Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Exécuté par SAYDA (administrateur) sur DESKTOP-0B3H6UO (ASUSTeK COMPUTER INC. UX490UAR) (07-02-2022 17:59:42)
Exécuté depuis C:\Users\SAYDA\Desktop
Profils chargés: SAYDA
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adaware Software (Lavasoft Software Canada Inc.) -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareService.exe
(Adaware Software (Lavasoft Software Canada Inc.) -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareTray.exe
(Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Mixbyte Inc -> Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpgrade-2022.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Windows\Temp\is-5D6AU.tmp\SDUpgrade-2022.tmp
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareTray.exe [4876024 2021-12-08] (Adaware Software (Lavasoft Software Canada Inc.) -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [4884016 2019-10-17] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [236416 2018-12-17] (Mixbyte Inc -> )
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6787856 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [utweb] => "C:\Users\SAYDA\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-12-23] (Lavasoft Software Canada Inc. -> Lavasoft)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [ut] => C:\Users\SAYDA\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-14] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65176 2019-10-17] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-23] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0D4F24DC-DE9F-4FB6-A6D2-B3B0E14DFBAB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-22] (Google LLC -> Google LLC)
Task: {199F90E9-7198-451D-AFCD-D9B2F81745D1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A9B95A2-A0B1-415C-87BB-ED0649F2D9DA} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [7177168 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {28A46A48-74A7-4F8B-BA1E-4641C58CA490} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {40A97C6C-932E-4ACF-A332-74A3B1BF89EF} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4B3272BA-FE75-42C4-B95B-F357223690D8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {55426C70-BF3A-4A69-A3E0-BA642525455A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {69DD6874-E074-42B5-8D50-B2546B4AC021} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {726EB16E-96AB-4FC2-8025-05A89A746912} - System32\Tasks\RtHDVBg_CTPreset => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7AD71E3D-1F0F-4B9D-B90E-D3A24ACA1B52} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5723640 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {91E60F2A-46F4-439D-B0E9-F6CD4A0F50BB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6189624 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {9ECC5C74-A65F-4BF7-AF39-80B30D636272} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A8FC7CBF-614D-44FA-8B97-C3394445883B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-22] (Google LLC -> Google LLC)
Task: {BFDF68B2-FB22-44E0-9A84-92AAB7D18338} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7A9E7CF-F506-409F-AB48-6C5EE82A372E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2017-05-24] (ASUS) [Fichier non signé]
Task: {C91856F8-26F2-4895-8B84-CA5E21FB7630} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2480504 2017-04-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1579296 2016-11-09] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {CF535560-1A9F-4453-BE8D-CCFECB6B0873} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC8DBF1-EA9A-4B51-A89C-09A800D12003} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {F3FB7AF6-8197-4575-9F17-EB41D557C88C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F5307482-20D2-47F2-A3DF-F0A5D5E65545} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier)
Task: {FA04867B-9074-4F2F-84BC-FDDFAA0784B1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FA078DA0-3833-4FEC-9FBA-B3E666506870} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8b1edfd1-8324-4f9e-bd40-94aa6921d17c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{b1e9d883-5204-44a7-9e61-67f59a5f44e1}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\SAYDA\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-23]
