Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03.02.2024 01
Exécuté par ppinc (administrateur) sur LAPTOP-J3T3FSGV (ASUSTeK COMPUTER INC. X405UAP) (09-02-2024 15:11:36)
Exécuté depuis C:\Users\ppinc\Desktop\FRST64.exe
Profils chargés: ppinc
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\AlricApplication\AtructisService.exe ->) () [Fichier non signé] C:\Program Files (x86)\AlricApplication\AtructisApp.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxEM.exe
(explorer.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MpCmdRun.exe <2>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\AlricApplication\AtructisService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(services.exe ->) (Thinking Man Software) [Fichier non signé] C:\Program Files (x86)\D4\D4.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(sihost.exe ->) (Google LLC -> Google LLC) C:\Users\ppinc\AppData\Local\Google\Chrome\Application\chrome.exe <30>
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21806.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21806.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Pas de fichier)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [Google Update] => C:\Users\ppinc\AppData\Local\Google\Update\1.3.36.372\GoogleUpdateCore.exe [223008 2024-02-01] (Google LLC -> Google LLC)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [AvastBrowserAutoLaunch_E86AE0595FCAE6B437405AD3E30B01DA] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44540320 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [MicrosoftEdgeAutoLaunch_778F3AE3925297911CD2F36698C6CFDD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788736 2024-02-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\WINDOWS\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\Installer\chrmstp.exe [2024-02-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7976.151\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {FAEDDC6E-A75A-4061-953A-71AB95CFA304} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609168 2017-11-23] (ASUSTeK Computer Inc. -> )
Task: {04BA0AD9-5431-40F3-974C-F12C88A0E238} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [75776 2017-10-24] (ASUS) [Fichier non signé]
Task: {FA62C1D6-EC06-42E0-B29C-A87CC47614F2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A695A0EA-A1A9-466E-A075-64A81B97C6E3} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5E130211-94F8-4384-98C7-BFD89D14C65A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {B8CB26C2-2B5C-4597-89CE-2B5C9F31ACC7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {82855DD0-476E-4DA9-9845-B90A6EC47E6B} - System32\Tasks\AvastBrowserProtectS-1-5-21-404384542-1280915690-766844819-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1658776 2023-04-05] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {888F79C4-2F56-49D5-95B2-A9BCB99A3B06} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Task: {743D71C4-B6CC-428A-8410-709358D82FEF} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Task: {55ABA0D4-D71B-4E5F-9B7F-06BD63AD173B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {149E8476-EA67-4079-AC74-AC55B9CC5336} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6078a3c9-e03c-49e1-a168-931a9b773a1f" --version "6.20.10897" --silent
Task: {B6DF7EE4-AE10-4820-AB00-AADC13F67DFC} - System32\Tasks\CCleanerSkipUAC - ppinc => C:\Program Files\CCleaner\CCleaner.exe [38319520 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {6DED46C5-4666-4A74-B356-7B8FF3F0404A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6268.0{8F1A700F-085A-4CFA-B4A8-6E165C20F3B0} => C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
Task: {5A52252A-813D-4A66-89F7-DAD648015920} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001Core => C:\Users\ppinc\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-09-14] (Google Inc -> Google Inc.)
Task: {BF1336F1-AB35-43CD-AC21-8A7B8E2BAA05} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001UA => C:\Users\ppinc\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-09-14] (Google Inc -> Google Inc.)
