Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-04-2022
Exécuté par 33781 (administrateur) sur DESKTOP-EKAOMGF (HP HP Laptop 15-db0xxx) (07-05-2022 20:46:52)
Exécuté depuis C:\Users\33781\Desktop
Profils chargés: 33781
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1645 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe ->) (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusClient.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe
(services.exe ->) (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1613_none_7df538047ca074bb\TiWorker.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [4837248 2021-08-02] (STARDOCK SYSTEMS, INC. -> Stardock Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4276715804-3291776424-4129356891-1001\...\Run: [Fences] => c:\program files (x86)\stardock\fences\Fences.exe [4837248 2021-08-02] (STARDOCK SYSTEMS, INC. -> Stardock Corporation)
HKU\S-1-5-21-4276715804-3291776424-4129356891-1001\...\Run: [Discord] => C:\Users\33781\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4276715804-3291776424-4129356891-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36705520 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon MG3000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDG.DLL [30720 2016-05-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3000 series: C:\Windows\system32\CNMLMDG.DLL [485376 2016-05-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\101.0.4951.54\Installer\chrmstp.exe [2022-05-05] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0DE604BD-B6DA-426A-9AD8-EDAAF5E56195} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1637A3C8-EF0E-4D83-A513-226105882B04} - System32\Tasks\Opera GX scheduled Autoupdate 1647790128 => C:\Users\33781\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {87FC3F6A-721D-42CA-B6D2-F43A2BFAA44D} - System32\Tasks\GoogleUpdateTaskMachineUA{E846E8B2-64BF-4874-859B-22F2EA0A6F54} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-17] (Google LLC -> Google LLC)
Task: {99C4D7A8-29BF-4216-AD62-33265340AC8A} - System32\Tasks\GoogleUpdateTaskMachineCore{90203D2F-2B71-4AFF-B8A2-BCF7C6BFDACD} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-04-17] (Google LLC -> Google LLC)
Task: {9AC3DCF1-D2C5-4873-91FA-3CC64D965D02} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-04-07] (Piriform Software Ltd -> Piriform)
Task: {9E2107FE-2DC0-4281-81AA-B5308E10A0EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0888541-FEEB-4751-BD7E-EDD6987AAFE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2004E65-58D2-4BE9-9E73-7E646622070E} - System32\Tasks\CCleanerSkipUAC - 33781 => C:\Program Files\CCleaner\CCleaner.exe [30836464 2022-04-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E3F04E4E-41F7-4F8D-A40C-850152E2B045} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{66711ecf-c35b-454c-a1ad-3236bf458ded}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{9decd6b3-cd6b-4c8d-9de2-c2542a388b92}: [DhcpNameServer] 89.2.0.1 89.2.0.2

Edge:
=======
Edge Profile: C:\Users\33781\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-05]

FireFox:
========
FF DefaultProfile: 8rj3z2l8.default
FF ProfilePath: C:\Users\33781\AppData\Roaming\Mozilla\Firefox\Profiles\8rj3z2l8.default [2022-02-25]
FF ProfilePath: C:\Users\33781\AppData\Roaming\Mozilla\Firefox\Profiles\51gwc1mo.default-release [2022-05-07]
FF Notifications: Mozilla\Firefox\Profiles\51gwc1mo.default-release -> hxxps://www.cosmopolitan.fr