Edge HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
Edge StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
Edge DefaultSearchURL: Default -> hxxps://poshukach.com/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
Edge DefaultSearchKeyword: Default -> Poshukach Engin Search
Edge DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-07] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-10-16]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-10-17] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default [2022-02-07]
CHR Notifications: Default -> hxxps://clients.hsbc.fr; hxxps://pagesjaunes-by.accengage.net
CHR HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-02-06]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-02-06]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareService.exe [587104 2021-12-08] (Adaware Software (Lavasoft Software Canada Inc.) -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-12-23] (Lavasoft Software Canada Inc. -> )
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [73088 2018-12-17] (Mixbyte Inc -> Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [15744 2018-12-17] (Mixbyte Inc -> Ellora Assets Corp.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-07] (McAfee, LLC -> McAfee, LLC)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-12-23] (Lavasoft Software Canada Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-10-12] (Bitdefender SRL -> Bitdefender)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
U0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [615840 2021-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2019-07-24] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2022-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-07 17:59 - 2022-02-07 18:00 - 000025114 _____ C:\Users\SAYDA\Desktop\FRST.txt
2022-02-07 17:59 - 2022-02-07 18:00 - 000000000 ____D C:\FRST
2022-02-07 17:58 - 2022-02-07 17:57 - 002311680 _____ (Farbar) C:\Users\SAYDA\Desktop\FRST64.exe
2022-02-07 17:57 - 2022-02-07 17:57 - 002311680 _____ (Farbar) C:\Users\SAYDA\Downloads\FRST64.exe
2022-02-07 17:27 - 2022-02-07 17:27 - 000002401 _____ C:\Users\Public\Desktop\Adaware Antivirus.lnk
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\adaware
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Users\SAYDA\AppData\Local\AdAwareDesktop
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\adaware
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Program Files\adaware
2022-02-07 17:26 - 2022-02-07 17:26 - 000000000 ____D C:\ProgramData\adaware
2022-02-07 17:25 - 2022-02-07 17:25 - 017648032 _____ C:\Users\SAYDA\Downloads\adawarewebinstaller.exe
2022-02-07 17:25 - 2022-02-07 17:25 - 017648032 _____ C:\Users\SAYDA\Desktop\adawarewebinstaller.exe
2022-02-07 17:20 - 2022-02-07 17:20 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Safer-Networking Ltd
2022-02-07 17:19 - 2022-02-07 17:21 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-02-07 17:19 - 2022-02-07 17:19 - 000001462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2022-02-07 17:19 - 2022-02-07 17:19 - 000001450 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2022-02-07 17:19 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Spybot3ELAM.sys
2022-02-07 17:19 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2022-02-07 17:14 - 2022-02-07 17:14 - 000000000 ____D C:\Users\SAYDA\AppData\Local\CrashDumps
2022-02-07 17:08 - 2022-02-07 17:11 - 069300040 _____ (Safer-Networking Ltd. ) C:\Users\SAYDA\Desktop\spybotsd-2.8.68.0.exe
2022-02-07 17:01 - 2022-02-07 17:14 - 000000000 ____D C:\Users\SAYDA\AppData\LocalLow\uTorrent
2022-02-06 21:15 - 2022-02-06 21:15 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-06 21:15 - 2022-02-06 21:15 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-02-06 21:15 - 2022-02-06 21:15 - 000000000 ____D C:\Users\SAYDA\AppData\Local\mbam
2022-02-06 21:15 - 2022-02-06 21:14 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-06 21:15 - 2022-02-06 21:14 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-06 21:14 - 2022-02-06 21:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-06 21:14 - 2022-02-06 21:14 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-06 21:13 - 2022-02-06 21:13 - 002911928 _____ (Malwarebytes) C:\Users\SAYDA\Downloads\MBSetup.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-16 20:37 - 2022-01-16 20:37 - 000000000 ___HD C:\$WinREAgent