Task: {A5EB4E8E-AB39-4AAE-97C4-6FAEF27C77B4} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {466C7998-7F3F-490E-912A-5C5C8E5E27CD} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {8D50BC55-8209-494C-B9C5-0E7E102C5DE2} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {D2697F95-F3D3-4984-8AD2-ED492CB80A51} - System32\Tasks\OneDrive Standalone Update Task v2 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {BEC0C3BE-C7B7-4F6F-B888-C248C933F316} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [20992 2017-07-26] () [Fichier non signé]
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0c241bf2-cd96-4748-a7b3-74fc90967b6d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c241bf2-cd96-4748-a7b3-74fc90967b6d}: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\245727561657E2B6C2: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C494E4B4F564230303: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C494E4B4F564230303F55374: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C496E6B6F554874756E6465627F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C496E6B6F554874756E6465627F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4556E64616F5543334341403: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D244132324F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D244132324F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D253133303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D253133303: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D283240314F5548545: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D283240314F5548545: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-09]
Edge DownloadDir: Default -> C:\Users\ppinc\Downloads
Edge Extension: (Google Docs hors connexion) - C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-26]
Edge Extension: (Edge relevant text changes) - C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-16] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR Profile: C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default [2024-02-09]
CHR Notifications: Default -> hxxps://fr.softonic.com; hxxps://www.auto-moto.com; hxxps://www.cadeaux.com; hxxps://www.conrad.fr; hxxps://www.lemondeducampingcar.fr; hxxps://www.michelin.fr; hxxps://www.netflix.com; hxxps://www.pagesjaunes.fr; hxxps://www.tf1.fr; hxxps://www.youtube.com
CHR Extension: (Google Docs hors connexion) - C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-02-02]
Opera:
=======
OPR DefaultProfile: Default
Brave:
=======
BRA Profile: C:\Users\ppinc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-02-02]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtructisService; C:\Program Files (x86)\AlricApplication\AtructisService.exe [76362320 2022-12-15] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\elevation_service.exe [1847216 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 Dimension4; C:\Program Files (x86)\D4\D4.exe [355840 2013-11-27] (Thinking Man Software) [Fichier non signé]
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [273880 2017-10-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 GoogleUpdaterInternalService123.0.6268.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService123.0.6268.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 ZenAnywhere; C:\Program Files\Orbweb Inc\ZenAnywhere\ZenAnywhere.exe [154456 2017-10-26] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhere Updater; C:\Program Files\Orbweb Inc\ZenAnywhere\updater.exe [154456 2017-10-26] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhereNetworkService; C:\Program Files\Orbweb Inc\ZenAnywhere\bin\ZenAnywhereNetworkService.exe [67416 2017-04-07] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 BraveVpnWireguardService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\BraveVpnWireguardService\brave_vpn_wireguard_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 RealWoW60; C:\WINDOWS\system32\DRIVERS\RealWoW60.sys [39432 2017-04-07] (Realtek Semiconductor Corp. -> Realtek semiconductor corp)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-09 15:11 - 2024-02-09 15:13 - 000024347 _____ C:\Users\ppinc\Desktop\FRST.txt
2024-02-09 15:10 - 2024-02-09 15:12 - 000000000 ____D C:\FRST
2024-02-09 15:07 - 2024-02-09 15:09 - 002389504 _____ (Farbar) C:\Users\ppinc\Desktop\FRST64.exe
2024-02-03 11:24 - 2024-02-03 11:24 - 000446072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-02 16:52 - 2024-02-02 16:52 - 000264088 _____ (AVAST Software) C:\Users\ppinc\Downloads\avast_premium_security_setup_online (3).exe
2024-02-02 14:01 - 2024-02-02 16:53 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-01-30 09:04 - 2024-01-30 09:04 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2024-01-30 09:04 - 2024-01-30 09:04 - 000002243 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2024-01-30 09:04 - 2024-01-30 09:04 - 000000000 ____D C:\Program Files\Google
2024-01-30 09:01 - 2024-02-02 16:36 - 000000000 ____D C:\WINDOWS\Minidump
2024-01-28 16:39 - 2024-01-28 16:39 - 000068426 _____ C:\Users\ppinc\Downloads\F-RES-2023-09-52302.pdf
2024-01-26 11:00 - 2024-01-26 11:00 - 000000000 ____D C:\Users\ppinc\AppData\Local\Atructissoft