FF Extension: (Price tracker - Otsledit) - C:\Users\33781\AppData\Roaming\Mozilla\Firefox\Profiles\51gwc1mo.default-release\Extensions\{c56d76b1-5a49-4710-87bf-6a81ac7d9fbb}.xpi [2022-04-16] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default [2022-05-07]
CHR HomePage: Default -> hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSlPcVreTDevVOyh9NiA2ow1il%2B86R%2B27phDeAw2EzYl1%2B9pJFS6is8Jv37Ngcy7MycXP8RyjJrmYIU3UkvukfO5VInW01lTbpWStNDA1U7gwDumxnrpoPfSZUqRyVitKSgRXLjfSXT8gatiJHmS7Sbzm0uhG3pXWmmwyTPAgQjIkSe4XwYCISu8UP8k0%2BNrziQ1HF460gbL3Ib0%2BMxA9bENq6Fu%2BsfSeaC5kysBerv%2FXZBmsKD5M%2FPQr4L3NHI%2F4wy7fvcxZssgkRmJCIa8%2F%2FzskjsBsutctdcko15Jcu3hnOwOKOGdSPx1MxdGMbMXexg%3D%3D
CHR StartupUrls: Default -> "hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSp%2BRqIGOl811o4F5mpY1pVWy8Zc7cLy5SHUZk7B8DhKVmxlHKvLpsEWeOD79yyZPlTjdAdFectn9KFmsAm2LawXnXhTJhWdcV1zAu3VRlq8Mn8AXLs8VaPAI6%2FtrlP%2FJmw9VIA9eTzuwjZGgxisOjtYgJehOm5hG7VO9buC%2B8wQAhyZ8q5Bj88m2GX4eaj6e6S4KNXqMs57ttowXL%2BDzrXrm9RYmsUtlApfa7EAoPYV69WjKFfRUvdsszzkSVGPHcWYxFa%2B8BzS%2FcNOe8Kmn23ZpB%2FQrCcPkYgO6TLrqjcn3FhfrqKjstK8xdLcOeom7eA%3D%3D","hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSp%2BRqIGOl811o4F5mpY1pVWy8Zc7cLy5SHUZk7B8DhKVmxlHKvLpsEWeOD79yyZPlSC5IFwkIr1Ugm0Qy%2BhjiZEU7F5cCOuh9fQErX27oTLeeeH%2BAKfibVEckNLizOTwjWL3hsc%2BW1gLRGxFbGo1NUuDAf3aCrrH9KbyEqHylJ9P3v7vOo44CK094Z%2B1BbYlUpVNkiJhxZS8JGtjI%2BcajaoWvgi%2Fttau5VfOuff%2FqjQpU6pTY9vFQz74dqxJ%2FD8smV6PqmKaHoUSzbxVh4tUR%2Frhra5zxGUB%2BOvwFes9y%2FCJ1B0Ljs78UUM0seweR7FDGQ%3D%3D"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-02-11]
CHR Extension: (Stargazers) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgjgecgjcaoepmcinebllijclpmnoeke [2022-05-05]
CHR Extension: (MerciApp — Correcteur orthographique Chrome) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccahjgcckaemgpliioopngfgdaceffo [2022-04-29]
CHR Extension: (Trackerbot V2) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfdldleopmcdjppengcjkpfafjhcabpj [2022-04-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-13]
CHR Extension: (Price tracker - Otsledit) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibamclpibpnhmkaphhemfbljmenlpbch [2022-04-14]
CHR Extension: (AliSave | Télécharger les images & videos AliExpress) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbhfcmbdimdbbclfngkjfmgmjhnkjocl [2022-04-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-11]
CHR Extension: (AMZScraper - Scrape Product Image from Amazon) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojneckimdlokpgljmjndpleofjpekmgh [2022-05-04]
CHR Profile: C:\Users\33781\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-05-07]
CHR Profile: C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-05-07]
CHR HomePage: Profile 1 -> hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSlPcVreTDevVOyh9NiA2ow1il%2B86R%2B27phDeAw2EzYl1%2B9pJFS6is8Jv37Ngcy7MyTilG1DDDsmeCSXqICucLI5ls89DL7z%2Bz0xgBxKg2hUr6pWoX3%2FCoK4lKiuElk1e1rxTGe5oLEL8t9PEXiDOqarq76FOCu8LWDF%2Br4bAaDIDl1mlXzsmIkDw6TWUVjpHLlIlShLS5F9WRW%2FhCrh2S5Gr3BvGsQPD7IPpul5hgAYzleQEGqNdXEXTvIp0nS0P0IbVl55BSnMXPYhU3WnSxVsg%2FToxGYZo8%2BNI3WkrSZONuFjLAlgJuMsP1PC4SBxkkQ%3D%3D
CHR StartupUrls: Profile 1 -> "hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSp%2BRqIGOl811o4F5mpY1pVWy8Zc7cLy5SHUZk7B8DhKVmxlHKvLpsEWeOD79yyZPlSC5IFwkIr1Ugm0Qy%2BhjiZEU7F5cCOuh9fQErX27oTLeeeH%2BAKfibVEckNLizOTwjWL3hsc%2BW1gLRGxFbGo1NUuDAf3aCrrH9KbyEqHylJ9P3v7vOo44CK094Z%2B1BbYlUpVNkiJhxZS8JGtjI%2BcajaoWvgi%2Fttau5VfOuff%2FqjQpU6pTY9vFQz74dqxJ%2FD8smV6PqmKaHoUSzbxVh4tUR%2Frhra5zxGUB%2BOvwFes9y%2FCJ1B0Ljs78UUM0seweR7FDGQ%3D%3D","hxxps://homesearchdesign.com/tab?session=y6bdVFVIsvuYsgEClQfz8H4Nt7Z%2Fa%2FjIYRHku8XcMVJai6dNP7Dh4yy2x0oCJu45q3GvmvZaTHctN1LdtzrsSp%2BRqIGOl811o4F5mpY1pVWy8Zc7cLy5SHUZk7B8DhKVmxlHKvLpsEWeOD79yyZPlTjdAdFectn9KFmsAm2LawXnXhTJhWdcV1zAu3VRlq8Mn8AXLs8VaPAI6%2FtrlP%2FJmw9VIA9eTzuwjZGgxisOjtYgJehOm5hG7VO9buC%2B8wQAhyZ8q5Bj88m2GX4eaj6e6S4KNXqMs57ttowXL%2BDzrXrm9RYmsUtlApfa7EAoPYV69WjKFfRUvdsszzkSVGPHcWYxFa%2B8BzS%2FcNOe8Kmn23ZpB%2FQrCcPkYgO6TLrqjcn3FhfrqKjstK8xdLcOeom7eA%3D%3D"
