Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2022 01
Exécuté par Botherel (administrateur) sur DESKTOP-MC81V4M (ASUSTeK COMPUTER INC. X756UAM) (02-07-2022 17:23:42)
Exécuté depuis C:\Users\Botherel\Downloads
Profils chargés: Botherel
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1682 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avpui.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <4>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUSrv.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_b403dc0201a474ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UtcDecoderHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1737_none_7dec0d8c7ca729de\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [4134256 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [MicrosoftEdgeAutoLaunch_200D8773B215BD69D4235B0609EB5F45] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-06-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-28] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03C36510-3A89-43C2-8928-1253EDD2405D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-11-20] (Google Inc -> Google Inc.)
Task: {063C8C78-82BA-4CAD-A079-EF875EFB18B1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {06D18FAB-5BD5-4751-AA05-21A93180A37F} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {2FB68D95-8AE8-49A6-A5BE-7CBC39BE2520} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {40F22AB5-3A53-41A4-B00F-AF14ED458ADD} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {424D70BE-1CE9-4C9A-9AD9-3821CEB3CB35} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {42D2A984-0512-484D-970B-5F93009F7ADD} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [6692208 2022-05-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {5B4EE2E4-811C-488C-915B-7C5A0B1D41A0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {5F36C4C7-0643-408B-BDCF-80765FF37DEE} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8EA09AD8-0505-44B6-8E28-7973566C6E5A} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
Task: {8EA9DD64-2D30-4527-9B1D-43332A7E32F3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform)
Task: {ABCACFB7-C4F7-4402-AE34-DC9A58B12866} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {AF832138-6DC1-4CD2-8E4E-7B23F5B7BA01} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [4615024 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 5d50d926-88cb-4f2e-bc93-652c84330e44
Task: {C9BEC7B4-C5D4-4C5F-A448-C527976118C0} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {DC7C64C8-B5C5-4208-B5D1-F559A217A33B} - System32\Tasks\CCleanerSkipUAC - Botherel => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F2C1F82E-AEE5-4843-8A8D-988B8983159B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-11-20] (Google Inc -> Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4e7eca96-2bdb-4362-9063-19582bf061b0}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\Botherel\Downloads
Edge Notifications: HKU\S-1-5-21-3103509191-3508638539-4170635064-1001 -> hxxp://www.liberation.fr; hxxps://francais.rt.com; hxxps://www.tomsguide.fr; hxxps://www.liberation.fr; hxxps://mail.google.com; hxxps://www.facebook.com; hxxps://www.medelli.fr; hxxps://fr.aleteia.org
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Enhancer for YouTube™) -> EdgeExtension_48376MaximeRFEnhancerforYouTubeforMicrosoftEdge_f4efyycdr3qdm => C:\Program Files\WindowsApps\48376MaximeRF.EnhancerforYouTubeforMicrosoftEdge_2.0.101.0_neutral__f4efyycdr3qdm [2020-04-01]
Edge Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) -> EdgeExtension_GhosteryGhostery_kzkqe0pn505dg => C:\Program Files\WindowsApps\Ghostery.Ghostery_8.4.6.0_neutral__kzkqe0pn505dg [2019-12-28]
Edge Extension: (360网盾安全保护) -> EdgeExtension_QIHU360SOFTWARECOLIMITED360InternetProtection_c0yfzbptqem36 => C:\Program Files\WindowsApps\QIHU360SOFTWARECO.LIMITED.360InternetProtection_1.1.12.0_x86__c0yfzbptqem36 [2018-05-29]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2022-02-09]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-02]
Edge DownloadDir: Default -> C:\Users\Botherel\Downloads
Edge Notifications: Default -> hxxp://www.liberation.fr; hxxps://fr.aleteia.org; hxxps://francais.rt.com; hxxps://mail.google.com; hxxps://smsmms.orange.fr; hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.liberation.fr; hxxps://www.medelli.fr; hxxps://www.tomsguide.fr
