C9653EC9138B} - System32\Tasks\GoogleUpdateTaskMachineCore1d593cddd2a55ae => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-12] (Google Inc -> Google Inc.)
Task: {EA89E365-DDF7-44EE-9E9E-95143ABFBEC4} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe
Task: {ED945A25-AB05-484D-9CDC-6D1D32CB7608} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {FDEB3FB3-4492-4272-822A-6F10F8477AD5} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3dce577d-7671-4fae-8b33-9d51249f090e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6ac5aba8-8443-4af0-a43e-f5d1a3340279}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7373ffb9-3196-46a3-a033-c3ece6b64528}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{827412ae-2459-4097-94aa-c62ac1b05b48}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{9f22a4e0-4068-40ea-8cf4-4b17a699bb3a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{af62d4f0-3787-478f-89a3-39486da2776c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b2659de0-e93c-41fd-9013-dc58ac19899f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c9097e65-927d-487a-a508-57e68481650c}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{d54457b2-9d23-40e6-960e-fe2ff79803ae}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e0981c5e-ee51-4f45-a23f-e24e64961a34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e7e92c48-6797-429e-a042-a505c5727a61}: [DhcpNameServer] 192.168.1.1 192.168.1.1
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-1818771676-3001375429-4212825014-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-1818771676-3001375429-4212825014-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\Proprietaire\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-12]
FireFox:
========
FF DefaultProfile: x2j624bw.default-1628244055367
FF ProfilePath: C:\Users\Proprietaire\AppData\Roaming\Mozilla\Firefox\Profiles\x2j624bw.default-1628244055367 [2021-08-12]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-11-12] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-11-12] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2020-04-29] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1232202.dll [2018-03-09] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\bd_js_config.js [2019-08-29] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\bd_config.cfg [2019-08-29] <==== ATTENTION
Chrome:
=======
CHR Profile: C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default [2019-11-14]
CHR Extension: (Slides) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-20]
CHR Extension: (Docs) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-09]
CHR Extension: (Google Drive) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-20]
CHR Extension: (YouTube) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-09]
CHR Extension: (Bitdefender Wallet) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2019-09-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-09]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2019-11-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-13]
CHR Extension: (Gmail) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-09]
CHR Extension: (Chrome Media Router) - C:\Users\Proprietaire\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-13]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [198256 2021-01-26] (Pango Inc. -> AnchorFree Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-07-02] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-07-02] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [1899112 2018-03-22] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [246888 2021-06-23] (Bitdefender SRL -> Bitdefender)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144464 2015-02-19] (Canon Inc. -> CANON INC.)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-07-08] (Digital Wave Ltd -> Digital Wave Ltd)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> )
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [774760 2021-06-08] (Bitdefender SRL -> Bitdefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [306776 2021-07-02] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-07-02] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2718744 2021-03-24] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [802976 2021-04-20] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2021-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2021-04-28] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96616 2020-05-28] (Bitdefender SRL -> BitDefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 cbfsconnect2017; C:\WINDOWS\system32\drivers\cbfsconnect2017.sys [476904 2019-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\Gemma.sys [488592 2021-04-20] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-11-12] (Bitdefender SRL -> BitDefender LLC)
R1 HWiNFO32; C:\Windows\SysWoW64\drivers\HWiNFO64A.SYS [27552 2017-02-06] (Martin Malik - REALiX -> REALiX(tm))
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [185312 2020-12-14] (Bitdefender SRL -> Bitdefender)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [641728 2021-03-24] (Bitdefender SRL -> Bitdefender)
S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2014-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Texas Instruments)
S3 vmusbmouse; C:\WINDOWS\System32\drivers\vmusbmouse.sys [26320 2015-11-10] (VMware, Inc. -> VMware, Inc.)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20704 2019-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-12 11:08 - 2021-08-12 11:08 - 000025118 _____ C:\Users\Proprietaire\Downloads\FRST.txt