2022-01-11 13:07 - 2022-01-11 15:57 - 000000000 ____D C:\Users\SAYDA\Desktop\ANALYSES
2022-01-11 12:48 - 2022-01-11 12:48 - 000001484 _____ C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2022-01-11 12:45 - 2022-01-11 12:45 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2022-01-11 12:45 - 2022-01-11 12:45 - 000000000 ____D C:\Users\SAYDA\AppData\Local\4kdownload.com
2022-01-11 12:44 - 2022-01-11 12:44 - 000000000 ____D C:\Program Files\4KDownload
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\Program Files\WinPcap
2022-01-11 12:28 - 2022-01-11 12:29 - 000000000 ____D C:\Users\SAYDA\Downloads\Freemake Video Converter v 4.1.10.137 + Activation
2022-01-11 12:28 - 2022-01-11 12:28 - 000012718 _____ C:\Users\SAYDA\Downloads\Freemake Video Converter v 4.1.10.137 + Activation.torrent
2022-01-11 12:25 - 2022-01-11 12:25 - 000000000 ____D C:\Users\SAYDA\Downloads\Freemake Video Converter 4.1.10.383 [WIN FR PRÉ-CRACKÉ]
2022-01-11 12:24 - 2022-01-11 12:25 - 000019799 _____ C:\Users\SAYDA\Downloads\Freemake Video Converter 4.1.10.383 [WIN FR PRÉ-CRACKÉ].torrent
2022-01-11 12:21 - 2022-01-11 12:36 - 000000000 ____D C:\Users\SAYDA\AppData\Local\FreemakeVideoConverter
2022-01-11 12:16 - 2022-01-11 12:21 - 000000000 ____D C:\Users\SAYDA\Documents\Freemake
2022-01-11 12:16 - 2022-01-11 12:21 - 000000000 ____D C:\ProgramData\Freemake
2022-01-11 12:15 - 2022-01-11 12:31 - 000000000 ____D C:\Program Files (x86)\Freemake
2022-01-11 12:15 - 2022-01-11 12:15 - 001019232 _____ (Mixbyte Inc. ) C:\Users\SAYDA\Downloads\FreemakeVideoDownloaderSetup_3a3ec7f7-c6b4-4ca5-111e-22788cd72a08.exe
2022-01-10 23:33 - 2022-01-10 23:33 - 000354690 _____ C:\Users\SAYDA\Desktop\CANPresentation.pdf
2022-01-10 23:27 - 2022-01-10 23:28 - 000884048 _____ (Open Media LLC) C:\Users\SAYDA\Downloads\4kvideodownloader_4.19.3_x64_online.exe
2022-01-10 23:06 - 2022-01-10 23:16 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Youtube Downloader HD
2022-01-10 23:04 - 2022-01-10 23:05 - 020414599 _____ (YoutubeDownloaderHD.com ) C:\Users\SAYDA\Downloads\youtube_downloader_hd.exe
2022-01-10 22:12 - 2022-01-10 23:44 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Televzr Light
2022-01-10 22:12 - 2022-01-10 22:14 - 000000000 ____D C:\Users\SAYDA\Downloads\Televzr Downloads
2022-01-10 22:12 - 2022-01-10 22:12 - 000000000 ____D C:\Users\SAYDA\AppData\Local\televzr_light-updater
2022-01-10 19:41 - 2022-01-11 12:18 - 000000000 ____D C:\Users\SAYDA\AppData\Local\televzr_light
2022-01-10 19:41 - 2022-01-10 19:41 - 000897048 _____ (ITPRODUCTDEV LTD) C:\Users\SAYDA\Downloads\VideoDownloader-[129646284.1641840074,,,,].exe
2022-01-09 17:16 - 2022-01-09 17:16 - 000000000 ____D C:\Users\SAYDA\Downloads\uTorrent Web Tutorial Video
2022-01-09 17:14 - 2022-01-09 17:14 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220109_171459.txt
2022-01-08 21:41 - 2022-01-08 21:41 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_214133.txt
2022-01-08 19:12 - 2022-02-06 21:17 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\vlc
2022-01-08 19:12 - 2022-01-08 19:12 - 000000000 ____D C:\Program Files\VideoLAN
2022-01-08 18:54 - 2022-01-08 18:54 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_185427.txt
2022-01-08 18:47 - 2022-01-08 18:47 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184757.txt
2022-01-08 18:44 - 2022-01-08 18:44 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184401.txt
2022-01-08 18:40 - 2022-01-08 18:40 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184019.txt
2022-01-08 15:42 - 2022-01-08 15:44 - 000000000 ____D C:\WINDOWS\Minidump
2022-01-08 15:42 - 2022-01-08 15:43 - 004775588 _____ C:\WINDOWS\Minidump\010822-36234-01.dmp
2022-01-08 15:42 - 2022-01-08 15:42 - 874624597 _____ C:\WINDOWS\MEMORY.DMP
2022-01-08 15:42 - 2022-01-08 15:42 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_154246.txt
2022-01-08 15:27 - 2022-01-08 15:27 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_152721.txt
2022-01-08 12:46 - 2022-01-08 12:46 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_124628.txt