2024-01-26 10:59 - 2024-01-26 10:59 - 000000000 ____D C:\Users\ppinc\AppData\Local\OneBrowser
2024-01-26 10:55 - 2024-01-26 15:29 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\ReasonLabs
2024-01-26 10:51 - 2024-01-26 10:51 - 000000000 ____D C:\Program Files (x86)\rsStubActivator-1.1.1
2024-01-26 10:50 - 2024-01-26 10:50 - 000000000 ____D C:\Users\ppinc\AppData\Local\Opera Software
2024-01-26 10:48 - 2024-01-26 10:48 - 000001206 _____ C:\Users\ppinc\Downloads\vicohome setup.txt.lnk
2024-01-26 10:47 - 2024-01-26 10:59 - 000000000 ____D C:\Program Files (x86)\LevelMagnificentConstruction
2024-01-26 10:47 - 2024-01-26 10:47 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Opera Software
2024-01-26 10:42 - 2024-01-26 10:42 - 022117379 _____ C:\Users\ppinc\Downloads\Vicohome-Setup-345632.zip
2024-01-26 10:42 - 2024-01-26 10:42 - 022117379 _____ C:\Users\ppinc\Downloads\Vicohome-Setup-345632 (1).zip
2024-01-25 08:59 - 2024-01-25 08:59 - 000003820 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-404384542-1280915690-766844819-1001
2024-01-19 11:59 - 2024-01-19 11:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-01-18 11:07 - 2024-01-18 11:08 - 020402136 _____ (Macrovision Corporation) C:\Users\ppinc\Downloads\presto-imagefolio (1).exe
2024-01-18 11:07 - 2024-01-18 11:07 - 020402136 _____ (Macrovision Corporation) C:\Users\ppinc\Downloads\presto-imagefolio.exe
2024-01-13 11:22 - 2024-01-13 11:27 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-09 15:11 - 2021-11-02 20:59 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-09 15:11 - 2019-12-07 15:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2024-02-09 15:11 - 2019-12-07 15:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2024-02-09 15:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-02-09 15:06 - 2022-12-15 03:57 - 000000000 ____D C:\Users\ppinc\AppData\Local\AlricApplication
2024-02-09 15:05 - 2018-09-15 17:04 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-02-09 15:04 - 2021-12-30 12:22 - 000000000 ____D C:\Program Files\CCleaner
2024-02-09 15:03 - 2022-09-26 14:28 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-02-09 15:03 - 2021-11-02 21:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-09 15:03 - 2021-11-02 20:48 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-09 15:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-02-09 15:03 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-09 15:03 - 2018-09-14 14:59 - 000000000 __SHD C:\Users\ppinc\IntelGraphicsProfiles
2024-02-09 15:03 - 2018-03-31 15:06 - 000000000 ___HD C:\Intel
2024-02-09 15:02 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-02-09 15:02 - 2018-09-14 19:34 - 000000000 ____D C:\Users\ppinc\AppData\Local\AVAST Software
2024-02-09 15:02 - 2018-09-14 19:31 - 000000000 ____D C:\ProgramData\AVAST Software
2024-02-09 14:43 - 2022-12-15 03:57 - 000000000 ____D C:\ProgramData\AlricApplication
2024-02-09 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-09 13:43 - 2021-11-02 20:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-09 11:28 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-09 09:07 - 2022-09-26 14:28 - 000002950 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-02-09 09:07 - 2021-12-30 12:22 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-02-09 09:07 - 2021-12-30 12:22 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - ppinc
2024-02-09 09:07 - 2021-11-02 21:03 - 000003696 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001UA
2024-02-09 09:07 - 2021-11-02 21:03 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-09 09:07 - 2021-11-02 21:03 - 000003428 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001Core
2024-02-09 09:07 - 2021-11-02 21:03 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-09 09:06 - 2018-09-14 15:03 - 000002498 _____ C:\Users\ppinc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-09 09:06 - 2018-09-14 15:03 - 000002461 _____ C:\Users\ppinc\Desktop\Google Chrome.lnk
2024-02-08 09:00 - 2020-08-28 10:08 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-07 09:08 - 2019-01-13 12:06 - 000000000 ____D C:\Users\ppinc\AppData\Local\CrashDumps
2024-02-05 16:28 - 2023-03-08 17:46 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Kodi
2024-02-03 11:21 - 2022-10-16 13:35 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\dvdcss
2024-02-03 11:21 - 2021-10-18 08:24 - 000000000 ___DC C:\WINDOWS\Panther
2024-02-03 11:21 - 2021-08-01 13:32 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\HTML Help
2024-02-03 11:21 - 2020-05-13 09:49 - 000000000 ____D C:\Users\ppinc\AppData\Local\SquirrelTemp
2024-02-03 11:21 - 2018-11-19 14:56 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\MMC
2024-02-02 16:57 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-02-02 11:04 - 2018-09-14 19:36 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-02-02 11:04 - 2018-09-14 19:36 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2024-02-02 09:10 - 2021-11-02 20:51 - 000000000 ____D C:\Users\ppinc
2024-01-31 16:03 - 2019-10-23 17:15 - 000000000 ____D C:\Users\ppinc\AppData\Local\D3DSCache
2024-01-31 09:01 - 2022-01-14 13:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-28 16:14 - 2023-04-25 08:14 - 000000000 ____D C:\ProgramData\Piriform
2024-01-27 09:17 - 2018-03-31 15:19 - 000000000 ____D C:\ProgramData\Realtek
2024-01-26 21:51 - 2022-11-26 11:34 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-26 15:49 - 2022-10-16 13:49 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\CyberLink
2024-01-25 11:28 - 2020-05-13 09:50 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Molotov
2024-01-21 14:07 - 2023-08-02 12:54 - 000000615 _____ C:\Users\ppinc\Desktop\MSHV 64-bit.lnk
2024-01-19 12:00 - 2019-10-29 16:50 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-18 11:17 - 2018-03-31 15:13 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-01-18 11:10 - 2019-10-31 10:21 - 000000000 ____D C:\Users\ppinc\AppData\Local\NewSoft
2024-01-13 11:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-11 15:11 - 2023-03-07 16:12 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\Publisher
2024-01-11 14:48 - 2018-09-14 16:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-11 14:43 - 2018-09-14 16:36 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2018-09-14 15:00 - 2018-10-29 13:37 - 000000359 _____ () C:\Users\ppinc\AppData\Roaming\sp_data.sys
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par ppinc (administrateur) sur LAPTOP-J3T3FSGV (ASUSTeK COMPUTER INC. X405UAP) (09-02-2024 15:11:36)
Exécuté depuis C:\Users\ppinc\Desktop\FRST64.exe
Profils chargés: ppinc
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\AlricApplication\AtructisService.exe ->) () [Fichier non signé] C:\Program Files (x86)\AlricApplication\AtructisApp.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxEM.exe
(explorer.exe ->) (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTek Computer Inc.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MpCmdRun.exe <2>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\AlricApplication\AtructisService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(services.exe ->) (Thinking Man Software) [Fichier non signé] C:\Program Files (x86)\D4\D4.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(sihost.exe ->) (Google LLC -> Google LLC) C:\Users\ppinc\AppData\Local\Google\Chrome\Application\chrome.exe <30>
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21806.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21806.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Pas de fichier)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [Google Update] => C:\Users\ppinc\AppData\Local\Google\Update\1.3.36.372\GoogleUpdateCore.exe [223008 2024-02-01] (Google LLC -> Google LLC)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [AvastBrowserAutoLaunch_E86AE0595FCAE6B437405AD3E30B01DA] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44540320 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-404384542-1280915690-766844819-1001\...\Run: [MicrosoftEdgeAutoLaunch_778F3AE3925297911CD2F36698C6CFDD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788736 2024-02-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\WINDOWS\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\Installer\chrmstp.exe [2024-02-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7976.151\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {FAEDDC6E-A75A-4061-953A-71AB95CFA304} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609168 2017-11-23] (ASUSTeK Computer Inc. -> )
Task: {04BA0AD9-5431-40F3-974C-F12C88A0E238} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [75776 2017-10-24] (ASUS) [Fichier non signé]
Task: {FA62C1D6-EC06-42E0-B29C-A87CC47614F2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A695A0EA-A1A9-466E-A075-64A81B97C6E3} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-07-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5E130211-94F8-4384-98C7-BFD89D14C65A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {B8CB26C2-2B5C-4597-89CE-2B5C9F31ACC7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {82855DD0-476E-4DA9-9845-B90A6EC47E6B} - System32\Tasks\AvastBrowserProtectS-1-5-21-404384542-1280915690-766844819-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1658776 2023-04-05] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {888F79C4-2F56-49D5-95B2-A9BCB99A3B06} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Task: {743D71C4-B6CC-428A-8410-709358D82FEF} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Task: {55ABA0D4-D71B-4E5F-9B7F-06BD63AD173B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {149E8476-EA67-4079-AC74-AC55B9CC5336} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "6078a3c9-e03c-49e1-a168-931a9b773a1f" --version "6.20.10897" --silent
Task: {B6DF7EE4-AE10-4820-AB00-AADC13F67DFC} - System32\Tasks\CCleanerSkipUAC - ppinc => C:\Program Files\CCleaner\CCleaner.exe [38319520 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {6DED46C5-4666-4A74-B356-7B8FF3F0404A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6268.0{8F1A700F-085A-4CFA-B4A8-6E165C20F3B0} => C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
Task: {5A52252A-813D-4A66-89F7-DAD648015920} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001Core => C:\Users\ppinc\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-09-14] (Google Inc -> Google Inc.)
Task: {BF1336F1-AB35-43CD-AC21-8A7B8E2BAA05} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001UA => C:\Users\ppinc\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-09-14] (Google Inc -> Google Inc.)
Task: {A5EB4E8E-AB39-4AAE-97C4-6FAEF27C77B4} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {466C7998-7F3F-490E-912A-5C5C8E5E27CD} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {8D50BC55-8209-494C-B9C5-0E7E102C5DE2} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {D2697F95-F3D3-4984-8AD2-ED492CB80A51} - System32\Tasks\OneDrive Standalone Update Task v2 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {BEC0C3BE-C7B7-4F6F-B888-C248C933F316} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [20992 2017-07-26] () [Fichier non signé]
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0c241bf2-cd96-4748-a7b3-74fc90967b6d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c241bf2-cd96-4748-a7b3-74fc90967b6d}: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\245727561657E2B6C2: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C494E4B4F564230303: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C494E4B4F564230303F55374: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C496E6B6F554874756E6465627F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4505D2C496E6B6F554874756E6465627F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\4556E64616F5543334341403: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D244132324F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D244132324F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D253133303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D253133303: [DhcpDomain] home
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D283240314F5548545: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b9c4e40e-8387-4f2b-823f-b04af6006229}\C496675626F687D283240314F5548545: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-09]
Edge DownloadDir: Default -> C:\Users\ppinc\Downloads
Edge Extension: (Google Docs hors connexion) - C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-26]
Edge Extension: (Edge relevant text changes) - C:\Users\ppinc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-16] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-16] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR Profile: C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default [2024-02-09]
CHR Notifications: Default -> hxxps://fr.softonic.com; hxxps://www.auto-moto.com; hxxps://www.cadeaux.com; hxxps://www.conrad.fr; hxxps://www.lemondeducampingcar.fr; hxxps://www.michelin.fr; hxxps://www.netflix.com; hxxps://www.pagesjaunes.fr; hxxps://www.tf1.fr; hxxps://www.youtube.com
CHR Extension: (Google Docs hors connexion) - C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\ppinc\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-02-02]
Opera:
=======
OPR DefaultProfile: Default
Brave:
=======
BRA Profile: C:\Users\ppinc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-02-02]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtructisService; C:\Program Files (x86)\AlricApplication\AtructisService.exe [76362320 2022-12-15] () [Fichier non signé] [Fichier en cours d'utilisation] <==== ATTENTION
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-16] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\elevation_service.exe [1847216 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 Dimension4; C:\Program Files (x86)\D4\D4.exe [355840 2013-11-27] (Thinking Man Software) [Fichier non signé]
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [273880 2017-10-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 GoogleUpdaterInternalService123.0.6268.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService123.0.6268.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6268.0\updater.exe [4638496 2024-01-27] (Google LLC -> Google LLC) <==== ATTENTION
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 ZenAnywhere; C:\Program Files\Orbweb Inc\ZenAnywhere\ZenAnywhere.exe [154456 2017-10-26] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhere Updater; C:\Program Files\Orbweb Inc\ZenAnywhere\updater.exe [154456 2017-10-26] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhereNetworkService; C:\Program Files\Orbweb Inc\ZenAnywhere\bin\ZenAnywhereNetworkService.exe [67416 2017-04-07] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 BraveVpnWireguardService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\121.1.62.153\BraveVpnWireguardService\brave_vpn_wireguard_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 RealWoW60; C:\WINDOWS\system32\DRIVERS\RealWoW60.sys [39432 2017-04-07] (Realtek Semiconductor Corp. -> Realtek semiconductor corp)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-03] (Microsoft Windows -> Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-09 15:11 - 2024-02-09 15:13 - 000024347 _____ C:\Users\ppinc\Desktop\FRST.txt
2024-02-09 15:10 - 2024-02-09 15:12 - 000000000 ____D C:\FRST
2024-02-09 15:07 - 2024-02-09 15:09 - 002389504 _____ (Farbar) C:\Users\ppinc\Desktop\FRST64.exe
2024-02-03 11:24 - 2024-02-03 11:24 - 000446072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-02 16:52 - 2024-02-02 16:52 - 000264088 _____ (AVAST Software) C:\Users\ppinc\Downloads\avast_premium_security_setup_online (3).exe
2024-02-02 14:01 - 2024-02-02 16:53 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-01-30 09:04 - 2024-01-30 09:04 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2024-01-30 09:04 - 2024-01-30 09:04 - 000002243 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2024-01-30 09:04 - 2024-01-30 09:04 - 000000000 ____D C:\Program Files\Google
2024-01-30 09:01 - 2024-02-02 16:36 - 000000000 ____D C:\WINDOWS\Minidump
2024-01-28 16:39 - 2024-01-28 16:39 - 000068426 _____ C:\Users\ppinc\Downloads\F-RES-2023-09-52302.pdf
2024-01-26 11:00 - 2024-01-26 11:00 - 000000000 ____D C:\Users\ppinc\AppData\Local\Atructissoft
2024-01-26 10:59 - 2024-01-26 10:59 - 000000000 ____D C:\Users\ppinc\AppData\Local\OneBrowser
2024-01-26 10:55 - 2024-01-26 15:29 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\ReasonLabs
2024-01-26 10:51 - 2024-01-26 10:51 - 000000000 ____D C:\Program Files (x86)\rsStubActivator-1.1.1
2024-01-26 10:50 - 2024-01-26 10:50 - 000000000 ____D C:\Users\ppinc\AppData\Local\Opera Software
2024-01-26 10:48 - 2024-01-26 10:48 - 000001206 _____ C:\Users\ppinc\Downloads\vicohome setup.txt.lnk
2024-01-26 10:47 - 2024-01-26 10:59 - 000000000 ____D C:\Program Files (x86)\LevelMagnificentConstruction
2024-01-26 10:47 - 2024-01-26 10:47 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Opera Software
2024-01-26 10:42 - 2024-01-26 10:42 - 022117379 _____ C:\Users\ppinc\Downloads\Vicohome-Setup-345632.zip
2024-01-26 10:42 - 2024-01-26 10:42 - 022117379 _____ C:\Users\ppinc\Downloads\Vicohome-Setup-345632 (1).zip
2024-01-25 08:59 - 2024-01-25 08:59 - 000003820 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-404384542-1280915690-766844819-1001
2024-01-19 11:59 - 2024-01-19 11:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-01-18 11:07 - 2024-01-18 11:08 - 020402136 _____ (Macrovision Corporation) C:\Users\ppinc\Downloads\presto-imagefolio (1).exe
2024-01-18 11:07 - 2024-01-18 11:07 - 020402136 _____ (Macrovision Corporation) C:\Users\ppinc\Downloads\presto-imagefolio.exe
2024-01-13 11:22 - 2024-01-13 11:27 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-09 15:11 - 2021-11-02 20:59 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-09 15:11 - 2019-12-07 15:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2024-02-09 15:11 - 2019-12-07 15:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2024-02-09 15:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-02-09 15:06 - 2022-12-15 03:57 - 000000000 ____D C:\Users\ppinc\AppData\Local\AlricApplication
2024-02-09 15:05 - 2018-09-15 17:04 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-02-09 15:04 - 2021-12-30 12:22 - 000000000 ____D C:\Program Files\CCleaner
2024-02-09 15:03 - 2022-09-26 14:28 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-02-09 15:03 - 2021-11-02 21:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-09 15:03 - 2021-11-02 20:48 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-09 15:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-02-09 15:03 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-09 15:03 - 2018-09-14 14:59 - 000000000 __SHD C:\Users\ppinc\IntelGraphicsProfiles
