Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26.02.2024 01
Exécuté par gigih (administrateur) sur LAPTOP-MG15U8MI (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X705QA_A705QA) (27-02-2024 14:06:14)
Exécuté depuis C:\Users\gigih\Dropbox\Mon PC (LAPTOP-MG15U8MI)\Desktop\FRST64.exe
Profils chargés: gigih
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4046 (X64) Langue: Français (France)
Navigateur par défaut: "C:\Users\gigih\Downloads\FirefoxPortable\App\Firefox64\firefox.exe" -osint -url "%1"
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOSD.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.863.1\DropboxCrashHandler.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\iCloudHome.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(explorer.exe ->) (Jasc Software, Inc.) [Fichier non signé] C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 9\Paint Shop Pro 9.exe
(explorer.exe ->) (Perion Network Ltd. -> IncrediMail, Ltd.) [Fichier non signé] C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\iCloudHome.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.17231.20236.0_x86__8wekyb3d8bbwe\Office16\SDXHelperBgt.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Perion Network Ltd. -> IncrediMail, Ltd.) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11560848 2024-02-19] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3949239864-3659176800-1989082281-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45018016 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3949239864-3659176800-1989082281-1001\...\Run: [Software Informer] => C:\Program Files\Software Informer\softinfo.exe [1634304 2015-06-26] (Informer Technologies, Inc.) [Fichier non signé]
HKU\S-1-5-21-3949239864-3659176800-1989082281-1001\...\Run: [GigaTribe] => C:\Program Files (x86)\GigaTribe\GigaTribe.exe [3896080 2021-11-09] (Gigatribe -> D1FFER)
HKU\S-1-5-21-3949239864-3659176800-1989082281-1001\...\Run: [MicrosoftEdgeAutoLaunch_9F28230025715883C9FBDB987ED640BB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4067896 2024-02-23] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70v: C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll [248320 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l70v.dll: C:\WINDOWS\system32\hpf3l70v.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\121.0.6167.189\Installer\chrmstp.exe [2024-02-24] (Google LLC -> Google LLC)
Startup: C:\Users\gigih\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Emoticon.LNK [2021-11-25]
ShortcutTarget: Emoticon.LNK -> C:\Windows\System32\schtasks.exe (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\gigih\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\errorlog.txt [2023-11-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\errorlog.txt [2023-11-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {FBA3DE6E-2070-4B25-99FE-824C1A8B2FB0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [1366528 2021-07-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {FE46904D-99F8-4487-BE2D-560AFDD1A68C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_pepper.exe [1366528 2021-07-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {D31209DC-AE2B-4A3C-9324-5238FA2F5635} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusHotkey.exe [311944 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {9B045B92-04B4-477C-9F7A-2012E34C73E1} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusUpdateChecker.exe [802440 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {6E0E9AFC-CEE9-4130-86AF-E3491ABF8044} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {76D44501-55D3-470C-ABE5-2FDE8173E4D6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CEDD7DE8-2711-42C4-81A2-857BD8E18BF5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "c4356a49-4f70-4894-8792-7e4f836faf7d" --version "6.21.10918" --silent
Task: {86B8EEB2-7D83-49FA-810C-09ECE6A81802} - System32\Tasks\CCleanerSkipUAC - gigih => C:\Program Files\CCleaner\CCleaner.exe [38778272 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A3A1813B-BED4-474A-B6E9-D80CF5FF4640} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E433906A-5852-45EC-9F65-57DC48ECAE2C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F6BD7410-8EA9-4599-9CA4-DEBBF3927D79} - System32\Tasks\emoticon => C:\Program Files (x86)\Emoticon\Emoticon.exe [2509312 2022-01-31] (GregLand) [Fichier non signé]
Task: {8169DE11-E871-4284-95CC-D22C4FF59BB8} - System32\Tasks\GoogleUpdateTaskMachineCore{629618BA-882C-4460-B15A-CA6D7AAC7E6C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
Task: {F0405CC5-1006-434C-94C7-776C1EB43033} - System32\Tasks\GoogleUpdateTaskMachineUA{9C761319-AD80-4A79-9058-8BBDB6569D46} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-18] (Google LLC -> Google LLC)