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Notifications Google+) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi [2021-11-10]
Edge Extension: (Enhancer for YouTube™) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dlgfaleeejmphhnemjgiaekdbonkagkd [2022-06-27]
Edge Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2022-06-27]
Edge Extension: (Flash® Player for YouTube™) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lajdkhdcndkniopfefocbgbkofflagpm [2021-11-10]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-06-29]
Edge Extension: (360 Internet Protection) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\okdacpiidbbphpjpfmecjjhicomjdeie [2022-04-28]
Edge Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-11]
Edge HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd]
FireFox:
========
FF DefaultProfile: ma0wucbb.default
FF ProfilePath: C:\Users\Botherel\AppData\Roaming\Mozilla\Firefox\Profiles\ma0wucbb.default [2022-07-02]
FF user.js: detected! => C:\Users\Botherel\AppData\Roaming\Mozilla\Firefox\Profiles\ma0wucbb.default\user.js [2017-11-20]
FF Homepage: Mozilla\Firefox\Profiles\ma0wucbb.default -> google.fr
FF HKLM\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Orange\Orange Security Suite 10.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Orange\Orange Security Suite 10.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-06-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default [2022-07-02]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH","hxxps://www.google.com/","hxxp://www.msn.com/?pc=BDT5&ocid=BDT5DHP","hxxp://r.orange.fr/r/Oadventurer_home","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://google/","hxxps://www.google.com/","hxxp://www.google.com/"
CHR Extension: (Notifications Google+) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi [2017-11-21]
CHR Extension: (Good News) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\deegloljmdbfbjhlimieancmcfombgjj [2017-11-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-02]
CHR Extension: (Extension de sécurité 16.1 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgleflkdamakpmckkidkcmnmdikbbmok [2021-01-26]
CHR Extension: (Flash® Player for YouTube™) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajdkhdcndkniopfefocbgbkofflagpm [2017-11-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-13]
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-02]
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-02]
CHR HKLM\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok
CHR HKLM\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
CHR HKLM-x32\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok
CHR HKLM-x32\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AVP20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> )
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [15710064 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-04-28] (HP Inc. -> HP Inc.)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [189792 2022-04-25] (Qualcomm Atheros, Inc. -> )
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [113152 2022-06-29] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-07-25] (Intel Corporation -> Intel Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [140032 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1582672 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [188848 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [357136 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [187200 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [267824 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-10-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-11] (Microsoft Windows -> Microsoft Corporation)
S4 BthPan; \SystemRoot\System32\drivers\bthpan.sys [X]
R4 usbvideo; \SystemRoot\System32\Drivers\usbvideo.sys [X]
S4 WSDPrintDevice; \SystemRoot\System32\drivers\WSDPrint.sys [X]
S4 WSDScan; \SystemRoot\system32\DRIVERS\WSDScan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-02 17:23 - 2022-07-02 17:27 - 000029756 _____ C:\Users\Botherel\Downloads\FRST.txt
2022-07-02 17:22 - 2022-07-02 17:25 - 000000000 ____D C:\FRST
2022-07-02 17:21 - 2022-07-02 17:21 - 002369024 _____ (Farbar) C:\Users\Botherel\Downloads\FRST64 (1).exe
2022-07-02 17:20 - 2022-07-02 17:20 - 002369024 _____ (Farbar) C:\Users\Botherel\Downloads\FRST64.exe
