cjoint

Publicité


Publicité

Commentaire : FRST

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-01-2022
Exécuté par rabet (administrateur) sur LAPTOP-RK6RIAOA (HP HP Laptop 15-da0xxx) (27-01-2022 15:22:21)
Exécuté depuis C:\Users\rabet\Desktop
Profils chargés: rabet
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvBugReport.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\140.4.1951\QtWebEngineProcess.exe <2>
(geek software GmbH -> geek software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <31>
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_21306a77b30fd6e0\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_31f4e71363bfa9b6\IntelCpHeciSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rabet\AppData\Local\Microsoft\OneDrive\22.002.0103.0004\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudAgent.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudTray.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKLM-x32\...\Run: [CCleanerCloudTray] => C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudTray.exe [3420344 2020-12-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065024 2014-06-10] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650784 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863776 2015-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-202016547-125952819-3770518975-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-202016547-125952819-3770518975-1001\...\Run: [MediaDICO38] => C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LMD38.exe [252416 2007-05-23] (L'Aventure Multimedia) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON WF-2530 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMIVE.DLL [120320 2015-01-06] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2015-06-17] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-12] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00931530-2DFC-410B-B78A-775BB9108A74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\MpCmdRun.exe [491096 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0D5683F5-DC31-4F1F-8370-C0F47A306FA7} - System32\Tasks\CCleaner Cloud Update => C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudHealthCheck.exe [5603512 2020-12-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0D6FDC2C-4362-4219-BB29-59BEDCB04E02} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-09] (Google Inc -> Google Inc.)
Task: {1D74D464-B53E-4949-9C06-0450CBEDB78D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {48D1F516-66D9-4F15-983B-610575C0CD46} - System32\Tasks\CCleaner Cloud Watchdog => C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudHealthCheck.exe [5603512 2020-12-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4E277436-F244-4413-9CD3-A65BC2B96990} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\MpCmdRun.exe [491096 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {50B67F70-23A8-44AE-8B85-2662EFB404D5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {5A834865-E5F5-42C8-B720-42D2A0A20438} - System32\Tasks\CCleanerSkipUAC - rabet => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5F9D6E7A-751F-496D-9254-56482A5A1C0D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4969240 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
Task: {6C08BD20-CD2F-4C7C-9282-6C06A086D13F} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe (Pas de fichier)
Task: {83AC0BBF-E8BC-426C-A5D3-8ECC575C615E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\MpCmdRun.exe [491096 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A65A015D-DDD0-44FF-AE97-5207788A349D} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {B0DEFC62-2C90-40E3-9106-C6ADC8428BC4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {B6CCC123-A4CF-4ED5-8B11-565F92153661} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-17] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BCF32E5C-CFFD-4A7D-B3A3-9E632BC13D6D} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {D0039E81-E2E6-4C10-B17E-45934E620916} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-08] (Adobe Inc. -> Adobe)
Task: {D0FFA22B-AD98-4833-A314-F7ED4C363170} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-09] (Google Inc -> Google Inc.)
Task: {E74CDE32-D5DE-432F-81F1-A4E8120321F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\MpCmdRun.exe [491096 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E774810C-DB7C-436B-AE73-696277BE3049} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-17] (Dropbox, Inc -> Dropbox, Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5ee8cd3-00a3-424b-8ae9-36bc5f2d0598}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\rabet\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\rabet\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-16]
Edge DownloadDir: Default -> C:\Users\rabet\Downloads
Edge DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
Edge DefaultSearchKeyword: Default -> qwant.com
Edge DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch

FireFox:
========
FF Plugin HKU\S-1-5-21-202016547-125952819-3770518975-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\rabet\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-13] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default [2022-01-27]
CHR HomePage: Default -> search.lilo.org
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR NewTab: Default -> Active:"chrome-extension://lkdlikflakpjhppfiejegdnccommiokf/tab/tab.html"
CHR DefaultSearchURL: Default -> hxxps://search.lilo.org/results.php?q={searchTerms}&plugin=lilose
CHR DefaultSearchKeyword: Default -> lilo
CHR Extension: (Slides) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-09]
CHR Extension: (Docs) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-05-18]
CHR Extension: (Google Drive) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-21]
CHR Extension: (YouTube) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-20]
CHR Extension: (Sheets) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-27]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-12-19]
CHR Extension: (Lilo Moteur et solidaire) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkdlikflakpjhppfiejegdnccommiokf [2021-05-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-21]
CHR Extension: (Gmail) - C:\Users\rabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-21]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8480848 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [452888 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [452888 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-31] (Avast Software s.r.o. -> AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 CCleanerCloudAgentService; C:\Program Files (x86)\CCleaner Cloud\CCleanerCloudAgent.exe [20354232 2020-12-18] (Piriform Software Ltd -> Piriform Software Ltd)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-17] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\NisSrv.exe [2484256 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.4-0\MsMpEng.exe [103168 2020-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [108992 2018-04-27] (Alcorlink Corp. -> )
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36784 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2022-01-04] (Avast Software s.r.o. -> AVAST Software)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401120 2020-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-05-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [37280 2021-11-23] (HP Inc. -> HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-27 15:22 - 2022-01-27 15:27 - 000022256 _____ C:\Users\rabet\Desktop\FRST.txt
2022-01-27 15:21 - 2022-01-27 15:25 - 000000000 ____D C:\FRST
2022-01-27 15:17 - 2022-01-27 15:19 - 002311680 _____ (Farbar) C:\Users\rabet\Desktop\FRST64.exe
2022-01-27 10:55 - 2022-01-27 11:13 - 000416223 _____ C:\Users\rabet\Downloads\feuille de saisie temps GTA 2022 journalière v20220122 NA.xlsx
2022-01-26 08:02 - 2022-01-26 08:02 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-01-26 07:25 - 2022-01-26 07:25 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-26 07:24 - 2022-01-26 07:24 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-26 07:24 - 2022-01-26 07:24 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-26 07:23 - 2022-01-26 07:23 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-01-26 07:20 - 2022-01-26 07:20 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-01-26 07:20 - 2022-01-26 07:20 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-01-21 15:26 - 2022-01-21 15:26 - 000083475 _____ C:\Users\rabet\Desktop\Attestation Assurance.pdf
2022-01-21 15:25 - 2022-01-21 15:25 - 000083475 _____ C:\Users\rabet\Downloads\Attestation Assurance.pdf
2022-01-21 15:16 - 2022-01-21 15:16 - 000000000 ___HD C:\$WinREAgent
2022-01-21 14:29 - 2022-01-21 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-01-19 01:17 - 2022-01-19 01:17 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-01-04 20:47 - 2022-01-04 20:47 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2022-01-04 20:43 - 2022-01-04 20:42 - 000215432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-01-04 20:43 - 2022-01-04 20:41 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-27 15:12 - 2020-11-05 02:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-27 15:12 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-27 14:40 - 2019-03-09 14:59 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-27 10:54 - 2019-11-11 13:53 - 000000000 ____D C:\Users\rabet\AppData\Local\Dropbox
2022-01-27 10:52 - 2019-03-09 14:48 - 000000000 ___RD C:\Users\rabet\OneDrive
2022-01-27 10:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-27 10:50 - 2019-05-18 19:29 - 000000000 ____D C:\Program Files\CCleaner
2022-01-27 10:31 - 2019-03-09 14:35 - 000000000 __SHD C:\Users\rabet\IntelGraphicsProfiles
2022-01-26 11:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-26 11:51 - 2020-07-13 07:02 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-26 11:50 - 2020-11-05 04:03 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-26 11:34 - 2021-12-13 09:57 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-202016547-125952819-3770518975-1001
2022-01-26 11:34 - 2020-11-05 04:03 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-202016547-125952819-3770518975-1001
2022-01-26 11:34 - 2020-11-05 02:57 - 000002424 _____ C:\Users\rabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-26 11:33 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-26 11:08 - 2020-11-05 03:12 - 001923822 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-26 11:08 - 2019-12-07 15:49 - 000834502 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-26 11:08 - 2019-12-07 15:49 - 000168216 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-26 11:01 - 2020-11-05 04:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-26 11:01 - 2020-11-05 02:48 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-26 11:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-26 11:01 - 2018-10-08 16:10 - 000000000 ____D C:\Intel
2022-01-26 08:11 - 2019-05-18 19:32 - 000000000 ____D C:\ProgramData\AVAST Software
2022-01-26 08:10 - 2020-11-05 04:03 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-01-26 08:10 - 2020-11-05 02:48 - 000560464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-26 08:07 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-26 08:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-26 08:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-01-26 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-26 07:55 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-21 15:01 - 2019-03-10 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-21 14:35 - 2020-12-11 18:11 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b318d7b3cb41
2022-01-21 14:35 - 2020-11-05 04:03 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-21 14:35 - 2020-11-05 04:03 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 14:35 - 2020-11-05 04:03 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-21 14:31 - 2019-11-11 13:53 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-01-21 14:12 - 2019-03-09 15:51 - 000000000 ____D C:\Users\rabet\AppData\Local\CrashDumps
2022-01-16 09:29 - 2019-03-10 19:56 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-12 22:46 - 2021-08-18 16:15 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - rabet
2022-01-12 22:46 - 2020-11-05 04:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-01-08 20:45 - 2021-09-02 21:04 - 000000000 ____D C:\Users\rabet\Desktop\ikastola
2022-01-04 20:43 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-04 20:42 - 2020-10-16 15:43 - 000186280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-01-04 20:42 - 2020-04-15 08:09 - 000540056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000545176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000318760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000252992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000108912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000100416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000083976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-01-04 20:42 - 2019-05-18 19:37 - 000042416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-01-04 20:41 - 2019-05-18 19:37 - 000853800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-01-04 20:41 - 2019-05-18 19:37 - 000369216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-01-04 20:41 - 2019-05-18 19:37 - 000223176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-01-04 20:41 - 2019-05-18 19:37 - 000036784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité