Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2021
Exécuté par ALAIN-PC (administrateur) sur ALAIN (Acer Aspire E1-531) (28-06-2021 15:31:38)
Exécuté depuis C:\Users\ALAIN-PC\Desktop
Profils chargés: ALAIN-PC
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Broadcom Corp.) [Fichier non signé] C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(Dritek System Inc. -> Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(geek software GmbH -> geek software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19991_none_fa0fb7959b4c8c91\TiWorker.exe
(NTI Corporation -> NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2965816 2012-10-19] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2012-12-06] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17795184 2020-02-18] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\Run: [Facebook Update] => C:\Users\ALAIN-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-07-10] (Facebook, Inc. -> Facebook Inc.)
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\Run: [HP ENVY 5540 series (NET)] => C:\Program Files\HP\HP ENVY 5540 series\Bin\ScanToPCActivationApp.exe [3770504 2017-03-27] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\MountPoints2: {0bf0052c-c11a-11e6-839f-b888e3da9dfe} - "E:\LG_PC_Programs.exe"
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\MountPoints2: {3b564b98-04d1-11e8-85c1-b888e3da9dfe} - "E:\AutoRun.exe"
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\MountPoints2: {6dbd4396-5dac-11e7-8481-b888e3da9dfe} - "E:\AutoRun.exe"
HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [788480 2014-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\HP CE11 Status Monitor: C:\Windows\system32\hpinkstsCE11LM.dll [393352 2017-03-20] (Hewlett Packard -> HP Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-05-28] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-10-25]
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation -> NTI Corporation)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06E1B16F-F36C-4303-830E-F5DA8C8CB4CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {128D2153-5F66-47BB-875A-7A734943AA92} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [4152736 2016-07-06] (Acer Incorporated -> )
Task: {184C1E0E-538C-47BD-B60F-6671A1F92EBD} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2965816 2012-10-19] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {1C56FD5E-D85C-41E5-9224-C897114D1757} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
Task: {245F6778-38AC-4121-BBC3-FA01580B373E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001UA => C:\Users\ALAIN-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-07-10] (Facebook, Inc. -> Facebook Inc.)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {339C6EDB-A54C-4AF2-8135-BBB37AD6E3B0} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {3765F57F-BBCF-4DCD-ADE0-FF2159FDCDB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C8CFB9C-6B5A-4B88-B436-F33145BD3552} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [40352 2016-07-06] (Acer Incorporated -> )
Task: {5CC96094-35C5-4BE2-BF41-00EB21ACA557} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320 2012-07-04] (CyberLink -> CyberLink)
Task: {5DCA8774-A0B6-46E8-BD23-7BFC2645540C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {7696FB3B-591C-46CC-8D2C-8B7F0437A08E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc -> Google Inc.)
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7E3E9B9B-94BC-4F3D-B770-011114550F6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-29] (Google Inc -> Google Inc.)
Task: {8B66B4D5-D731-4438-B4FD-F5862005753E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {8D6450E6-3DFA-4A4E-9E19-AD689BD04AD1} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001Core => C:\Users\ALAIN-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-07-10] (Facebook, Inc. -> Facebook Inc.)
Task: {9144FC97-A6B7-492F-BDE9-5FBEF7D1B9F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [356968 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {95B1E40F-2245-416F-9893-F6300BED39BD} - System32\Tasks\HP AR Program Upload - 8ef751e5b2314363a1a52e4d2ecb20bf665b93d21fd64ad39fe9f020403a47af => C:\Program Files\HP\HP ENVY 5540 series\bin\HPRewards.exe
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {B3328645-3FC1-4850-A34C-B7AB87F9136D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {B721C425-E12F-4B99-8984-4D2901E26FD3} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [6438536 2017-03-27] (Hewlett Packard -> HP Inc.)