2022-07-02 16:24 - 2022-07-02 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-07-02 16:24 - 2022-07-02 16:24 - 000000000 ____D C:\Program Files\VS Revo Group
2022-07-02 16:21 - 2022-07-02 16:21 - 007513880 _____ (VS Revo Group ) C:\Users\Botherel\Downloads\revosetup (1).exe
2022-07-02 16:19 - 2022-07-02 16:19 - 007513880 _____ (VS Revo Group ) C:\Users\Botherel\Downloads\revosetup.exe
2022-07-02 13:48 - 2022-07-02 13:48 - 000000000 ___HD C:\$WinREAgent
2022-07-02 10:22 - 2022-07-02 10:25 - 000236312 _____ C:\WINDOWS\ntbtlog.txt
2022-06-30 23:56 - 2022-06-30 23:56 - 008551608 _____ (Malwarebytes) C:\Users\Botherel\Downloads\adwcleaner.exe
2022-06-30 23:54 - 2022-06-30 23:55 - 008534696 _____ (Malwarebytes) C:\Users\Botherel\Downloads\adwcleaner_8.2.exe
2022-06-30 23:54 - 2022-06-30 23:54 - 000000000 _____ C:\Users\Botherel\Downloads\Non confirmé 502614.crdownload
2022-06-30 16:43 - 2022-06-30 16:43 - 000082485 _____ C:\Users\Botherel\Downloads\AR victime + décla sinistre + Fiche non badinter (1).pdf
2022-06-30 15:27 - 2022-06-30 15:27 - 000016955 _____ C:\Users\Botherel\Downloads\Releve_de_prestation_du_23052022_au_23052022 (1).pdf
2022-06-30 13:01 - 2022-06-30 13:01 - 000113564 _____ C:\Users\Botherel\Downloads\cro botherel f.pdf
2022-06-30 10:22 - 2022-07-02 09:32 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-29 21:58 - 2022-06-29 21:58 - 000113152 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2022-06-29 21:28 - 2022-06-29 21:28 - 001283355 _____ C:\Users\Botherel\Downloads\ConditionsGenerales.pdf
2022-06-29 21:28 - 2022-06-29 21:28 - 000069993 _____ C:\Users\Botherel\Downloads\Attestation (1).pdf
2022-06-29 21:27 - 2022-06-29 21:28 - 000069993 _____ C:\Users\Botherel\Downloads\Attestation.pdf
2022-06-29 18:18 - 2022-06-29 18:18 - 000082485 _____ C:\Users\Botherel\Downloads\AR victime + décla sinistre + Fiche non badinter.pdf
2022-06-29 16:07 - 2022-06-29 16:07 - 000116776 _____ C:\Users\Botherel\Downloads\RLV_CHQ1_FRANCOIS_BOT_006_20220615_00451149.pdf
2022-06-28 12:59 - 2022-06-28 12:59 - 000000000 ____D C:\Users\Botherel\.ms-ad
2022-06-27 16:15 - 2022-06-27 16:16 - 000357136 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-06-27 16:14 - 2022-06-27 16:17 - 000267824 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-06-27 16:14 - 2022-06-27 16:14 - 000376920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-06-27 16:14 - 2022-06-27 16:14 - 000187200 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-06-06 18:02 - 2022-06-06 18:02 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-02 17:21 - 2017-11-15 15:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-07-02 16:41 - 2017-11-20 17:39 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-02 16:12 - 2019-02-13 19:28 - 000000000 ____D C:\Users\Botherel\AppData\Local\D3DSCache
2022-07-02 14:56 - 2021-08-19 15:56 - 000000000 ____D C:\Users\Botherel\AppData\Local\CrashDumps
2022-07-02 14:53 - 2021-08-18 19:33 - 000002260 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Botherel
2022-07-02 14:53 - 2017-11-20 17:49 - 000000000 ____D C:\Program Files\CCleaner
2022-07-02 14:33 - 2021-03-27 06:44 - 000004184 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{C199D8A9-39C2-476B-A488-7EED63A52AFA}
2022-07-02 14:15 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-02 13:58 - 2021-03-27 05:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-02 13:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-02 10:31 - 2021-03-27 06:17 - 002517862 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-02 10:31 - 2021-03-27 04:53 - 000696092 _____ C:\WINDOWS\system32\perfh007.dat
2022-07-02 10:31 - 2021-03-27 04:53 - 000142348 _____ C:\WINDOWS\system32\perfc007.dat
2022-07-02 10:31 - 2019-12-07 16:49 - 000757852 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-02 10:31 - 2019-12-07 16:49 - 000142606 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-02 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-02 10:28 - 2017-11-15 13:03 - 000000000 __SHD C:\Users\Botherel\IntelGraphicsProfiles
2022-07-02 10:27 - 2017-11-20 16:24 - 000000000 ____D C:\ProgramData\Avg
2022-07-02 10:26 - 2021-03-27 06:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-02 10:26 - 2020-04-16 18:03 - 000000000 ____D C:\Intel
