Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-07-2022
Exécuté par picho (administrateur) sur DESKTOP-5UO8SQU (ASUSTeK COMPUTER INC. X555LJ) (29-07-2022 11:16:05)
Exécuté depuis C:\Users\picho\Desktop
Profils chargés: picho
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1706 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <9>
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe <2>
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dxgiadaptercache.exe
(svchost.exe ->) (Piriform Software Ltd -> Piriform) C:\Program Files\CCleaner\CCUpdate.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3989596194-3478247091-1364011421-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [37054552 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3989596194-3478247091-1364011421-1001\...\Run: [MicrosoftEdgeAutoLaunch_077084D475E077ED24E930777F860AA5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601832 2022-07-22] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.66\Installer\chrmstp.exe [2022-07-03] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\102.0.16817.63\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7980.150\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {27759967-85D1-44A0-BEA4-DA5E65385DEF} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {29D6457A-E293-4FEB-9C31-5793CA062710} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {44668304-43E0-4997-B343-6BBCA5252ED8} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {6B024150-F57F-4CB0-ACD4-60CF5AD009AF} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {78DFB29C-AAC4-4E56-8974-A04AE3EF41B3} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [989864 2015-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {852D553A-BC70-4276-92F1-075FC40926C2} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Pas de fichier)
Task: {8B19C7E3-9B9C-4CB3-AA5A-5A57102B9064} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-07-18] (Piriform Software Ltd -> Piriform)
Task: {8F821216-CB05-474D-A681-D91B31ED248F} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B34EA85F-9987-44F6-8FFC-D3907E8C458F} - System32\Tasks\CCleanerSkipUAC - picho => C:\Program Files\CCleaner\CCleaner.exe [31101528 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BA4DB8A0-A610-4971-9C29-C3920567E95C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-21] (Google Inc -> Google Inc.)
Task: {C383CC07-6BD9-41AF-A13D-6E3B1CBA5821} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-21] (Google Inc -> Google Inc.)
Task: {C563D888-4B5C-415C-8A7D-BA0FBBB0FC73} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [461160 2015-07-21] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {C5D32750-9713-43F2-B244-A25EF0986F1E} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {D28874F5-F9FB-4DCD-9D58-F04D4B2DF36D} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Task: {D9E675BA-193E-45C0-ABDE-FBA58ADB1B87} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {ED9F546D-BD1E-48F4-B094-6F6293F4788F} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [427880 2015-07-21] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {F9AB4A1D-588B-4B78-8416-4FE7CE28F095} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Pas de fichier)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{3bb50fe0-fbd9-4f82-a7e4-cbdbad792c2e}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{97982de0-5642-4a92-9eb4-7509dc0357c2}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{d70be4b5-f1c4-452e-baa3-b603fb26c4f1}: [DhcpNameServer] 212.27.40.241 212.27.40.240

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\picho\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\picho\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-07-29]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 4ymqiz8a.default-1583505398036
FF ProfilePath: C:\Users\picho\AppData\Roaming\Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036 [2022-07-29]
FF NetworkProxy: Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036 -> no_proxies_on", "zt-za.net"
FF Notifications: Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036 -> hxxps://www.facebook.com; hxxps://www.psychologies.com; hxxps://www.youtube.com; hxxps://ukulele-masterclass.com; hxxps://www.jevtobond.com; hxxps://www.entrenous.fr; hxxps://www.opensubtitles.org
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\picho\AppData\Roaming\Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036\Extensions\sp@avast.com.xpi [2022-07-03]
