FRST.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [328048 2011-01-21] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-10] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [haleng] => C:\Users\Acer\AppData\Local\Temp\haleng.exe*********** (Pas de fichier) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3607251010-463286738-2662432611-1001\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [4960768 2021-04-16] (Softdeluxe) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\96.1.13589.111\Installer\chrmstp.exe [2021-12-16] (Avast Software s.r.o. -> AVAST Software)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01B9709D-AA5B-472A-9DC1-9E3F6321A302} - System32\Tasks\Update => Acer\Users\Acer\AppData\Local\zzAcer\Acer.vbs (Pas de fichier) <==== ATTENTION
Task: {0533D0B0-0E66-4E24-8CA7-0CD443CDDED5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-30] (Google LLC -> Google LLC)
Task: {12DD8382-2F82-4223-8D71-4217921C0253} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {2F03867B-ED2C-4B16-B812-977C2BB5F09E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-05-30] (Avast Software s.r.o. -> Avast Software)
Task: {3208884F-97AD-4FB3-B18A-AD21C053CD05} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-30] (Google LLC -> Google LLC)
Task: {3530C89B-3433-4FE7-932E-705D874FA6D9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-09-02] (Avast Software s.r.o. -> AVAST Software)
Task: {39274171-CE18-4051-9765-AB62D2A08709} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C862B20-2E94-4029-A5EF-374713FD2737} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2021-10-13] (Bluestack Systems, Inc -> BlueStack Systems, Inc.)
Task: {652276B0-D540-4FE9-B024-05D30FB8F9F7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2502336 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {7B2A3BBC-71AD-48DA-83E7-174028610DDC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {849A35DE-7E1E-4070-B814-4923FBEFCD35} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-02-25] () [Fichier non signé]
Task: {A16ACB3C-31CC-48A2-A24B-E0FC43EE502A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6BF3817-BDE9-4A77-8043-18C0CA87C536} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BBA6B200-7A4E-419A-91B2-304D8AAE9BA8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {C11D230C-350F-4368-939E-B5A37243A19F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-09-02] (Avast Software s.r.o. -> AVAST Software)
Task: {C83BA880-5760-4C42-96BB-DAD4599AD4AC} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4969240 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
Task: {ECA8695D-E317-4139-A5C0-80489AB3C72D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2502336 2021-12-15] (Avast Software s.r.o. -> AVAST Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 165.169.76.108 41.213.217.9
Tcpip\..\Interfaces\{bbcec193-a828-4d1d-ac3c-5377cb779385}: [DhcpNameServer] 165.169.76.108 41.213.217.9
Tcpip\..\Interfaces\{f069f325-756b-4d2f-925e-7c075f144a92}: [DhcpNameServer] 165.169.76.108 41.213.217.9

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Acer\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-12]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2021-09-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2021-09-02] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default [2022-01-13]
CHR Extension: (Slides) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-12]
CHR Extension: (Docs) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-30]
CHR Extension: (Google Drive) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-30]
CHR Extension: (FoE - Assistant) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2021-12-16]
CHR Extension: (YouTube) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (Sheets) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-12]
CHR Extension: (ExpressVPN : proxy VPN pour une connexion sécurisée) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgddmllnllkalaagkghckoinaemmogpe [2021-11-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-12]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-01-05]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-12-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-01-12]
CHR Extension: (Download with Free Download Manager (FDM)) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlodlegnpjplclncjkgolcmdhjmlokna [2021-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-30]