2022-07-02 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-02 10:25 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-02 10:23 - 2022-05-12 14:03 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-07-02 09:48 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-02 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-07-02 09:27 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-07-02 08:38 - 2020-06-27 19:55 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-01 00:37 - 2020-06-11 12:17 - 000000000 ____D C:\Users\Botherel\AppData\Roaming\Messenger
2022-06-30 10:54 - 2021-12-12 23:00 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3103509191-3508638539-4170635064-1001
2022-06-30 10:54 - 2021-04-12 21:45 - 000002432 _____ C:\Users\Botherel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-30 10:54 - 2021-03-27 06:44 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3103509191-3508638539-4170635064-1001
2022-06-29 22:02 - 2021-03-13 20:20 - 000001963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SmartAudio.lnk
2022-06-29 22:00 - 2021-03-13 20:17 - 001705080 _____ (TODO:) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2022-06-29 21:55 - 2018-08-23 17:11 - 000000262 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2022-06-29 20:50 - 2021-03-27 06:44 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-29 20:49 - 2021-04-26 11:54 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d722bfae708b80
2022-06-29 20:49 - 2021-03-27 06:44 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-06-29 20:49 - 2021-03-27 06:44 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-06-29 20:49 - 2021-03-27 06:44 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-29 20:49 - 2021-03-27 06:44 - 000003354 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-06-29 20:49 - 2021-03-27 06:44 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerClean
2022-06-29 09:49 - 2021-03-27 06:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-06-28 12:59 - 2021-03-27 06:06 - 000000000 ____D C:\Users\Botherel
2022-06-28 12:08 - 2022-02-14 00:59 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-06-28 10:28 - 2021-11-19 18:14 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-06-27 19:01 - 2018-07-10 19:31 - 000000000 ____D C:\ProgramData\Packages
2022-06-27 18:27 - 2017-11-20 19:23 - 000000000 ____D C:\Users\Botherel\AppData\Local\ElevatedDiagnostics
2022-06-27 16:00 - 2017-11-15 16:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-27 15:48 - 2017-11-15 16:04 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-09 22:54 - 2020-04-28 21:42 - 000703056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys
2022-06-09 22:54 - 2018-06-21 12:43 - 001582672 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2022-06-07 17:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Fichiers à la racine de certains dossiers ========
2019-09-20 14:55 - 2019-09-20 14:55 - 000052764 _____ () C:\Users\Botherel\AppData\Roaming\1sm_0P1F2Z1E1I1T2U1P1C1V0F0StJ1V0H0S0StB1V0M1F1Q1P1I.txt
2019-09-20 14:54 - 2019-09-20 14:54 - 000224312 _____ () C:\Users\Botherel\AppData\Roaming\1sm_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Botherel (administrateur) sur DESKTOP-MC81V4M (ASUSTeK COMPUTER INC. X756UAM) (02-07-2022 17:23:42)
Exécuté depuis C:\Users\Botherel\Downloads
Profils chargés: Botherel
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1682 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avpui.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupUI.exe <4>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\TuneUp\TuneupSvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUSrv.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_b403dc0201a474ed\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UtcDecoderHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1737_none_7dec0d8c7ca729de\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-11-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\AVG\TuneUp\TuneupUI.exe [4134256 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\...\Run: [MicrosoftEdgeAutoLaunch_200D8773B215BD69D4235B0609EB5F45] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-06-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-06-28] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {03C36510-3A89-43C2-8928-1253EDD2405D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-11-20] (Google Inc -> Google Inc.)