Task: {4948D271-6C36-4903-92B6-0A741E755F22} - System32\Tasks\Mozilla\Firefox Background Update 1094F3D1D17FF7CC => C:\Users\gigih\Downloads\FirefoxPortable\App\Firefox64\firefox.exe [671136 2024-02-22] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\1094F3D1D17FF7CC\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {20D8AA5D-DB9B-440F-9E69-DC6E5433EA81} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3949239864-3659176800-1989082281-1001 1094F3D1D17FF7CC => C:\Users\gigih\Downloads\FirefoxPortable\App\Firefox64\firefox.exe [671136 2024-02-22] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\1094F3D1D17FF7CC\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EC62D1AC-5FAA-4679-B062-EA5505F0ED6F} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F9E5104-3862-4FFD-BCCE-A87F03776A8B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3949239864-3659176800-1989082281-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2024-02-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {44EF7142-62F1-474A-8AF1-FB30F137D55F} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1140456 2020-08-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {BEE59724-269B-405D-996E-47CF771933ED} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe [1634304 2015-06-26] (Informer Technologies, Inc.) [Fichier non signé]
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}: [DhcpDomain] lan
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\3416D60796E676F5C456F57416274656E6: [DhcpNameServer] 172.17.0.1
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\3416D60796E676F5C456F57416274656E6: [DhcpDomain] lan
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\6516C60246560244572716E63656: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\6516C60246560244572716E63656: [DhcpDomain] lan
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\655627461676E656: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{0cc7a746-9903-4b5e-b8b3-27d0c2c22f64}\655627461676E656: [DhcpDomain] lan
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}: [DhcpDomain] home
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\75966496D234341435: [DhcpNameServer] 172.31.250.254
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\75966496D234341435: [DhcpDomain] ccas-edf.fr
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\960586F6E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\C4563702D4572796562737: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\C4563702D4572796562737: [DhcpDomain] lan
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\C496675626F687D253831483: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\C496675626F687D253831483: [DhcpDomain] home
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\D4169616E61602255637F62747: [DhcpNameServer] 172.16.0.1
Tcpip\..\Interfaces\{f7aed64c-2d0c-48d7-98a9-4eefa0f8b305}\D4169616E61602255637F62747: [DhcpDomain] lan
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-27]
Edge DownloadDir: Default -> C:\Users\gigih\Downloads
Edge Notifications: Default -> hxxps://9c414oj528rfndz7c2.dkeie.co.in
Edge HomePage: Default -> hxxps://www.google.fr/
Edge Extension: (Avira Safe Shopping) - C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-08-27]
Edge Extension: (AdBlocker Tool) - C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\coaihmaocaheolbmcbibdldfmjhhhelg [2023-11-22]
Edge Extension: (Avira Password Manager) - C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-11-05]
Edge Extension: (Google Docs hors connexion) - C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-23]
Edge Extension: (Edge relevant text changes) - C:\Users\gigih\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: 56s5sdrn.default
FF ProfilePath: C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\56s5sdrn.default [2020-01-09]
FF ProfilePath: C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release [2024-02-27]
FF DownloadDir: C:\Users\gigih\Dropbox\Mon PC (LAPTOP-MG15U8MI)\Downloads
FF Notifications: Mozilla\Firefox\Profiles\5qx6ogmi.default-release -> hxxps://gigipsp.forumactif.com; hxxps://lemondedugraphisme.forumactif.org; hxxps://l-art-du-graphisme.forumactif.org; hxxps://www.tiendeo.fr; hxxps://www.amandinecooking.com; hxxps://www.fnac.com; hxxps://bonheuretamitie.forumgratuit.org; hxxps://www.locasun-vp.fr; hxxps://fr.depositphotos.com; hxxps://www.pinterest.fr; hxxps://www.temu.com
FF Extension: (Les recettes d'Amandine Cooking) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\ext-amandine-cooking-2020@amandinecooking.com.xpi [2020-11-20]
FF Extension: (Les recettes d'Amandine Cooking) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\mesrecettes@amandinecooking.com.xpi [2020-11-20]
FF Extension: (Recettes Cooking) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\recettes-cooking@acrecipe.com.xpi [2023-10-12]
FF Extension: (Mes recettes de cuisine) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\recettes-de-cuisine-2023@cuisine.com.xpi [2023-11-21]
FF Extension: (Recettes Amandine Cooking) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\recettes@amandinecooking.com.xpi [2020-11-20]