CHR Extension: (Gmail) - C:\Users\Acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-30]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.03\atkexComSvc.exe [449336 2021-01-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2020-10-21] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8480848 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-09-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [452888 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1720088 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [452888 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2021-09-02] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\96.1.13589.111\elevation_service.exe [1721904 2021-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-30] (Avast Software s.r.o. -> AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2022-01-12] (Malwarebytes Inc -> Malwarebytes)
U3 wuauserv; C:\Windows\system32\svchost.exe [57360 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
U3 wuauserv; C:\Windows\SysWOW64\svchost.exe [47016 2021-01-18] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S3 GoogleChromeElevationService; "C:\Program Files\Google\Chrome\Application\96.0.4664.110\elevation_service.exe" [X]
S2 HPPrintScanDoctorService; "C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe" [X]
S2 pubgame-updater; C:\Windows\PublicGaming\appsetup.exe [X] <==== ATTENTION

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43920 2020-12-16] (ASUSTeK Computer Inc. -> )
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [223176 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [369216 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [252992 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [100416 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [21936 2021-09-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42416 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [186280 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [540056 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108912 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83976 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [853800 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [545176 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215432 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [318760 2021-12-24] (Avast Software s.r.o. -> AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [117672 2021-03-19] (Tenorshare Co.,Ltd. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [160176 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 int0800; C:\Windows\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2022-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [193448 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69040 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2022-01-12] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [149424 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [210344 2021-03-19] (Tenorshare Co.,Ltd. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsle2ac2a5c; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{13C1D7CE-3E14-40B9-8BDD-881C2132CAF2}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-13 06:51 - 2022-01-13 19:57 - 000019567 _____ C:\Users\Acer\Desktop\FRST.txt
2022-01-12 21:31 - 2022-01-12 21:31 - 000045444 _____ C:\Users\Acer\Desktop\LAmrC0mECH2.htm
2022-01-12 17:26 - 2022-01-12 17:30 - 4129040009 _____ C:\Users\Acer\Desktop\Eternals.2021.IMAX.TRUEFRENCH.720p.WEB.H264-Wawacity.work.mkv
2022-01-12 17:26 - 2022-01-12 17:26 - 000004754 _____ C:\Users\Acer\Downloads\streaming-F7VABKUAOIVJA.html
2022-01-12 16:56 - 2022-01-12 16:56 - 000215695 _____ C:\Users\Acer\Desktop\Message d erreur script - Forums CNET France.html
2022-01-12 16:56 - 2022-01-12 16:56 - 000000000 ____D C:\Users\Acer\Desktop\Message d erreur script - Forums CNET France_files
2022-01-12 16:21 - 2022-01-12 16:21 - 000042113 _____ C:\Users\Acer\Desktop\rapprt analyse malwarebytes pc Giany.txt
2022-01-12 16:19 - 2022-01-12 16:19 - 000193448 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2022-01-12 16:19 - 2022-01-12 16:19 - 000149424 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2022-01-12 16:19 - 2022-01-12 16:19 - 000069040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2022-01-12 15:46 - 2022-01-12 15:46 - 000000000 ____D C:\Users\Acer\AppData\Local\mbam
2022-01-12 15:45 - 2022-01-12 16:19 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-01-12 15:45 - 2022-01-12 16:19 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2022-01-12 15:45 - 2022-01-12 16:19 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-12 15:45 - 2022-01-12 16:19 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-12 15:45 - 2022-01-12 15:44 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-01-12 15:45 - 2022-01-12 15:44 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-01-12 15:44 - 2022-01-12 16:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-12 15:43 - 2022-01-12 16:17 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-12 15:43 - 2022-01-12 15:43 - 002910904 _____ (Malwarebytes) C:\Users\Acer\Desktop\MBSetup.exe