2024-02-09 15:03 - 2018-03-31 15:06 - 000000000 ___HD C:\Intel
2024-02-09 15:02 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-02-09 15:02 - 2018-09-14 19:34 - 000000000 ____D C:\Users\ppinc\AppData\Local\AVAST Software
2024-02-09 15:02 - 2018-09-14 19:31 - 000000000 ____D C:\ProgramData\AVAST Software
2024-02-09 14:43 - 2022-12-15 03:57 - 000000000 ____D C:\ProgramData\AlricApplication
2024-02-09 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-09 13:43 - 2021-11-02 20:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-09 11:28 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-09 09:07 - 2022-09-26 14:28 - 000002950 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-02-09 09:07 - 2021-12-30 12:22 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-02-09 09:07 - 2021-12-30 12:22 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - ppinc
2024-02-09 09:07 - 2021-11-02 21:03 - 000003696 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001UA
2024-02-09 09:07 - 2021-11-02 21:03 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-09 09:07 - 2021-11-02 21:03 - 000003428 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-404384542-1280915690-766844819-1001Core
2024-02-09 09:07 - 2021-11-02 21:03 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-02-09 09:06 - 2018-09-14 15:03 - 000002498 _____ C:\Users\ppinc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-09 09:06 - 2018-09-14 15:03 - 000002461 _____ C:\Users\ppinc\Desktop\Google Chrome.lnk
2024-02-08 09:00 - 2020-08-28 10:08 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-07 09:08 - 2019-01-13 12:06 - 000000000 ____D C:\Users\ppinc\AppData\Local\CrashDumps
2024-02-05 16:28 - 2023-03-08 17:46 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Kodi
2024-02-03 11:21 - 2022-10-16 13:35 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\dvdcss
2024-02-03 11:21 - 2021-10-18 08:24 - 000000000 ___DC C:\WINDOWS\Panther
2024-02-03 11:21 - 2021-08-01 13:32 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\HTML Help
2024-02-03 11:21 - 2020-05-13 09:49 - 000000000 ____D C:\Users\ppinc\AppData\Local\SquirrelTemp
2024-02-03 11:21 - 2018-11-19 14:56 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\MMC
2024-02-02 16:57 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-02-02 11:04 - 2018-09-14 19:36 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-02-02 11:04 - 2018-09-14 19:36 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2024-02-02 09:10 - 2021-11-02 20:51 - 000000000 ____D C:\Users\ppinc
2024-01-31 16:03 - 2019-10-23 17:15 - 000000000 ____D C:\Users\ppinc\AppData\Local\D3DSCache
2024-01-31 09:01 - 2022-01-14 13:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-28 16:14 - 2023-04-25 08:14 - 000000000 ____D C:\ProgramData\Piriform
2024-01-27 09:17 - 2018-03-31 15:19 - 000000000 ____D C:\ProgramData\Realtek
2024-01-26 21:51 - 2022-11-26 11:34 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-26 15:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-26 15:49 - 2022-10-16 13:49 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\CyberLink
2024-01-25 11:28 - 2020-05-13 09:50 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Molotov
2024-01-21 14:07 - 2023-08-02 12:54 - 000000615 _____ C:\Users\ppinc\Desktop\MSHV 64-bit.lnk
2024-01-19 12:00 - 2019-10-29 16:50 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-18 11:17 - 2018-03-31 15:13 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-01-18 11:10 - 2019-10-31 10:21 - 000000000 ____D C:\Users\ppinc\AppData\Local\NewSoft
2024-01-13 11:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-11 15:11 - 2023-03-07 16:12 - 000000000 ____D C:\Users\ppinc\AppData\Roaming\Microsoft\Publisher
2024-01-11 14:48 - 2018-09-14 16:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-11 14:43 - 2018-09-14 16:36 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2018-09-14 15:00 - 2018-10-29 13:37 - 000000359 _____ () C:\Users\ppinc\AppData\Roaming\sp_data.sys
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================