Task: {C16D06D9-98E7-4486-BF00-50B8ED3F9726} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5294736 2012-08-22] (Acer Incorporated -> Acer Incorporated)
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {FBA71317-EB0D-4719-A075-715EE0EA0F86} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001Core.job => C:\Users\ALAIN-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001UA.job => C:\Users\ALAIN-PC\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{A180BC50-32CE-4A56-A7D4-0CCABE7A85A2}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ALAIN-PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-28]
Edge DownloadDir: Default -> C:\Users\ALAIN-PC\Desktop
Edge HomePage: Default -> hxxp://www.netvibes.com/privatepage/1#Accueil
Edge StartupUrls: Default -> "hxxp://www.netvibes.com/privatepage/1#Accueil"
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ALAIN-PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-06-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: o9bxcwrz.default-1576154968947
FF ProfilePath: C:\Users\ALAIN-PC\AppData\Roaming\Mozilla\Firefox\Profiles\o9bxcwrz.default-1576154968947 [2021-06-28]
FF DownloadDir: C:\Users\ALAIN-PC\Desktop
FF Homepage: Mozilla\Firefox\Profiles\o9bxcwrz.default-1576154968947 -> hxxp://www.netvibes.com/dashboard/1?#Accueil
FF Notifications: Mozilla\Firefox\Profiles\o9bxcwrz.default-1576154968947 -> hxxps://cote.auto-selection.com
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ALAIN-PC\AppData\Roaming\Mozilla\Firefox\Profiles\o9bxcwrz.default-1576154968947\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-20]
FF HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\ALAIN-PC\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Script) - C:\Users\ALAIN-PC\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2018-01-24]
FF HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => non trouvé(e)
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2300664072-1858204102-1384582598-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\ALAIN-PC\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP)
FF Plugin HKU\S-1-5-21-2300664072-1858204102-1384582598-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ALAIN-PC\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <non trouvé(e)>
CHR HKU\S-1-5-21-2300664072-1858204102-1384582598-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-20] (Broadcom Corp.) [Fichier non signé]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated -> Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated -> Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated -> Acer Incorporated)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-21] (Malwarebytes Inc -> Malwarebytes)
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2019-06-26] () [Fichier non signé]
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation -> NTI Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2012-12-06] (Dritek System Inc. -> Dritek System INC.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2018-10-23] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2018-10-16] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2018-10-16] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-11] (AVG Technologies -> AVG Technologies)
S3 massfilter_hs; C:\WINDOWS\System32\drivers\massfilter_hs.sys [18456 2011-07-15] (ZTE CORPORATION -> HandSet Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-25] (Malwarebytes Inc -> Malwarebytes)
S3 MpKsl84a93a18; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{45DFB98B-D28A-428E-81DB-2E12927B864E}\MpKslDrv.sys [47328 2021-06-28] (Microsoft Windows -> Microsoft Corporation)
R3 Ps2Kb2Hid; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736 2012-12-06] (Dritek System Inc. -> Dritek System Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudobex; C:\WINDOWS\system32\DRIVERS\ssudobex.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 zghsdiag; C:\WINDOWS\system32\DRIVERS\zghsdiag.sys [129432 2011-07-15] (ZTE CORPORATION -> ZTE Incorporated)
S3 zghsmdm; C:\WINDOWS\system32\DRIVERS\zghsmdm.sys [129432 2011-07-15] (ZTE CORPORATION -> ZTE Incorporated)
S3 zghsnmea; C:\WINDOWS\system32\DRIVERS\zghsnmea.sys [129432 2011-07-15] (ZTE CORPORATION -> ZTE Incorporated)
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
S3 usbbus; \SystemRoot\System32\drivers\lgx64bus.sys [X]
S3 UsbDiag; \SystemRoot\system32\DRIVERS\lgx64diag.sys [X]
S3 USBModem; \SystemRoot\system32\DRIVERS\lgx64modem.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-28 15:21 - 2021-06-28 15:34 - 000023773 _____ C:\Users\ALAIN-PC\Desktop\FRST.txt
2021-06-28 15:20 - 2021-06-28 15:33 - 000000000 ____D C:\FRST
2021-06-28 15:16 - 2021-06-28 15:16 - 002300416 _____ (Farbar) C:\Users\ALAIN-PC\Desktop\FRST64.exe
2021-06-28 12:41 - 2021-06-28 12:41 - 006720551 _____ C:\Users\ALAIN-PC\Downloads\Vérif état disque dur.zip
2021-06-25 11:54 - 2021-06-25 11:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-25 11:18 - 2021-06-25 12:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-06-25 11:17 - 2021-06-25 11:17 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-23 11:21 - 2021-06-23 11:21 - 000000000 ____D C:\Users\ALAIN-PC\Documents\Vaccins M-C (14-05 & 23-06)
2021-06-22 15:37 - 2021-06-22 15:37 - 000286835 _____ C:\Users\ALAIN-PC\Documents\Attest loc Groupama 17-07-21 au 16-07-22.pdf
2021-06-14 11:33 - 2021-06-14 11:33 - 000307889 _____ C:\Users\ALAIN-PC\Documents\Facture acquittée ECHO (M-C).pdf
2021-06-09 10:53 - 2021-06-05 07:23 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2021-06-09 10:53 - 2021-06-05 06:42 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-09 10:53 - 2021-06-05 06:30 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-07 13:02 - 2021-06-07 13:02 - 000166539 _____ C:\Users\ALAIN-PC\Documents\Calal+(Liste chaînes av 30-06-2023).pdf