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-07 17:54 - 2020-01-22 20:41 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-07 17:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-07 17:17 - 2020-10-07 16:24 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-07 17:17 - 2019-12-07 15:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-07 17:17 - 2019-12-07 15:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-07 17:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-07 17:14 - 2021-09-01 17:37 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\uTorrent
2022-02-07 17:01 - 2018-12-26 18:19 - 000000000 __SHD C:\Users\SAYDA\IntelGraphicsProfiles
2022-02-06 23:45 - 2020-10-07 16:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-06 21:15 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-06 21:08 - 2017-11-21 13:43 - 000000000 ____D C:\WINDOWS\prerequisites
2022-02-06 20:17 - 2020-08-11 14:23 - 000000000 ____D C:\Users\SAYDA\AppData\Local\BitTorrentHelper
2022-02-06 20:15 - 2020-09-26 14:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-03 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-03 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-29 19:49 - 2020-10-07 16:22 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-29 19:49 - 2020-10-07 16:22 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-25 20:11 - 2021-12-23 17:17 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-463173295-714308798-4271076878-1001
2022-01-25 20:11 - 2020-10-07 16:22 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-463173295-714308798-4271076878-1001
2022-01-25 20:11 - 2020-10-07 15:26 - 000002419 _____ C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-23 19:56 - 2021-09-01 17:17 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Lavasoft
2022-01-23 19:56 - 2021-09-01 17:17 - 000000000 ____D C:\ProgramData\Lavasoft
2022-01-19 20:25 - 2020-10-07 16:22 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-19 20:25 - 2020-10-07 16:22 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 11:32 - 2020-10-07 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-19 11:32 - 2020-10-07 16:16 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-19 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-16 21:10 - 2020-10-07 16:16 - 000280144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-16 21:10 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-16 20:46 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-16 20:35 - 2020-01-13 17:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-16 20:26 - 2020-01-13 17:26 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-15 23:40 - 2017-11-21 13:45 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-15 12:41 - 2020-06-22 08:48 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 12:41 - 2020-06-22 08:48 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-15 12:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-11 14:54 - 2020-01-02 15:11 - 000000000 ____D C:\Users\SAYDA\AppData\Local\D3DSCache
2022-01-11 12:45 - 2017-11-21 13:27 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-11 12:20 - 2019-12-24 23:37 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Packages
2022-01-11 12:19 - 2017-11-21 13:30 - 000000000 ____D C:\Program Files (x86)\Intel
2022-01-11 12:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-01-10 22:15 - 2019-07-29 12:39 - 000000000 ____D C:\Users\SAYDA\Downloads\KMS Tools Portable 01.06.2019 by Ratiborus
2022-01-08 21:01 - 2020-10-07 15:26 - 000000000 ____D C:\Users\SAYDA
2022-01-08 19:12 - 2019-03-14 23:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
==================== Fichiers à la racine de certains dossiers ========
2020-08-11 14:40 - 2020-08-11 14:40 - 000000410 _____ () C:\Users\SAYDA\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par SAYDA (administrateur) sur DESKTOP-0B3H6UO (ASUSTeK COMPUTER INC. UX490UAR) (07-02-2022 17:59:42)
Exécuté depuis C:\Users\SAYDA\Desktop
Profils chargés: SAYDA
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1466 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adaware Software (Lavasoft Software Canada Inc.) -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareService.exe
(Adaware Software (Lavasoft Software Canada Inc.) -> ) C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareTray.exe
(Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Mixbyte Inc -> Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpgrade-2022.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Windows\Temp\is-5D6AU.tmp\SDUpgrade-2022.tmp
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareTray.exe [4876024 2021-12-08] (Adaware Software (Lavasoft Software Canada Inc.) -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [4884016 2019-10-17] (Adobe Inc. -> Adobe Systems Inc.) [Fichier non signé]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [236416 2018-12-17] (Mixbyte Inc -> )
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6787856 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [utweb] => "C:\Users\SAYDA\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Pas de fichier)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-12-23] (Lavasoft Software Canada Inc. -> Lavasoft)
HKU\S-1-5-21-463173295-714308798-4271076878-1001\...\Run: [ut] => C:\Users\SAYDA\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-14] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65176 2019-10-17] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-23] (Google LLC -> Google LLC)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0D4F24DC-DE9F-4FB6-A6D2-B3B0E14DFBAB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-22] (Google LLC -> Google LLC)
Task: {199F90E9-7198-451D-AFCD-D9B2F81745D1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {1A9B95A2-A0B1-415C-87BB-ED0649F2D9DA} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [7177168 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {28A46A48-74A7-4F8B-BA1E-4641C58CA490} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {40A97C6C-932E-4ACF-A332-74A3B1BF89EF} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4B3272BA-FE75-42C4-B95B-F357223690D8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {55426C70-BF3A-4A69-A3E0-BA642525455A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {69DD6874-E074-42B5-8D50-B2546B4AC021} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {726EB16E-96AB-4FC2-8025-05A89A746912} - System32\Tasks\RtHDVBg_CTPreset => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7AD71E3D-1F0F-4B9D-B90E-D3A24ACA1B52} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5723640 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {91E60F2A-46F4-439D-B0E9-F6CD4A0F50BB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6189624 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {9ECC5C74-A65F-4BF7-AF39-80B30D636272} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A8FC7CBF-614D-44FA-8B97-C3394445883B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-22] (Google LLC -> Google LLC)
Task: {BFDF68B2-FB22-44E0-9A84-92AAB7D18338} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7A9E7CF-F506-409F-AB48-6C5EE82A372E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2017-05-24] (ASUS) [Fichier non signé]
Task: {C91856F8-26F2-4895-8B84-CA5E21FB7630} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2480504 2017-04-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1579296 2016-11-09] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {CF535560-1A9F-4453-BE8D-CCFECB6B0873} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138592 2022-01-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DFC8DBF1-EA9A-4B51-A89C-09A800D12003} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {F3FB7AF6-8197-4575-9F17-EB41D557C88C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F5307482-20D2-47F2-A3DF-F0A5D5E65545} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier)
Task: {FA04867B-9074-4F2F-84BC-FDDFAA0784B1} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FA078DA0-3833-4FEC-9FBA-B3E666506870} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{8b1edfd1-8324-4f9e-bd40-94aa6921d17c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{b1e9d883-5204-44a7-9e61-67f59a5f44e1}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\SAYDA\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-23]
Edge HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
Edge StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
Edge DefaultSearchURL: Default -> hxxps://poshukach.com/search?q={searchTerms}&fr=ps&gp=496723&altserp=1
Edge DefaultSearchKeyword: Default -> Poshukach Engin Search
Edge DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms}
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-10-07] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-10-16]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-10-17] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default [2022-02-07]
CHR Notifications: Default -> hxxps://clients.hsbc.fr; hxxps://pagesjaunes-by.accengage.net
CHR HomePage: Default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
CHR StartupUrls: Default -> "hxxps://poshukach.com?fr=ps&gp=496723&altserp=1"
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-02-06]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-02-06]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\SAYDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 adawareantivirusservice; C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.191.0\AdAwareService.exe [587104 2021-12-08] (Adaware Software (Lavasoft Software Canada Inc.) -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-12-23] (Lavasoft Software Canada Inc. -> )
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [73088 2018-12-17] (Mixbyte Inc -> Freemake)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [15744 2018-12-17] (Mixbyte Inc -> Ellora Assets Corp.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [953544 2020-10-07] (McAfee, LLC -> McAfee, LLC)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-12-23] (Lavasoft Software Canada Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-10-12] (Bitdefender SRL -> Bitdefender)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-06] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
U0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [615840 2021-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2019-07-24] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435432 2022-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-07 17:59 - 2022-02-07 18:00 - 000025114 _____ C:\Users\SAYDA\Desktop\FRST.txt
2022-02-07 17:59 - 2022-02-07 18:00 - 000000000 ____D C:\FRST
2022-02-07 17:58 - 2022-02-07 17:57 - 002311680 _____ (Farbar) C:\Users\SAYDA\Desktop\FRST64.exe
2022-02-07 17:57 - 2022-02-07 17:57 - 002311680 _____ (Farbar) C:\Users\SAYDA\Downloads\FRST64.exe
2022-02-07 17:27 - 2022-02-07 17:27 - 000002401 _____ C:\Users\Public\Desktop\Adaware Antivirus.lnk
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\adaware
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Users\SAYDA\AppData\Local\AdAwareDesktop
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\adaware
2022-02-07 17:27 - 2022-02-07 17:27 - 000000000 ____D C:\Program Files\adaware
2022-02-07 17:26 - 2022-02-07 17:26 - 000000000 ____D C:\ProgramData\adaware
2022-02-07 17:25 - 2022-02-07 17:25 - 017648032 _____ C:\Users\SAYDA\Downloads\adawarewebinstaller.exe
2022-02-07 17:25 - 2022-02-07 17:25 - 017648032 _____ C:\Users\SAYDA\Desktop\adawarewebinstaller.exe
2022-02-07 17:20 - 2022-02-07 17:20 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Safer-Networking Ltd
2022-02-07 17:19 - 2022-02-07 17:21 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2022-02-07 17:19 - 2022-02-07 17:19 - 000001462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2022-02-07 17:19 - 2022-02-07 17:19 - 000001450 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-02-07 17:19 - 2022-02-07 17:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2022-02-07 17:19 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Spybot3ELAM.sys
2022-02-07 17:19 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2022-02-07 17:14 - 2022-02-07 17:14 - 000000000 ____D C:\Users\SAYDA\AppData\Local\CrashDumps
2022-02-07 17:08 - 2022-02-07 17:11 - 069300040 _____ (Safer-Networking Ltd. ) C:\Users\SAYDA\Desktop\spybotsd-2.8.68.0.exe
2022-02-07 17:01 - 2022-02-07 17:14 - 000000000 ____D C:\Users\SAYDA\AppData\LocalLow\uTorrent
2022-02-06 21:15 - 2022-02-06 21:15 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-06 21:15 - 2022-02-06 21:15 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-06 21:15 - 2022-02-06 21:15 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-02-06 21:15 - 2022-02-06 21:15 - 000000000 ____D C:\Users\SAYDA\AppData\Local\mbam
2022-02-06 21:15 - 2022-02-06 21:14 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-06 21:15 - 2022-02-06 21:14 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-06 21:14 - 2022-02-06 21:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-06 21:14 - 2022-02-06 21:14 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-06 21:13 - 2022-02-06 21:13 - 002911928 _____ (Malwarebytes) C:\Users\SAYDA\Downloads\MBSetup.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-16 20:44 - 2022-01-16 20:44 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-16 20:37 - 2022-01-16 20:37 - 000000000 ___HD C:\$WinREAgent
2022-01-11 13:07 - 2022-01-11 15:57 - 000000000 ____D C:\Users\SAYDA\Desktop\ANALYSES
2022-01-11 12:48 - 2022-01-11 12:48 - 000001484 _____ C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2022-01-11 12:45 - 2022-01-11 12:45 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk
2022-01-11 12:45 - 2022-01-11 12:45 - 000000000 ____D C:\Users\SAYDA\AppData\Local\4kdownload.com
2022-01-11 12:44 - 2022-01-11 12:44 - 000000000 ____D C:\Program Files\4KDownload
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2022-01-11 12:31 - 2022-01-11 12:31 - 000000000 ____D C:\Program Files\WinPcap
2022-01-11 12:28 - 2022-01-11 12:29 - 000000000 ____D C:\Users\SAYDA\Downloads\Freemake Video Converter v 4.1.10.137 + Activation
2022-01-11 12:28 - 2022-01-11 12:28 - 000012718 _____ C:\Users\SAYDA\Downloads\Freemake Video Converter v 4.1.10.137 + Activation.torrent
2022-01-11 12:25 - 2022-01-11 12:25 - 000000000 ____D C:\Users\SAYDA\Downloads\Freemake Video Converter 4.1.10.383 [WIN FR PRÉ-CRACKÉ]
2022-01-11 12:24 - 2022-01-11 12:25 - 000019799 _____ C:\Users\SAYDA\Downloads\Freemake Video Converter 4.1.10.383 [WIN FR PRÉ-CRACKÉ].torrent
2022-01-11 12:21 - 2022-01-11 12:36 - 000000000 ____D C:\Users\SAYDA\AppData\Local\FreemakeVideoConverter
2022-01-11 12:16 - 2022-01-11 12:21 - 000000000 ____D C:\Users\SAYDA\Documents\Freemake
2022-01-11 12:16 - 2022-01-11 12:21 - 000000000 ____D C:\ProgramData\Freemake
2022-01-11 12:15 - 2022-01-11 12:31 - 000000000 ____D C:\Program Files (x86)\Freemake
2022-01-11 12:15 - 2022-01-11 12:15 - 001019232 _____ (Mixbyte Inc. ) C:\Users\SAYDA\Downloads\FreemakeVideoDownloaderSetup_3a3ec7f7-c6b4-4ca5-111e-22788cd72a08.exe
2022-01-10 23:33 - 2022-01-10 23:33 - 000354690 _____ C:\Users\SAYDA\Desktop\CANPresentation.pdf
2022-01-10 23:27 - 2022-01-10 23:28 - 000884048 _____ (Open Media LLC) C:\Users\SAYDA\Downloads\4kvideodownloader_4.19.3_x64_online.exe
2022-01-10 23:06 - 2022-01-10 23:16 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Youtube Downloader HD
2022-01-10 23:04 - 2022-01-10 23:05 - 020414599 _____ (YoutubeDownloaderHD.com ) C:\Users\SAYDA\Downloads\youtube_downloader_hd.exe
2022-01-10 22:12 - 2022-01-10 23:44 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\Televzr Light
2022-01-10 22:12 - 2022-01-10 22:14 - 000000000 ____D C:\Users\SAYDA\Downloads\Televzr Downloads
2022-01-10 22:12 - 2022-01-10 22:12 - 000000000 ____D C:\Users\SAYDA\AppData\Local\televzr_light-updater
2022-01-10 19:41 - 2022-01-11 12:18 - 000000000 ____D C:\Users\SAYDA\AppData\Local\televzr_light
2022-01-10 19:41 - 2022-01-10 19:41 - 000897048 _____ (ITPRODUCTDEV LTD) C:\Users\SAYDA\Downloads\VideoDownloader-[129646284.1641840074,,,,].exe
2022-01-09 17:16 - 2022-01-09 17:16 - 000000000 ____D C:\Users\SAYDA\Downloads\uTorrent Web Tutorial Video
2022-01-09 17:14 - 2022-01-09 17:14 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220109_171459.txt
2022-01-08 21:41 - 2022-01-08 21:41 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_214133.txt
2022-01-08 19:12 - 2022-02-06 21:17 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\vlc
2022-01-08 19:12 - 2022-01-08 19:12 - 000000000 ____D C:\Program Files\VideoLAN
2022-01-08 18:54 - 2022-01-08 18:54 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_185427.txt
2022-01-08 18:47 - 2022-01-08 18:47 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184757.txt
2022-01-08 18:44 - 2022-01-08 18:44 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184401.txt
2022-01-08 18:40 - 2022-01-08 18:40 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_184019.txt
2022-01-08 15:42 - 2022-01-08 15:44 - 000000000 ____D C:\WINDOWS\Minidump
2022-01-08 15:42 - 2022-01-08 15:43 - 004775588 _____ C:\WINDOWS\Minidump\010822-36234-01.dmp