Task: {063C8C78-82BA-4CAD-A079-EF875EFB18B1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {06D18FAB-5BD5-4751-AA05-21A93180A37F} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {2FB68D95-8AE8-49A6-A5BE-7CBC39BE2520} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {40F22AB5-3A53-41A4-B00F-AF14ED458ADD} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {424D70BE-1CE9-4C9A-9AD9-3821CEB3CB35} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {42D2A984-0512-484D-970B-5F93009F7ADD} - System32\Tasks\AVG\AVG TuneUp Update => C:\Program Files\Common Files\AVG\Icarus\avg-tu\icarus.exe [6692208 2022-05-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {5B4EE2E4-811C-488C-915B-7C5A0B1D41A0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {5F36C4C7-0643-408B-BDCF-80765FF37DEE} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8EA09AD8-0505-44B6-8E28-7973566C6E5A} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation)
Task: {8EA9DD64-2D30-4527-9B1D-43332A7E32F3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform)
Task: {ABCACFB7-C4F7-4402-AE34-DC9A58B12866} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {AF832138-6DC1-4CD2-8E4E-7B23F5B7BA01} - System32\Tasks\AVG\AVG TuneUp BugReport => C:\Program Files\AVG\TuneUp\AvBugReport.exe [4615024 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 74 --programpath "C:\Program Files\AVG\TuneUp\Setup\.." --configpath "C:\Program Files\AVG\TuneUp\Setup" --path "C:\ProgramData\AVG\TuneUp\log" --path "C:\ProgramData\AVG\Icarus\Logs" --guid 5d50d926-88cb-4f2e-bc93-652c84330e44
Task: {C9BEC7B4-C5D4-4C5F-A448-C527976118C0} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {DC7C64C8-B5C5-4208-B5D1-F559A217A33B} - System32\Tasks\CCleanerSkipUAC - Botherel => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F2C1F82E-AEE5-4843-8A8D-988B8983159B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-11-20] (Google Inc -> Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4e7eca96-2bdb-4362-9063-19582bf061b0}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\Botherel\Downloads
Edge Notifications: HKU\S-1-5-21-3103509191-3508638539-4170635064-1001 -> hxxp://www.liberation.fr; hxxps://francais.rt.com; hxxps://www.tomsguide.fr; hxxps://www.liberation.fr; hxxps://mail.google.com; hxxps://www.facebook.com; hxxps://www.medelli.fr; hxxps://fr.aleteia.org
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Enhancer for YouTube™) -> EdgeExtension_48376MaximeRFEnhancerforYouTubeforMicrosoftEdge_f4efyycdr3qdm => C:\Program Files\WindowsApps\48376MaximeRF.EnhancerforYouTubeforMicrosoftEdge_2.0.101.0_neutral__f4efyycdr3qdm [2020-04-01]
Edge Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) -> EdgeExtension_GhosteryGhostery_kzkqe0pn505dg => C:\Program Files\WindowsApps\Ghostery.Ghostery_8.4.6.0_neutral__kzkqe0pn505dg [2019-12-28]
Edge Extension: (360网盾安全保护) -> EdgeExtension_QIHU360SOFTWARECOLIMITED360InternetProtection_c0yfzbptqem36 => C:\Program Files\WindowsApps\QIHU360SOFTWARECO.LIMITED.360InternetProtection_1.1.12.0_x86__c0yfzbptqem36 [2018-05-29]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2022-02-09]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-02]
Edge DownloadDir: Default -> C:\Users\Botherel\Downloads
Edge Notifications: Default -> hxxp://www.liberation.fr; hxxps://fr.aleteia.org; hxxps://francais.rt.com; hxxps://mail.google.com; hxxps://smsmms.orange.fr; hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.liberation.fr; hxxps://www.medelli.fr; hxxps://www.tomsguide.fr
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Notifications Google+) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi [2021-11-10]
Edge Extension: (Enhancer for YouTube™) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dlgfaleeejmphhnemjgiaekdbonkagkd [2022-06-27]
Edge Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2022-06-27]
Edge Extension: (Flash® Player for YouTube™) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lajdkhdcndkniopfefocbgbkofflagpm [2021-11-10]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-06-29]