CHR Extension: (Trackerbot V2) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gfdldleopmcdjppengcjkpfafjhcabpj [2022-04-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-18]
CHR Extension: (Price tracker - Otsledit) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ibamclpibpnhmkaphhemfbljmenlpbch [2022-04-24]
CHR Extension: (Dark Space) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\idmnciiknelklflhdlnkokcoihkidkln [2022-05-05]
CHR Extension: (AliSave | Télécharger les images & videos AliExpress) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nbhfcmbdimdbbclfngkjfmgmjhnkjocl [2022-04-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-13]
CHR Extension: (AMZScraper - Scrape Product Image from Amazon) - C:\Users\33781\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ojneckimdlokpgljmjndpleofjpekmgh [2022-05-05]
CHR Profile: C:\Users\33781\AppData\Local\Google\Chrome\User Data\System Profile [2022-05-07]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

"SAntivirusIC" => service a été déverrouillé. <==== ATTENTION

R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6941200 2022-03-20] (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [690704 2022-03-20] (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) <==== ATTENTION
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [86024 2022-03-20] (Digital Communications Inc -> DlGlTAL COMMUNICATIONS INC) <==== ATTENTION
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [37280 2021-11-23] (HP Inc. -> HP)
S3 MpKsl60b79b66; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FC9227A0-D426-48E2-970D-FB07FE79D89D}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-07 20:46 - 2022-05-07 20:47 - 000018151 _____ C:\Users\33781\Desktop\FRST.txt
2022-05-07 20:46 - 2022-05-07 20:47 - 000000000 ____D C:\FRST
2022-05-07 20:41 - 2022-05-07 20:41 - 002366976 _____ (Farbar) C:\Users\33781\Desktop\FRST64.exe
2022-05-07 12:05 - 2022-05-07 12:05 - 001237040 _____ (Apowersoft Ltd. ) C:\Users\33781\Downloads\apowersoft-online-launcher.exe
2022-05-06 19:39 - 2022-05-06 19:39 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2022-05-05 16:39 - 2022-05-05 16:39 - 000087763 _____ C:\Users\33781\Downloads\iloveimg-resized.zip
2022-05-05 11:35 - 2022-05-07 17:10 - 000000000 ____D C:\Program Files\CCleaner
2022-05-05 11:35 - 2022-05-07 16:03 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-05-05 11:35 - 2022-05-05 11:35 - 000002904 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - 33781
2022-05-05 11:35 - 2022-05-05 11:35 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-05-05 11:35 - 2022-05-05 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-05-03 22:03 - 2022-05-03 22:03 - 000247246 _____ C:\Users\33781\Downloads\vosTimbres.pdf
2022-05-03 21:34 - 2022-05-03 21:34 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-05-03 21:34 - 2022-05-03 21:34 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-29 16:42 - 2022-05-06 17:21 - 000069182 _____ C:\Users\33781\Documents\template ebay.txt
2022-04-29 10:34 - 2022-04-29 21:38 - 000000000 ____D C:\Users\33781\AppData\Local\Discord