FF Extension: (uBlock Origin) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-02-22]
FF Extension: (Christmas Crimson by MaDonna) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{34f271ca-0cf3-46d7-85cb-dcba64df0d09}.xpi [2023-12-12]
FF Extension: (Gamer TIme) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{3afd3680-7dda-4412-be2c-1494d8162531}.xpi [2021-12-23]
FF Extension: (Best Bright Christmas by MaDonna) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{3ce68e94-0685-4b09-84c0-0d2cff4301a1}.xpi [2023-12-12]
FF Extension: (background2) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{3ee6f58e-d902-4967-b443-19f5dad29f2e}.xpi [2021-06-15]
FF Extension: (Battlefield, Soldier) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{4a0a8d89-0876-4d08-aa8c-a86ab04fe34a}.xpi [2021-06-15]
FF Extension: (Fairytale Of Nature) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-06-15]
FF Extension: (Purpling bubbles) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{69ab6730-1a1a-4d27-8aa4-f27a0e5f2de8}.xpi [2021-06-19]
FF Extension: (background_cn) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{6a6e5ac8-dec4-4361-9e84-e79bdd84c97a}.xpi [2021-06-15]
FF Extension: (Noctourniquet (orange)) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{76493516-f52d-4706-9c34-c5194048f65d}.xpi [2023-12-26]
FF Extension: (Blue Nebula) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{806d871e-a45a-4d26-8686-65fb36a5b399}.xpi [2023-12-12]
FF Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2024-02-20]
FF Extension: (beach grass acean) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{a2b9d45f-a6d9-4ee1-bc8c-3149d37805f4}.xpi [2021-06-15]
FF Extension: (Poulpeo : cashback, réductions et codes promo) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{a5df0009-71e3-4048-bb02-38e1ee2ed33f}.xpi [2024-02-22]
FF Extension: (Le Coin Raccourcis) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{bca9c941-df28-4e08-98d9-35870277de34}.xpi [2020-08-22]
FF Extension: (evolution mozilla) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{ca75a4a1-b0c3-432f-b2d2-a8dfa7db7c7d}.xpi [2021-06-15]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2024-01-27]
FF Extension: (Sunset Foggy Sea by MaDonna) - C:\Users\gigih\AppData\Roaming\Mozilla\Firefox\Profiles\5qx6ogmi.default-release\Extensions\{fc48c481-0e1a-4f93-8dd8-4f212b2018fa}.xpi [2023-12-12]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_140.dll [2021-07-05] (Adobe Systems Incorporated -> )
Chrome:
=======
CHR Profile: C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default [2024-01-06]
CHR Extension: (Avira Password Manager) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-07-29]
CHR Extension: (Avira Safe Shopping) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2023-09-14]
CHR Extension: (Protection Web Avira) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2023-01-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-14]
CHR Extension: (AdBlocker Sentinel - Bloqueur de publicités) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\icngebmpnhfbjilmgbdfjbfdhcnocjac [2023-07-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\gigih\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-18]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\AsusAppService\AsusAppService.exe [1177224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusOptimization.exe [529552 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSoftwareManager\AsusSoftwareManager.exe [1369232 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSwitch\AsusSwitch.exe [641272 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSystemAnalysis.exe [4789384 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [845456 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-02-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-02-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\FileSyncHelper.exe [3515936 2024-02-17] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2024-01-19] (HP Inc. -> HP Inc.)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9410296 2024-02-27] (Malwarebytes Inc. -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.020.0128.0003\OneDriveUpdaterService.exe [3853856 2024-02-17] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [17900856 2023-09-08] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSSystemAnalysis\AsusSAIO.sys [49224 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_f2eed2fae3b45a67\ASUSOptimization\AsusWmiAcpi.sys [48928 2024-01-10] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [200104 2024-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-02-27] (Malwarebytes Inc. -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 StillCam; C:\WINDOWS\System32\drivers\serscan.sys [13312 2022-07-13] (Microsoft Corporation) [Fichier non signé]
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-05-11] (Microsoft Corporation) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)