Edge Extension: (360 Internet Protection) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\okdacpiidbbphpjpfmecjjhicomjdeie [2022-04-28]
Edge Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-11]
Edge HKU\S-1-5-21-3103509191-3508638539-4170635064-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd]
FireFox:
========
FF DefaultProfile: ma0wucbb.default
FF ProfilePath: C:\Users\Botherel\AppData\Roaming\Mozilla\Firefox\Profiles\ma0wucbb.default [2022-07-02]
FF user.js: detected! => C:\Users\Botherel\AppData\Roaming\Mozilla\Firefox\Profiles\ma0wucbb.default\user.js [2017-11-20]
FF Homepage: Mozilla\Firefox\Profiles\ma0wucbb.default -> google.fr
FF HKLM\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Orange\Orange Security Suite 10.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Orange\Orange Security Suite 10.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-06-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default [2022-07-02]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH","hxxps://www.google.com/","hxxp://www.msn.com/?pc=BDT5&ocid=BDT5DHP","hxxp://r.orange.fr/r/Oadventurer_home","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://google/","hxxps://www.google.com/","hxxp://www.google.com/"
CHR Extension: (Notifications Google+) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi [2017-11-21]
CHR Extension: (Good News) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\deegloljmdbfbjhlimieancmcfombgjj [2017-11-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-02]
CHR Extension: (Extension de sécurité 16.1 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgleflkdamakpmckkidkcmnmdikbbmok [2021-01-26]
CHR Extension: (Flash® Player for YouTube™) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajdkhdcndkniopfefocbgbkofflagpm [2017-11-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2021-10-13]
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-02]
CHR Profile: C:\Users\Botherel\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-02]
CHR HKLM\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok
CHR HKLM\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
CHR HKLM-x32\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok
CHR HKLM-x32\...\Chrome\Extension: [pkfabndaepgjlmdjjokdnknhkpgccdfd] - hxxps://chrome.google.com/webstore/detail/pkfabndaepgjlmdjjokdnknhkpgccdfd
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AVP20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> )
R2 CleanupPSvc; C:\Program Files\AVG\TuneUp\TuneupSvc.exe [15710064 2022-05-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [223904 2022-04-28] (HP Inc. -> HP Inc.)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Suite de Sécurité Orange\Suite de Sécurité Orange 13\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [189792 2022-04-25] (Qualcomm Atheros, Inc. -> )
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [113152 2022-06-29] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WMIRegistrationService; C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe [538736 2021-07-25] (Intel Corporation -> Intel Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [140032 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1582672 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [188848 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [357136 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [187200 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [267824 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-07-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2021-10-11] (Kaspersky Lab -> AO Kaspersky Lab)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-10-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-11] (Microsoft Windows -> Microsoft Corporation)
S4 BthPan; \SystemRoot\System32\drivers\bthpan.sys [X]
R4 usbvideo; \SystemRoot\System32\Drivers\usbvideo.sys [X]
S4 WSDPrintDevice; \SystemRoot\System32\drivers\WSDPrint.sys [X]
S4 WSDScan; \SystemRoot\system32\DRIVERS\WSDScan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-02 17:23 - 2022-07-02 17:27 - 000029756 _____ C:\Users\Botherel\Downloads\FRST.txt
2022-07-02 17:22 - 2022-07-02 17:25 - 000000000 ____D C:\FRST
2022-07-02 17:21 - 2022-07-02 17:21 - 002369024 _____ (Farbar) C:\Users\Botherel\Downloads\FRST64 (1).exe
2022-07-02 17:20 - 2022-07-02 17:20 - 002369024 _____ (Farbar) C:\Users\Botherel\Downloads\FRST64.exe
2022-07-02 16:24 - 2022-07-02 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-07-02 16:24 - 2022-07-02 16:24 - 000000000 ____D C:\Program Files\VS Revo Group
2022-07-02 16:21 - 2022-07-02 16:21 - 007513880 _____ (VS Revo Group ) C:\Users\Botherel\Downloads\revosetup (1).exe
2022-07-02 16:19 - 2022-07-02 16:19 - 007513880 _____ (VS Revo Group ) C:\Users\Botherel\Downloads\revosetup.exe
2022-07-02 13:48 - 2022-07-02 13:48 - 000000000 ___HD C:\$WinREAgent
2022-07-02 10:22 - 2022-07-02 10:25 - 000236312 _____ C:\WINDOWS\ntbtlog.txt
2022-06-30 23:56 - 2022-06-30 23:56 - 008551608 _____ (Malwarebytes) C:\Users\Botherel\Downloads\adwcleaner.exe
2022-06-30 23:54 - 2022-06-30 23:55 - 008534696 _____ (Malwarebytes) C:\Users\Botherel\Downloads\adwcleaner_8.2.exe
2022-06-30 23:54 - 2022-06-30 23:54 - 000000000 _____ C:\Users\Botherel\Downloads\Non confirmé 502614.crdownload
2022-06-30 16:43 - 2022-06-30 16:43 - 000082485 _____ C:\Users\Botherel\Downloads\AR victime + décla sinistre + Fiche non badinter (1).pdf
2022-06-30 15:27 - 2022-06-30 15:27 - 000016955 _____ C:\Users\Botherel\Downloads\Releve_de_prestation_du_23052022_au_23052022 (1).pdf
2022-06-30 13:01 - 2022-06-30 13:01 - 000113564 _____ C:\Users\Botherel\Downloads\cro botherel f.pdf
2022-06-30 10:22 - 2022-07-02 09:32 - 000257912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-29 21:58 - 2022-06-29 21:58 - 000113152 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2022-06-29 21:28 - 2022-06-29 21:28 - 001283355 _____ C:\Users\Botherel\Downloads\ConditionsGenerales.pdf
2022-06-29 21:28 - 2022-06-29 21:28 - 000069993 _____ C:\Users\Botherel\Downloads\Attestation (1).pdf
2022-06-29 21:27 - 2022-06-29 21:28 - 000069993 _____ C:\Users\Botherel\Downloads\Attestation.pdf
2022-06-29 18:18 - 2022-06-29 18:18 - 000082485 _____ C:\Users\Botherel\Downloads\AR victime + décla sinistre + Fiche non badinter.pdf
2022-06-29 16:07 - 2022-06-29 16:07 - 000116776 _____ C:\Users\Botherel\Downloads\RLV_CHQ1_FRANCOIS_BOT_006_20220615_00451149.pdf
2022-06-28 12:59 - 2022-06-28 12:59 - 000000000 ____D C:\Users\Botherel\.ms-ad
2022-06-27 16:15 - 2022-06-27 16:16 - 000357136 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-06-27 16:14 - 2022-06-27 16:17 - 000267824 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-06-27 16:14 - 2022-06-27 16:14 - 000376920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-06-27 16:14 - 2022-06-27 16:14 - 000187200 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-06-06 18:02 - 2022-06-06 18:02 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-07-02 17:21 - 2017-11-15 15:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-07-02 16:41 - 2017-11-20 17:39 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-02 16:12 - 2019-02-13 19:28 - 000000000 ____D C:\Users\Botherel\AppData\Local\D3DSCache
2022-07-02 14:56 - 2021-08-19 15:56 - 000000000 ____D C:\Users\Botherel\AppData\Local\CrashDumps
2022-07-02 14:53 - 2021-08-18 19:33 - 000002260 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Botherel
2022-07-02 14:53 - 2017-11-20 17:49 - 000000000 ____D C:\Program Files\CCleaner
2022-07-02 14:33 - 2021-03-27 06:44 - 000004184 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{C199D8A9-39C2-476B-A488-7EED63A52AFA}
2022-07-02 14:15 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-02 13:58 - 2021-03-27 05:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-02 13:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-02 10:31 - 2021-03-27 06:17 - 002517862 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-02 10:31 - 2021-03-27 04:53 - 000696092 _____ C:\WINDOWS\system32\perfh007.dat
2022-07-02 10:31 - 2021-03-27 04:53 - 000142348 _____ C:\WINDOWS\system32\perfc007.dat
2022-07-02 10:31 - 2019-12-07 16:49 - 000757852 _____ C:\WINDOWS\system32\perfh00C.dat
2022-07-02 10:31 - 2019-12-07 16:49 - 000142606 _____ C:\WINDOWS\system32\perfc00C.dat
2022-07-02 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-02 10:28 - 2017-11-15 13:03 - 000000000 __SHD C:\Users\Botherel\IntelGraphicsProfiles
2022-07-02 10:27 - 2017-11-20 16:24 - 000000000 ____D C:\ProgramData\Avg
2022-07-02 10:26 - 2021-03-27 06:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-02 10:26 - 2020-04-16 18:03 - 000000000 ____D C:\Intel
2022-07-02 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-02 10:25 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-02 10:23 - 2022-05-12 14:03 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2022-07-02 09:48 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-02 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-07-02 09:27 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-07-02 09:27 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-07-02 08:38 - 2020-06-27 19:55 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-01 00:37 - 2020-06-11 12:17 - 000000000 ____D C:\Users\Botherel\AppData\Roaming\Messenger
2022-06-30 10:54 - 2021-12-12 23:00 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3103509191-3508638539-4170635064-1001
2022-06-30 10:54 - 2021-04-12 21:45 - 000002432 _____ C:\Users\Botherel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-30 10:54 - 2021-03-27 06:44 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3103509191-3508638539-4170635064-1001
2022-06-29 22:02 - 2021-03-13 20:20 - 000001963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SmartAudio.lnk
2022-06-29 22:00 - 2021-03-13 20:17 - 001705080 _____ (TODO:
2022-06-29 21:55 - 2018-08-23 17:11 - 000000262 _____ C:\WINDOWS\Tasks\CCleanerClean.job
2022-06-29 20:50 - 2021-03-27 06:44 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-29 20:49 - 2021-04-26 11:54 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d722bfae708b80
2022-06-29 20:49 - 2021-03-27 06:44 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-06-29 20:49 - 2021-03-27 06:44 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-06-29 20:49 - 2021-03-27 06:44 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-06-29 20:49 - 2021-03-27 06:44 - 000003354 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-06-29 20:49 - 2021-03-27 06:44 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerClean
2022-06-29 09:49 - 2021-03-27 06:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-06-28 12:59 - 2021-03-27 06:06 - 000000000 ____D C:\Users\Botherel
2022-06-28 12:08 - 2022-02-14 00:59 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-06-28 10:28 - 2021-11-19 18:14 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-06-27 19:01 - 2018-07-10 19:31 - 000000000 ____D C:\ProgramData\Packages
2022-06-27 18:27 - 2017-11-20 19:23 - 000000000 ____D C:\Users\Botherel\AppData\Local\ElevatedDiagnostics
2022-06-27 16:00 - 2017-11-15 16:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-27 15:48 - 2017-11-15 16:04 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-09 22:54 - 2020-04-28 21:42 - 000703056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys
2022-06-09 22:54 - 2018-06-21 12:43 - 001582672 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2022-06-07 17:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Fichiers à la racine de certains dossiers ========
2019-09-20 14:55 - 2019-09-20 14:55 - 000052764 _____ () C:\Users\Botherel\AppData\Roaming\1sm_0P1F2Z1E1I1T2U1P1C1V0F0StJ1V0H0S0StB1V0M1F1Q1P1I.txt
2019-09-20 14:54 - 2019-09-20 14:54 - 000224312 _____ () C:\Users\Botherel\AppData\Roaming\1sm_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================