2022-04-29 06:59 - 2022-04-29 06:59 - 000000000 _____ C:\Users\33781\AppData\Local\BITD7C7.tmp
2022-04-27 11:19 - 2022-04-27 11:19 - 000000000 ____D C:\Users\33781\AppData\Local\OneDrive
2022-04-22 20:42 - 2022-04-22 20:42 - 000000102 _____ C:\Users\33781\Documents\Libertée.txt
2022-04-22 20:03 - 2022-04-22 20:03 - 000000910 _____ C:\Users\33781\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2022-04-22 20:03 - 2022-04-22 20:03 - 000000862 _____ C:\Users\33781\Desktop\Start Tor Browser.lnk
2022-04-22 19:57 - 2022-04-22 19:57 - 000000000 ____D C:\Users\33781\Desktop\Tor Browser
2022-04-22 19:56 - 2022-04-22 19:56 - 073607464 _____ C:\Users\33781\Downloads\torbrowser-install-win64-10.0.7_fr.exe
2022-04-22 18:03 - 2022-04-22 18:04 - 000000000 ____D C:\Users\33781\Downloads\Sécateur noir exif
2022-04-19 14:05 - 2022-04-28 14:13 - 000000000 ____D C:\Users\33781\Desktop\Hot
2022-04-17 18:19 - 2022-05-05 11:19 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-17 18:19 - 2022-05-05 11:19 - 000002280 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-04-17 18:18 - 2022-04-17 18:18 - 000000000 ____D C:\Program Files\Google
2022-04-17 18:17 - 2022-04-21 08:23 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{E846E8B2-64BF-4874-859B-22F2EA0A6F54}
2022-04-17 18:17 - 2022-04-21 08:23 - 000003542 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{90203D2F-2B71-4AFF-B8A2-BCF7C6BFDACD}
2022-04-16 14:30 - 2022-05-07 20:20 - 000004178 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{C247B159-1956-40C0-9A2C-B0AAFBEC4A40}
2022-04-16 09:52 - 2022-05-05 11:37 - 000000000 ____D C:\Windows\Minidump
2022-04-15 15:28 - 2022-04-15 15:28 - 014286848 _____ C:\Users\33781\Downloads\WindowsPCHealthCheckSetup.msi
2022-04-15 10:39 - 2022-04-15 10:41 - 022988248 _____ (Outbyte) C:\Users\33781\Downloads\outbyte-pc-repair.exe
2022-04-15 10:29 - 2022-04-15 10:29 - 000000000 ___HD C:\$WinREAgent
2022-04-15 10:24 - 2022-04-15 10:24 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-04-15 10:24 - 2022-04-15 10:24 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-04-15 10:20 - 2022-04-15 10:20 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-04-15 10:18 - 2022-04-15 10:18 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-04-14 20:35 - 2022-04-14 20:35 - 000001032 _____ C:\Users\33781\Desktop\Telegram.lnk
2022-04-14 20:35 - 2022-04-14 20:35 - 000000000 ____D C:\Users\33781\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2022-04-14 20:35 - 2022-04-14 20:35 - 000000000 ____D C:\Users\33781\AppData\Local\cache
2022-04-14 20:34 - 2022-04-15 15:37 - 000000000 ____D C:\Users\33781\AppData\Roaming\Telegram Desktop
2022-04-14 20:34 - 2022-04-14 20:34 - 035432872 _____ (Telegram FZ-LLC ) C:\Users\33781\Downloads\telegram_3-6-0_en_432171_64.exe
2022-04-12 16:10 - 2022-04-12 16:16 - 000000000 ____D C:\Users\33781\Downloads\Mini scie électrique 4 pouces 88VF 1080W, Mini scie à chaîne avec batterie 1
2022-04-11 15:17 - 2022-04-11 15:17 - 000000000 ____D C:\Users\33781\Downloads\Tronço noire néttoyées
2022-04-11 15:16 - 2022-04-11 15:17 - 000000000 ____D C:\Users\33781\Downloads\Sécaeur rouge néttoyées
2022-04-07 18:20 - 2022-04-07 18:22 - 037896952 _____ (Piriform Software Ltd) C:\Users\33781\Downloads\ccleaner_5-91-9537_fr_14492.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-07 20:32 - 2022-02-26 18:10 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-05-07 20:32 - 2022-02-25 16:03 - 000000000 ____D C:\Users\33781\AppData\LocalLow\Mozilla