2022-01-12 15:40 - 2022-01-12 15:37 - 000001946 _____ C:\Users\Acer\Desktop\AdwCleaner[C00].txt
2022-01-12 15:40 - 2022-01-12 15:36 - 000001924 _____ C:\Users\Acer\Desktop\AdwCleaner[S00].txt
2022-01-12 15:36 - 2022-01-12 15:36 - 000000000 ____D C:\AdwCleaner
2022-01-12 15:35 - 2022-01-12 15:35 - 008540344 _____ (Malwarebytes) C:\Users\Acer\Desktop\adwcleaner_8.3.1.exe
2022-01-12 15:33 - 2022-01-12 15:33 - 000014543 _____ C:\Users\Acer\Desktop\ZHPCleaner (R).html
2022-01-12 15:33 - 2022-01-12 15:33 - 000006908 _____ C:\Users\Acer\Desktop\ZHPCleaner (R).txt
2022-01-12 15:30 - 2022-01-12 15:30 - 000014468 _____ C:\Users\Acer\Desktop\ZHPCleaner (S).html
2022-01-12 15:30 - 2022-01-12 15:30 - 000006846 _____ C:\Users\Public\Desktop\ZHPCleaner (S).txt
2022-01-12 15:13 - 2022-01-12 15:13 - 003292312 _____ (Nicolas Coolman) C:\Users\Acer\Desktop\ZHPCleaner.exe
2022-01-12 15:13 - 2022-01-12 15:13 - 000000874 _____ C:\Users\Acer\Desktop\ZHPCleaner.lnk
2022-01-12 14:28 - 2022-01-12 16:28 - 000374447 _____ C:\Users\Acer\Desktop\ZHPDiag.html
2022-01-12 14:28 - 2022-01-12 16:28 - 000295836 _____ C:\Users\Public\Desktop\ZHPDiag.txt
2022-01-12 14:19 - 2022-01-12 14:20 - 000000864 _____ C:\Users\Acer\Desktop\ZHPSuite.lnk
2022-01-12 14:18 - 2022-01-12 14:18 - 003478680 _____ (Nicolas Coolman) C:\Users\Acer\Desktop\ZHPSuite.exe
2022-01-12 08:37 - 2022-01-12 08:38 - 002311680 _____ (Farbar) C:\Users\Acer\Desktop\FRST64.exe
2022-01-12 07:10 - 2022-01-12 16:28 - 000000000 ____D C:\Users\Acer\AppData\Roaming\ZHP
2022-01-12 07:10 - 2022-01-12 15:13 - 000000000 ____D C:\Users\Acer\AppData\Local\ZHP
2022-01-12 07:10 - 2022-01-12 07:10 - 000000864 _____ C:\Users\Acer\Desktop\ZHPDiag.lnk
2022-01-12 07:09 - 2022-01-12 07:10 - 003283608 _____ (Nicolas Coolman) C:\Users\Acer\Desktop\ZHPDiag3.exe
2022-01-12 06:46 - 2022-01-12 06:46 - 017563648 _____ C:\Windows\system32\config\SYSTEM
2022-01-11 06:50 - 2022-01-11 06:50 - 000000016 _____ C:\ProgramData\mntemp
2022-01-11 06:49 - 2022-01-13 19:49 - 000003078 _____ C:\Windows\system32\Tasks\klcp_update
2022-01-11 06:49 - 2022-01-11 06:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2022-01-11 06:49 - 2022-01-11 06:49 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2022-01-11 06:48 - 2022-01-11 06:50 - 000000000 ____D C:\ProgramData\Wondershare
2022-01-11 06:48 - 2022-01-11 06:48 - 000001386 _____ C:\Users\Public\Desktop\Wondershare Recoverit.lnk
2022-01-11 06:48 - 2022-01-11 06:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2022-01-11 06:48 - 2022-01-11 06:48 - 000000000 ____D C:\Program Files (x86)\Wondershare
2022-01-11 06:46 - 2022-01-11 06:49 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2022-01-11 06:46 - 2022-01-11 06:46 - 001264416 _____ C:\Users\Acer\Desktop\recoverit_setup_full4198.exe
2022-01-05 15:16 - 2022-01-05 15:16 - 000870475 _____ C:\Users\Acer\Desktop\groupanoo_deal_coupon_23513093.pdf
2022-01-03 07:54 - 2022-01-03 07:56 - 000000000 ____D C:\Users\Acer\AppData\LocalLow\Mozilla
2022-01-03 07:54 - 2022-01-03 07:54 - 000000907 _____ C:\Users\Acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2022-01-03 07:54 - 2022-01-03 07:54 - 000000859 _____ C:\Users\Acer\Desktop\Start Tor Browser.lnk
2022-01-03 07:53 - 2022-01-03 07:53 - 000000000 ____D C:\Users\Acer\Desktop\Tor Browser
2022-01-03 07:48 - 2022-01-03 07:48 - 077167024 _____ C:\Users\Acer\Desktop\torbrowser-install-win64-11.0.3_en-US.exe
2021-12-24 20:15 - 2021-12-24 20:15 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2021-12-24 20:11 - 2021-12-24 20:10 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-12-24 20:11 - 2021-12-24 20:10 - 000215432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-13 19:56 - 2021-10-04 09:55 - 000000000 ____D C:\FRST
2022-01-13 19:49 - 2021-12-13 07:46 - 000003062 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3607251010-463286738-2662432611-1001
2022-01-13 19:49 - 2021-10-22 07:06 - 000002956 _____ C:\Windows\system32\Tasks\BlueStacksHelper_nxt
2022-01-13 19:49 - 2021-05-30 20:51 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2022-01-13 19:49 - 2021-05-30 17:04 - 000003348 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-13 19:49 - 2021-05-30 17:04 - 000003124 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-13 19:49 - 2021-05-30 08:03 - 000002544 _____ C:\Windows\system32\Tasks\Update