2021-08-12 11:07 - 2021-08-12 11:08 - 000000000 ____D C:\FRST
2021-08-12 11:04 - 2021-08-12 11:06 - 002300416 _____ (Farbar) C:\Users\Proprietaire\Downloads\FRST64.exe
2021-08-11 12:24 - 2021-08-11 12:24 - 000000000 ___HD C:\$WinREAgent
2021-08-08 11:46 - 2021-08-08 11:47 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-08-08 11:46 - 2021-08-08 11:46 - 000001828 _____ C:\Users\Proprietaire\Desktop\CrystalDiskInfo.lnk
2021-08-08 11:46 - 2021-08-08 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-08-08 11:42 - 2021-08-08 11:44 - 004707136 _____ (Crystal Dew World ) C:\Users\Proprietaire\Downloads\CrystalDiskInfo8_11_2.exe
2021-08-07 19:45 - 2021-08-07 19:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-07 19:19 - 2021-08-07 19:19 - 000333192 _____ (Mozilla) C:\Users\Proprietaire\Downloads\Firefox Installer.exe
2021-08-01 16:27 - 2019-07-14 05:00 - 000940032 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMFT.DLL
2021-08-01 16:26 - 2018-11-12 15:41 - 000098048 _____ C:\WINDOWS\system32\CNC1890D.TBL
2021-08-01 16:26 - 2018-11-06 11:13 - 000388608 _____ (CANON INC.) C:\WINDOWS\system32\CNC_FTL.dll
2021-08-01 16:26 - 2018-11-06 10:55 - 000559616 _____ (CANON INC.) C:\WINDOWS\system32\CNC_FTC.dll
2021-08-01 16:26 - 2018-11-06 10:55 - 000273408 _____ (CANON INC.) C:\WINDOWS\system32\CNC_FTI.dll
2021-07-23 11:46 - 2021-08-08 10:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-07-15 09:13 - 2021-07-15 09:13 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-15 09:13 - 2021-07-15 09:13 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-15 09:13 - 2021-07-15 09:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-15 09:13 - 2021-07-15 09:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-15 09:13 - 2021-07-15 09:13 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-15 09:13 - 2021-07-15 09:13 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-08-12 10:57 - 2020-12-04 20:49 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-12 10:57 - 2019-12-07 16:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2021-08-12 10:57 - 2019-12-07 16:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2021-08-12 10:57 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-12 10:55 - 2019-02-05 17:35 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-12 10:53 - 2017-08-25 05:17 - 000000000 ____D C:\Users\Proprietaire\AppData\LocalLow\Mozilla
2021-08-12 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-12 10:50 - 2020-12-04 20:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-12 10:50 - 2020-12-04 20:38 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-12 10:50 - 2018-01-16 23:21 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2021-08-12 10:50 - 2017-01-12 18:49 - 000000000 __SHD C:\Users\Proprietaire\IntelGraphicsProfiles
2021-08-12 10:50 - 2017-01-12 18:49 - 000000000 ____D C:\Intel
2021-08-11 19:29 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-08-11 18:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-11 17:36 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-11 17:22 - 2019-12-07 11:03 - 000131072 _____ C:\WINDOWS\system32\config\ELAM
2021-08-10 22:58 - 2020-12-04 20:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-10 19:46 - 2017-10-22 22:17 - 000000000 ____D C:\Users\Proprietaire\AppData\Local\Packages
2021-08-08 10:58 - 2020-06-25 17:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-08 10:58 - 2020-06-25 17:11 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-08-08 10:46 - 2019-11-15 17:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-07 19:45 - 2019-11-15 17:46 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-07 19:45 - 2019-11-15 17:46 - 000001220 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-08-06 12:01 - 2020-08-17 11:20 - 000000000 ____D C:\Users\Proprietaire\Desktop\Anciennes données de Firefox
2021-08-01 17:27 - 2021-04-05 10:58 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-08-01 17:27 - 2019-05-17 12:38 - 000000000 ___HD C:\ProgramData\CanonIJScan
2021-07-31 19:19 - 2017-07-13 11:51 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-07-31 12:06 - 2020-12-03 19:23 - 000000000 ____D C:\Users\Proprietaire
2021-07-30 18:55 - 2020-10-02 18:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-29 11:48 - 2021-01-07 12:23 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ca6d78a6b518
2021-07-29 11:48 - 2020-12-04 20:46 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-17 11:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-16 09:45 - 2020-10-02 18:24 - 000486712 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-07-16 09:45 - 2020-02-19 13:22 - 000740152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2021-07-15 09:16 - 2020-12-04 20:38 - 000457048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-15 09:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-15 09:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-15 09:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-15 09:16 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-15 09:06 - 2016-09-19 15:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-15 09:02 - 2016-09-19 15:42 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2017-12-12 05:26 - 2017-12-12 05:26 - 122122830 _____ () C:\Program Files (x86)\openoffice1.cab
2017-12-12 05:24 - 2017-12-12 05:24 - 002314240 _____ () C:\Program Files (x86)\openoffice415.msi
2017-12-12 05:24 - 2017-12-12 05:24 - 000479232 _____ () C:\Program Files (x86)\setup.exe
2017-12-12 05:24 - 2017-12-12 05:24 - 000000279 _____ () C:\Program Files (x86)\setup.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================