2021-06-07 10:28 - 2021-06-07 10:28 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-04 16:25 - 2021-06-04 16:25 - 000082178 _____ C:\Users\ALAIN-PC\Documents\Canal+ Abonnement (AV 30-06-2023).pdf
2021-06-01 10:29 - 2021-06-01 10:29 - 000183278 _____ C:\Users\ALAIN-PC\Desktop\Réouverture progressive.pdf
2021-06-01 10:22 - 2021-06-01 10:23 - 000081999 _____ C:\Users\ALAIN-PC\Documents\Loyer mai 2021.pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-06-28 15:31 - 2017-04-06 16:23 - 000000000 ____D C:\Users\ALAIN-PC\AppData\LocalLow\Mozilla
2021-06-28 15:31 - 2015-02-19 20:37 - 000000000 ____D C:\Users\Administrator
2021-06-28 15:28 - 2019-02-05 12:45 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-28 15:28 - 2014-07-10 18:23 - 000000952 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001UA.job
2021-06-28 15:27 - 2014-06-14 15:30 - 000000000 __SHD C:\Users\ALAIN-PC\IntelGraphicsProfiles
2021-06-28 15:26 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-28 13:37 - 2014-01-11 11:28 - 000000000 ____D C:\Users\ALAIN-PC\AppData\Roaming\ClassicShell
2021-06-28 13:03 - 2015-02-19 20:37 - 000000000 ____D C:\Users\ALAIN-PC
2021-06-28 11:59 - 2019-11-16 17:06 - 000000000 ____D C:\Users\ALAIN-PC\Desktop\Vidéos pour USB (dans TV)
2021-06-28 11:59 - 2014-01-11 00:26 - 000000000 ____D C:\Users\ALAIN-PC\AppData\Roaming\vlc
2021-06-28 11:28 - 2019-10-28 18:29 - 000000000 ____D C:\Users\ALAIN-PC\Desktop\Captvty
2021-06-28 11:22 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2021-06-28 11:01 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-06-28 10:24 - 2018-01-30 11:32 - 000000000 ____D C:\Users\ALAIN-PC\Documents\PENSIONS
2021-06-28 10:05 - 2017-09-17 21:17 - 000003936 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D8A5467C-5A4F-4F1E-B459-A90C02778966}
2021-06-28 10:01 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2021-06-26 14:54 - 2014-01-11 00:16 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2300664072-1858204102-1384582598-1001
2021-06-26 14:26 - 2014-01-11 01:58 - 000000000 ____D C:\Users\ALAIN-PC\AppData\Local\CrashDumps
2021-06-26 12:42 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-26 11:25 - 2014-01-11 03:04 - 000000000 ____D C:\Users\ALAIN-PC\AppData\Local\ElevatedDiagnostics
2021-06-26 10:46 - 2020-06-05 13:33 - 000002251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-26 10:41 - 2020-11-05 14:04 - 000000000 ____D C:\Users\ALAIN-PC\Desktop\La banque postale Mam's
2021-06-25 13:15 - 2014-01-19 14:31 - 000001090 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-06-25 13:15 - 2014-01-19 14:31 - 000001090 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-06-25 12:31 - 2015-10-14 21:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-25 11:54 - 2015-10-14 21:13 - 000001179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-24 14:32 - 2020-08-11 17:40 - 000000000 ____D C:\Users\ALAIN-PC\AppData\LocalLow\IGDump
2021-06-24 13:40 - 2013-06-06 20:01 - 023604736 ___SH C:\Users\ALAIN-PC\Desktop\Thumbs.db
2021-06-23 11:20 - 2021-05-07 11:48 - 000000000 ____D C:\Users\ALAIN-PC\Desktop\Vaccins M-C (14-05 & 23-06)
2021-06-23 11:13 - 2019-03-26 17:27 - 000000000 ___RD C:\Users\ALAIN-PC\Documents\Scanned Documents
2021-06-22 16:05 - 2018-01-30 11:34 - 000000000 ____D C:\Users\ALAIN-PC\Documents\IDENTIFIANTS
2021-06-21 09:55 - 2016-06-20 10:59 - 000000000 ____D C:\Users\ALAIN-PC\AppData\LocalLow\Adblock Plus for IE
2021-06-20 11:25 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2021-06-10 12:28 - 2014-11-21 00:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-10 12:28 - 2014-11-21 00:03 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-10 12:28 - 2014-11-21 00:03 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-09 11:47 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-09 11:39 - 2013-08-22 16:44 - 000519336 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-09 11:31 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2021-06-09 11:31 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Windows Defender
2021-06-09 11:21 - 2014-01-12 13:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-09 11:08 - 2014-01-12 13:13 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-09 10:39 - 2017-04-13 18:53 - 000002083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-04 11:24 - 2014-01-08 21:08 - 000000000 ____D C:\Users\ALAIN-PC\Documents\Factures FREE
2021-06-03 18:28 - 2014-07-10 18:23 - 000000930 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2300664072-1858204102-1384582598-1001Core.job
2021-06-02 12:53 - 2018-07-23 18:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-05-31 11:02 - 2020-07-15 12:38 - 000001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-31 11:02 - 2019-07-07 12:31 - 000001968 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-31 11:02 - 2019-07-07 12:31 - 000001968 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-05-29 16:32 - 2014-02-22 23:05 - 000915456 ___SH C:\Users\ALAIN-PC\Documents\Thumbs.db

==================== Fichiers à la racine de certains dossiers ========

2016-04-14 11:52 - 2016-04-14 11:52 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-01-12 17:06 - 2014-01-14 22:56 - 000004608 _____ () C:\Users\ALAIN-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-23 21:32 - 2016-08-16 13:20 - 000007601 _____ () C:\Users\ALAIN-PC\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2021-06-26 14:55
==================== Fin de FRST.txt ========================