Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2021 01
Exécuté par Karine (administrateur) sur PC-KARINE (TOSHIBA SATELLITE P500) (06-06-2021 20:56:13)
Exécuté depuis C:\Users\Karine\Desktop
Profils chargés: Karine
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvBugReport.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows Hardware Compatibility Publisher -> O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\Toshiba\TECO\TecoService.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [122592 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [333784 2021-03-31] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\RunOnce: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2164981609-3606140395-1070741645-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109961080 2021-05-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2164981609-3606140395-1070741645-1000\...\MountPoints2: {3f1c8400-6151-11e7-b0f8-60eb69c75fcb} - F:\LaunchU3.exe -a
HKU\S-1-5-18\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA CORPORATION -> TOSHIBA)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\Windows\system32\hpinkstsa011LM.dll [331664 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\Windows\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\...\Authentication\Credential Providers: [{B65F237C-AAFF-4df7-8872-91B65663E41F}] -> C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll [2009-10-19] (TOSHIBA Corporation) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2010-08-31]
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA CORPORATION -> TOSHIBA Europe)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {08F97CC1-7E08-4FAF-A692-6FEF3680B418} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.)
Task: {148035A3-9D1B-4FA5-8A7A-F929C008D90C} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {4E4BE2A5-70A6-45D3-913A-C13CD19C66AA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5182A89E-6CFC-4E90-B9F0-A8A8957B367C} - System32\Tasks\UsbFix Boot Scan => C:\Program Files (x86)\UsbFix\UsbFix.exe [2053256 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> )
Task: {5B128B19-C637-43A4-82D8-889575AF386E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {6370A1A9-2BAD-4470-805C-B562B35FB776} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {682AEFF3-E99B-494D-AE4B-B26555D68280} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {725737B6-EB9A-42CD-B29C-F3CED072E811} - System32\Tasks\AdobeAAMUpdater-1.0-PC-Karine-Karine => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {7BF4137E-C120-453E-8C70-2C175A729AA2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {801C41A5-0E9D-4024-99D1-4E66E04FE6C9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {B36FF355-A107-4CCE-8E3C-C825FA0ECB44} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1239176 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> )
Task: {B6F6972B-5F93-4960-A2CC-FF2B1FF0FB23} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4808928 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
Task: {DB213AC6-10BB-4D46-B9C8-3BA330CB83F2} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-28] (Adobe Inc. -> Adobe)
Task: {E17B5178-DAF7-49DB-A21B-4340B2FC6D86} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {F21913BF-249D-4C86-A26A-940EB0091A41} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304560 2010-05-06] (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
Task: {F42E03FF-7CF3-426D-9833-6A25441AFC7A} - System32\Tasks\Opera scheduled Autoupdate 1558820005 => C:\Users\Karine\AppData\Local\Programs\Opera\launcher.exe
Task: {F4849D67-E4BA-4E84-AB8B-E113D399BBB2} - System32\Tasks\{1D225B75-9508-46FE-A9EA-186343642281} => C:\Windows\system32\pcalua.exe -a C:\Users\Karine\Desktop\mp3gain-win-full-1_2_5.exe -d C:\Users\Karine\Desktop
Task: {F501A14B-4AAA-488C-B761-D8417368AFA9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2164981609-3606140395-1070741645-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {FE1A99D0-243E-4C3E-9A9F-5EE9A646AF55} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{31E1F471-FBD4-406A-8769-5CE3D5F8328D}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{7783FC64-A9E2-4E12-AF85-16EC7DF5C228}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{ACFBE442-AD02-4532-B3CB-2C691DC01A4A}: [DhcpNameServer] 192.168.42.129

FireFox:
========
FF DefaultProfile: z2l7yoz5.default-1552678450587
FF ProfilePath: C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587 [2021-06-06]
FF DownloadDir: C:\Users\Karine\Desktop
FF Homepage: Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587 -> hxxps://www.google.fr/
FF Extension: (Disconnect) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\2.0@disconnect.me.xpi [2020-10-07]
FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\firefox@ghostery.com.xpi [2021-03-05]
FF Extension: (HTTPS partout) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\https-everywhere@eff.org.xpi [2021-04-15]
FF Extension: (Privacy Badger) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-02-07]
FF Extension: (Avast Online Security) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\wrc@avast.com.xpi [2020-04-22] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-06-04]
FF Extension: (Privacy Pass) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\{48748554-4c01-49e8-94af-79662bf34d50}.xpi [2021-05-28]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Karine\AppData\Roaming\Mozilla\Firefox\Profiles\z2l7yoz5.default-1552678450587\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-19]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-28] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-28] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default [2021-05-19]
CHR Extension: (Docs) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-25]
CHR Extension: (Google Drive) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-25]
CHR Extension: (YouTube) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-25]
CHR Extension: (Gmail) - C:\Users\Karine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-07-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2164981609-3606140395-1070741645-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-03-16] (Apple Inc. -> Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8151120 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [622816 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [370400 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-01-23] (Malwarebytes Inc -> Malwarebytes)
S2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899640 2019-05-20] (McAfee, Inc. -> McAfee, Inc.)
R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2007-02-12] (Microsoft Windows Hardware Compatibility Publisher -> O2Micro International)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [124368 2010-05-11] (Toshiba Europe GmbH -> Toshiba Europe GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35664 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [216360 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [365536 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250336 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99296 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41296 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [180944 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522864 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-21] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107792 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82856 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851144 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471352 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215336 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326976 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R3 hidshim; C:\Windows\System32\DRIVERS\hidshim.sys [6656 2009-08-31] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [67072 2009-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [218288 2021-06-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2021-06-06] (Malwarebytes Inc -> Malwarebytes)
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [48128 2009-08-31] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corporation)
R3 nuvotonhidcir; C:\Windows\System32\DRIVERS\nuvotonhidcir.sys [26624 2009-08-31] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corporation)
R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdgx64.sys [49568 2009-08-18] (O2Micro Inc. -> O2Micro)
R3 QIOMem; C:\Windows\system32\DRIVERS\QIOMem.sys [12800 2009-06-15] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA)
S3 RTL8187Se; C:\Windows\System32\DRIVERS\RTL8187Se.sys [427008 2009-06-10] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-06 20:06 - 2021-06-06 20:20 - 000043673 _____ C:\Users\Karine\Desktop\Addition.txt
2021-06-06 19:39 - 2021-06-06 20:57 - 000023960 _____ C:\Users\Karine\Desktop\FRST.txt
2021-06-06 19:38 - 2021-06-06 20:56 - 000000000 ____D C:\FRST
2021-06-06 19:38 - 2021-06-06 19:38 - 002300416 _____ (Farbar) C:\Users\Karine\Desktop\FRST64.exe
2021-06-06 18:56 - 2021-06-06 18:59 - 000000000 ____D C:\Users\Karine\Desktop\Sait Pas
2021-06-06 18:42 - 2021-06-06 18:42 - 000000000 ____D C:\Users\Karine\Desktop\Recupe 3
2021-06-06 18:32 - 2021-06-06 18:37 - 000000000 ____D C:\Users\Karine\Desktop\Word
2021-06-06 18:28 - 2021-06-06 18:36 - 000000000 ____D C:\Users\Karine\Desktop\Recupe
2021-06-06 17:59 - 2021-06-06 19:35 - 000000000 ____D C:\Program Files (x86)\UsbFix
2021-06-06 17:59 - 2021-06-06 17:59 - 000003206 _____ C:\Windows\system32\Tasks\UsbFix Monitor
2021-06-06 17:59 - 2021-06-06 17:59 - 000003204 _____ C:\Windows\system32\Tasks\UsbFix Boot Scan
2021-06-06 17:03 - 2021-06-06 17:03 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-06-06 17:03 - 2021-06-06 17:03 - 000218288 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-06-06 16:45 - 2021-06-06 16:46 - 000111488 _____ C:\Windows\ntbtlog.txt
2021-06-05 23:00 - 2021-06-05 23:00 - 000094924 _____ C:\Users\Karine\Desktop\Justificatif de domicile Free.pdf
2021-06-04 13:45 - 2021-06-04 13:46 - 108773046 _____ C:\Users\Karine\Desktop\What Hi-Fi N°204 – Juin 2021.pdf
2021-06-04 13:15 - 2021-06-04 13:15 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-06-04 13:09 - 2021-06-05 10:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-03 12:41 - 2021-06-03 12:40 - 000339680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-06-03 12:41 - 2021-06-03 12:40 - 000215336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-06-01 11:25 - 2021-06-01 11:29 - 107761741 _____ C:\Users\Karine\Desktop\Que Choisir Santé N°161 – Juin 2021.pdf
2021-05-31 14:42 - 2021-05-31 14:42 - 000001754 _____ C:\Users\Public\Desktop\iTunes.lnk
2021-05-31 14:42 - 2021-05-31 14:42 - 000001754 _____ C:\ProgramData\Desktop\iTunes.lnk
2021-05-31 14:42 - 2021-05-31 14:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-05-31 14:42 - 2021-05-31 14:42 - 000000000 ____D C:\Program Files\iPod
2021-05-31 14:41 - 2021-05-31 14:42 - 000000000 ____D C:\Program Files\iTunes
2021-05-27 23:45 - 2021-05-27 23:45 - 000000000 ____D C:\Users\Karine\Desktop\Transatlantic - The Absolute Universe Forevermore (Extended Version)
2021-05-27 17:17 - 2021-05-27 17:52 - 107725383 _____ C:\Users\Karine\Desktop\Windows et Internet Pratique N°109 – Juillet 2021.pdf
2021-05-27 13:30 - 2021-05-27 13:33 - 107588931 _____ C:\Users\Karine\Desktop\TED Magazine – Mai-Juin 2021.pdf
2021-05-26 16:35 - 2021-05-26 16:38 - 106708697 _____ C:\Users\Karine\Desktop\01Net N°952 Du 27 Mai au 8 Juin 2021.pdf
2021-05-24 22:25 - 2021-05-23 10:51 - 014440131 _____ C:\Users\Karine\Desktop\Mantak Chia - L'énergie sexuelle masculine, L'homme multi-orgasmique.pdf
2021-05-22 17:03 - 2021-05-22 17:05 - 106490766 _____ C:\Users\Karine\Desktop\01Net Hors Série N°122 – Mai-Juin 2021.pdf
2021-05-14 21:09 - 2021-05-14 21:10 - 017350270 _____ C:\Users\Karine\Downloads\IMG_214653627.MOV

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-06 20:55 - 2016-10-27 12:51 - 000000000 ____D C:\Users\Karine\AppData\Roaming\SoftGrid Client
2021-06-06 20:54 - 2020-06-03 23:26 - 000000000 ____D C:\Users\Karine\AppData\LocalLow\Mozilla
2021-06-06 20:53 - 2019-01-30 13:43 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-06 19:16 - 2016-10-25 13:24 - 000000000 ____D C:\Users\Karine
2021-06-06 17:21 - 2018-07-18 11:44 - 000000000 ____D C:\Users\Karine\AppData\Local\AVAST Software
2021-06-06 16:58 - 2009-07-14 06:45 - 000016304 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-06-06 16:58 - 2009-07-14 06:45 - 000016304 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-06-06 16:49 - 2016-11-01 14:30 - 000000000 ____D C:\ProgramData\AVAST Software
2021-06-06 16:48 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-06-06 13:02 - 2017-01-04 19:18 - 000000290 __RSH C:\ProgramData\ntuser.pol
2021-06-06 13:01 - 2009-07-14 07:08 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-06-05 18:08 - 2019-05-25 23:33 - 000004098 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1558820005
2021-06-05 18:08 - 2019-02-12 12:02 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-06-05 18:08 - 2018-08-01 17:05 - 000004638 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2021-06-05 18:08 - 2018-04-06 10:59 - 000003152 _____ C:\Windows\system32\Tasks\{1D225B75-9508-46FE-A9EA-186343642281}
2021-06-05 18:08 - 2017-10-27 14:47 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-06-05 18:08 - 2017-09-23 13:01 - 000002794 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-06-05 18:08 - 2017-03-08 16:55 - 000003506 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-PC-Karine-Karine
2021-06-05 18:08 - 2016-11-01 14:38 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-06-05 18:08 - 2015-12-09 13:18 - 000003492 _____ C:\Windows\system32\Tasks\ConfigFree Startup Programs
2021-06-05 16:09 - 2009-07-14 17:24 - 000762534 _____ C:\Windows\system32\perfh00C.dat
2021-06-05 16:09 - 2009-07-14 17:24 - 000155140 _____ C:\Windows\system32\perfc00C.dat
2021-06-05 16:09 - 2009-07-14 07:13 - 001698720 _____ C:\Windows\system32\PerfStringBackup.INI
2021-06-05 16:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-06-05 10:29 - 2016-10-25 13:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-04 09:30 - 2018-08-28 09:34 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-06-03 12:41 - 2020-04-21 12:04 - 000522864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-06-03 12:40 - 2020-10-26 13:06 - 000180944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-06-03 12:40 - 2019-01-18 11:12 - 000365536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-06-03 12:40 - 2019-01-17 19:03 - 000250336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-06-03 12:40 - 2019-01-17 19:03 - 000099296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-06-03 12:40 - 2019-01-17 19:03 - 000035664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-06-03 12:40 - 2018-10-21 13:15 - 000041296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-06-03 12:40 - 2017-11-12 00:33 - 000216360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-06-03 12:40 - 2016-11-01 14:38 - 000851144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-06-03 12:40 - 2016-11-01 14:38 - 000471352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-06-03 12:40 - 2016-11-01 14:38 - 000326976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-06-03 12:40 - 2016-11-01 14:38 - 000107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-06-03 12:40 - 2016-11-01 14:38 - 000082856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-06-02 10:50 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2021-05-31 23:56 - 2020-06-14 13:02 - 000000000 ____D C:\Users\Karine\Desktop\Films 1080P
2021-05-31 23:15 - 2020-03-18 14:38 - 000001389 _____ C:\Users\Karine\Desktop\Musculation.txt
2021-05-27 18:51 - 2020-08-04 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-05-27 17:03 - 2018-11-21 13:01 - 000001874 _____ C:\Users\Karine\Desktop\3Police Eros.txt
2021-05-26 20:31 - 2017-05-17 12:55 - 000000000 ____D C:\Users\Karine\Desktop\James Blunt-The Afterlove OK
2021-05-23 17:01 - 2019-11-15 23:26 - 000002953 _____ C:\Users\Karine\Desktop\Peter Gabriel.txt
2021-05-21 12:01 - 2017-05-17 13:12 - 000000000 ____D C:\Users\Karine\Desktop\Pochettes
2021-05-19 19:07 - 2018-11-21 13:03 - 000004544 _____ C:\Users\Karine\Desktop\1 Dotation aux amortissements.txt
2021-05-19 16:45 - 2019-10-21 20:49 - 000000000 ____D C:\Users\Karine\Desktop\Spek
2021-05-18 14:34 - 2018-04-05 09:58 - 000000000 ____D C:\Users\Karine\Desktop\Nouveau dossier (4)
2021-05-17 15:11 - 2019-10-13 13:58 - 000000000 ____D C:\Users\Karine\Desktop\Rachid Taha - Je suis africain (2019) [Hi-Res stereo]
2021-05-17 15:11 - 2019-09-06 22:40 - 000000000 ____D C:\Users\Karine\Desktop\Oxmo Puccino - La Nuit du réveil (2019) [Hi-Res stereo]
2021-05-14 09:21 - 2018-11-21 13:02 - 000002081 _____ C:\Users\Karine\Desktop\Son De Gloss.txt
2021-05-12 09:59 - 2017-04-12 19:54 - 000002066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Fichiers à la racine de certains dossiers ========

2019-04-01 22:11 - 2019-04-01 22:11 - 000007602 _____ () C:\Users\Karine\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-06-01 11:48
==================== Fin de FRST.txt ========================