2022-01-08 15:42 - 2022-01-08 15:42 - 874624597 _____ C:\WINDOWS\MEMORY.DMP
2022-01-08 15:42 - 2022-01-08 15:42 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_154246.txt
2022-01-08 15:27 - 2022-01-08 15:27 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_152721.txt
2022-01-08 12:46 - 2022-01-08 12:46 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20220108_124628.txt
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-07 17:54 - 2020-01-22 20:41 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-07 17:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-07 17:17 - 2020-10-07 16:24 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-07 17:17 - 2019-12-07 15:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-07 17:17 - 2019-12-07 15:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-07 17:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-07 17:14 - 2021-09-01 17:37 - 000000000 ____D C:\Users\SAYDA\AppData\Roaming\uTorrent
2022-02-07 17:01 - 2018-12-26 18:19 - 000000000 __SHD C:\Users\SAYDA\IntelGraphicsProfiles
2022-02-06 23:45 - 2020-10-07 16:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-06 21:15 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-06 21:08 - 2017-11-21 13:43 - 000000000 ____D C:\WINDOWS\prerequisites
2022-02-06 20:17 - 2020-08-11 14:23 - 000000000 ____D C:\Users\SAYDA\AppData\Local\BitTorrentHelper
2022-02-06 20:15 - 2020-09-26 14:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-03 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-03 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-29 19:49 - 2020-10-07 16:22 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-29 19:49 - 2020-10-07 16:22 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-25 20:11 - 2021-12-23 17:17 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-463173295-714308798-4271076878-1001
2022-01-25 20:11 - 2020-10-07 16:22 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-463173295-714308798-4271076878-1001
2022-01-25 20:11 - 2020-10-07 15:26 - 000002419 _____ C:\Users\SAYDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-23 19:56 - 2021-09-01 17:17 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Lavasoft
2022-01-23 19:56 - 2021-09-01 17:17 - 000000000 ____D C:\ProgramData\Lavasoft
2022-01-19 20:25 - 2020-10-07 16:22 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-19 20:25 - 2020-10-07 16:22 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-19 11:32 - 2020-10-07 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-19 11:32 - 2020-10-07 16:16 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-19 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-16 21:10 - 2020-10-07 16:16 - 000280144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-16 21:10 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-16 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-16 20:46 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-16 20:35 - 2020-01-13 17:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-16 20:26 - 2020-01-13 17:26 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-15 23:40 - 2017-11-21 13:45 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-15 12:41 - 2020-06-22 08:48 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 12:41 - 2020-06-22 08:48 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-15 12:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-11 14:54 - 2020-01-02 15:11 - 000000000 ____D C:\Users\SAYDA\AppData\Local\D3DSCache
2022-01-11 12:45 - 2017-11-21 13:27 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-11 12:20 - 2019-12-24 23:37 - 000000000 ____D C:\Users\SAYDA\AppData\Local\Packages
2022-01-11 12:19 - 2017-11-21 13:30 - 000000000 ____D C:\Program Files (x86)\Intel
2022-01-11 12:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-01-10 22:15 - 2019-07-29 12:39 - 000000000 ____D C:\Users\SAYDA\Downloads\KMS Tools Portable 01.06.2019 by Ratiborus
2022-01-08 21:01 - 2020-10-07 15:26 - 000000000 ____D C:\Users\SAYDA
2022-01-08 19:12 - 2019-03-14 23:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
==================== Fichiers à la racine de certains dossiers ========
2020-08-11 14:40 - 2020-08-11 14:40 - 000000410 _____ () C:\Users\SAYDA\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================