2022-05-07 20:31 - 2022-02-11 14:10 - 000000000 ____D C:\Users\33781\AppData\Local\D3DSCache
2022-05-07 20:28 - 2022-02-11 14:09 - 000000000 ____D C:\Program Files (x86)\Google
2022-05-07 20:12 - 2019-12-07 09:02 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-05-07 19:09 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-07 17:14 - 2019-12-07 16:49 - 000756416 _____ C:\Windows\system32\perfh00C.dat
2022-05-07 17:14 - 2019-12-07 16:49 - 000142186 _____ C:\Windows\system32\perfc00C.dat
2022-05-07 17:14 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-05-07 17:14 - 2019-12-07 09:09 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2022-05-07 16:01 - 2022-02-15 16:49 - 000000000 ____D C:\Users\33781\AppData\Roaming\discord
2022-05-07 16:00 - 2019-12-07 09:02 - 000008192 ___SH C:\DumpStack.log.tmp
2022-05-07 16:00 - 2019-12-07 09:02 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-05-07 08:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-07 08:22 - 2019-12-07 09:03 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-05-07 08:22 - 2019-12-07 09:03 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-05-07 07:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-05-05 07:42 - 2022-02-11 13:49 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4276715804-3291776424-4129356891-1001
2022-05-05 07:42 - 2022-02-11 13:48 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4276715804-3291776424-4129356891-1001
2022-05-05 07:42 - 2022-02-11 13:41 - 000002421 _____ C:\Users\33781\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-04-29 10:35 - 2022-02-15 16:49 - 000002233 _____ C:\Users\33781\Desktop\Discord.lnk
2022-04-29 10:35 - 2022-02-15 16:49 - 000000000 ____D C:\Users\33781\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2022-04-29 10:35 - 2022-02-15 16:48 - 000000000 ____D C:\Users\33781\AppData\Local\SquirrelTemp
2022-04-27 11:19 - 2022-02-11 13:44 - 000000000 ____D C:\Users\33781\AppData\Local\Packages
2022-04-27 11:18 - 2022-02-11 13:51 - 000000000 ____D C:\Users\33781\AppData\Local\PlaceholderTileLogoFolder
2022-04-19 16:08 - 2022-02-12 15:17 - 000000620 _____ C:\Users\33781\Documents\Mots de passe.txt
2022-04-17 07:05 - 2022-02-11 13:41 - 000000000 ____D C:\Users\33781
2022-04-16 14:50 - 2022-02-11 14:10 - 000065536 _____ C:\Windows\psp_storage.bin
2022-04-16 14:50 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-04-15 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-04-15 20:06 - 2019-12-07 09:02 - 000276472 _____ C:\Windows\system32\FNTCACHE.DAT
2022-04-15 11:28 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-04-15 11:18 - 2022-03-30 10:05 - 000000000 ____D C:\Users\33781\AppData\Local\CrashDumps
2022-04-15 09:50 - 2022-02-11 18:59 - 000000000 ____D C:\Windows\system32\MRT
2022-04-15 07:50 - 2022-02-11 18:59 - 143823848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-04-14 10:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-04-10 07:15 - 2019-12-07 09:03 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-10 07:15 - 2019-12-07 09:03 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-08 06:57 - 2019-12-07 09:02 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-04-07 18:32 - 2019-12-07 09:02 - 000000000 ____D C:\Windows\Panther

==================== Fichiers à la racine de certains dossiers ========

2022-04-29 06:59 - 2022-04-29 06:59 - 000000000 _____ () C:\Users\33781\AppData\Local\BITD7C7.tmp
2022-04-03 07:40 - 2022-04-03 07:40 - 000000000 _____ () C:\Users\33781\AppData\Local\BITE2F9.tmp

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================