2022-01-13 19:49 - 2021-04-11 11:50 - 000003316 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{EB79CC28-4030-41EA-BB72-5ABD2950EAAB}
2022-01-13 19:49 - 2021-04-10 20:48 - 000002202 _____ C:\Windows\system32\Tasks\StartCN
2022-01-13 19:49 - 2021-04-10 20:48 - 000002122 _____ C:\Windows\system32\Tasks\StartDVR
2022-01-13 19:49 - 2021-04-10 16:38 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3607251010-463286738-2662432611-1001
2022-01-13 19:48 - 2019-12-07 13:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-13 19:47 - 2021-04-10 16:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-13 19:03 - 2019-12-07 13:14 - 000000000 ____D C:\Windows\AppReadiness
2022-01-13 07:15 - 2021-05-30 11:02 - 000000000 ____D C:\Users\Acer\AppData\Local\CrashDumps
2022-01-13 07:08 - 2021-04-10 20:07 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-13 00:19 - 2021-04-21 18:20 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-12 20:48 - 2021-04-22 19:16 - 000000000 ____D C:\Users\Acer\AppData\Roaming\vlc
2022-01-12 16:13 - 2021-05-30 10:49 - 000000000 ____D C:\ProgramData\Avast Software
2022-01-12 16:10 - 2021-04-10 16:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-12 16:10 - 2021-04-10 16:21 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-12 16:07 - 2021-05-30 08:10 - 000000000 ____D C:\ProgramData\42
2022-01-12 16:07 - 2021-05-30 08:05 - 000000000 ____D C:\Users\Acer\AppData\LocalLow\gC9tT2iQ3s
2022-01-12 16:07 - 2021-05-30 08:01 - 000000000 ____D C:\Users\Acer\AppData\Local\9e31cc3d-40f7-4d6e-9e6f-39b127feac0e
2022-01-12 16:07 - 2021-05-30 07:26 - 000000000 ____D C:\Program Files (x86)\Tenorshare
2022-01-12 16:07 - 2021-04-21 18:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-01-12 16:07 - 2021-01-18 20:56 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-01-12 16:06 - 2021-05-30 08:02 - 000000000 ____D C:\Users\Acer\AppData\Local\497a8579-05fd-4246-9800-578d37971e5b
2022-01-12 15:45 - 2019-12-07 13:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-01-12 06:47 - 2021-05-30 08:13 - 017563648 _____ C:\Windows\system32\C_32770.NLS
2022-01-12 06:46 - 2019-12-07 13:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-01-12 06:45 - 2021-04-10 16:34 - 000000000 ____D C:\Users\Acer
2022-01-12 05:37 - 2021-04-10 16:21 - 000266384 _____ C:\Windows\system32\FNTCACHE.DAT
2022-01-07 03:18 - 2021-05-30 17:05 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-07 03:04 - 2019-12-07 13:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-01-06 07:51 - 2021-05-30 20:51 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-12-24 20:11 - 2021-05-30 20:51 - 000318760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000853800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000545176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000540056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000369216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000252992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000223176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000186280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000108912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000100416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000083976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-12-24 20:10 - 2021-05-30 20:51 - 000042416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-12-24 20:05 - 2021-04-10 16:35 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-24 20:05 - 2019-12-07 18:49 - 000791756 _____ C:\Windows\system32\perfh00C.dat
2021-12-24 20:05 - 2019-12-07 18:49 - 000149922 _____ C:\Windows\system32\perfc00C.dat
2021-12-24 20:05 - 2019-12-07 13:13 - 000000000 ____D C:\Windows\INF
2021-12-24 19:59 - 2021-10-03 17:11 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Sécurité.lnk
2021-12-16 23:45 - 2021-09-02 14:39 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk

==================== Fichiers à la racine de certains dossiers ========

2021-05-30 08:26 - 2021-05-30 17:04 - 000000000 _____ () C:\Program Files (x86)\temp_files
2021-01-18 18:23 - 2021-01-18 18:23 - 000321226 ___SH () C:\Users\Acer\AppData\Roaming\seisijh
2021-09-02 19:18 - 2021-09-02 19:18 - 000000000 _____ () C:\Users\Acer\AppData\Roaming\unp20278186.tmp
2021-09-02 19:30 - 2021-09-02 19:30 - 000000000 _____ () C:\Users\Acer\AppData\Roaming\unp81963247.tmp
2021-05-30 08:02 - 2021-05-30 08:02 - 000000558 _____ () C:\Users\Acer\AppData\Local\bowsakkdestx.txt
2021-05-30 08:04 - 2021-05-30 08:04 - 000000049 _____ () C:\Users\Acer\AppData\Local\script.ps1

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Signaler le contenu de ce document