FF Extension: (Avast Online Security & Privacy) - C:\Users\picho\AppData\Roaming\Mozilla\Firefox\Profiles\4ymqiz8a.default-1583505398036\Extensions\wrc@avast.com.xpi [2022-07-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-3989596194-3478247091-1364011421-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\picho\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-03-18] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default [2022-07-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-30]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-06-11]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-04-30]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\picho\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-30]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-07-18] (Piriform Software Ltd -> )
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-07-21] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-15] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 m76usb; C:\WINDOWS\System32\drivers\m76usb.sys [563360 2015-06-02] (MEDIATEK INC. -> Ralink Technology Corp.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2021-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2022-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2022-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [28272 2022-07-28] (Adlice -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-29 11:16 - 2022-07-29 11:19 - 000020372 _____ C:\Users\picho\Desktop\FRST.txt
2022-07-29 11:09 - 2022-07-29 11:09 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-07-29 11:08 - 2022-07-29 11:08 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-07-29 11:08 - 2022-07-29 11:08 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-07-29 10:38 - 2022-07-29 11:07 - 000000000 ____D C:\ProgramData\McAfee
2022-07-29 10:04 - 2022-07-29 10:04 - 009688359 _____ C:\Users\picho\Downloads\RevoUninstaller_Portable.zip
2022-07-29 10:03 - 2022-07-29 10:03 - 000000000 ____D C:\Users\picho\Desktop\RevoUninstaller_Portable
2022-07-28 20:14 - 2022-07-28 20:24 - 1289971257 _____ C:\Users\picho\Downloads\Jurassic.World.Dominion.2022.FRENCH.HDRip.H264-Wawacity.red.mp4
2022-07-28 19:35 - 2022-07-29 11:18 - 000000000 ____D C:\FRST
2022-07-28 19:32 - 2022-07-28 19:33 - 002369536 _____ (Farbar) C:\Users\picho\Desktop\FRST64.exe
2022-07-28 19:28 - 2022-07-28 19:29 - 002073600 _____ (Farbar) C:\Users\picho\Downloads\FRST.exe
2022-07-27 18:22 - 2022-07-27 18:22 - 006212021 _____ C:\Users\picho\Desktop\CrystalDiskInfo8_17_4.zip
2022-07-26 20:30 - 2022-07-26 20:30 - 000000000 ____D C:\ProgramData\Piriform
2022-07-07 20:55 - 2022-07-07 20:55 - 000000000 ___HD C:\$WinREAgent
2022-07-07 20:12 - 2022-07-29 08:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-07-29 11:18 - 2016-04-25 12:26 - 000000000 ____D C:\Program Files\CCleaner
2022-07-29 11:16 - 2016-12-19 20:15 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-29 11:13 - 2022-02-14 20:49 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-07-29 11:11 - 2016-11-16 10:47 - 000000000 ____D C:\Users\picho\AppData\LocalLow\Mozilla
2022-07-29 11:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-29 11:09 - 2017-07-14 14:28 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-07-29 11:09 - 2016-03-22 11:38 - 000000000 __SHD C:\Users\picho\IntelGraphicsProfiles
2022-07-29 11:08 - 2021-06-20 12:47 - 000000000 ____D C:\Users\picho\AppData\LocalLow\IGDump
2022-07-29 11:07 - 2020-09-28 16:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-29 11:07 - 2020-09-28 15:53 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-29 11:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-07-29 11:07 - 2017-07-14 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-29 11:07 - 2017-07-14 14:28 - 000000000 ____D C:\Program Files\Intel
2022-07-29 11:07 - 2015-08-21 22:03 - 000000000 ____D C:\Program Files\Common Files\McAfee
2022-07-29 11:07 - 2015-08-21 22:03 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-07-29 11:07 - 2015-08-21 22:01 - 000000000 ____D C:\ProgramData\AVAST Software
2022-07-29 11:00 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-07-29 10:47 - 2020-09-28 16:29 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-07-29 10:44 - 2017-07-14 14:27 - 000000000 ____D C:\Program Files (x86)\Intel
2022-07-29 10:35 - 2015-08-21 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2022-07-29 10:33 - 2018-04-18 20:39 - 000000000 ____D C:\Users\picho\AppData\Local\AVAST Software
2022-07-29 10:27 - 2020-07-03 01:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-29 10:24 - 2018-07-11 16:30 - 000000000 ____D C:\Users\picho\AppData\Local\CrashDumps
2022-07-29 10:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-07-29 10:18 - 2016-03-31 20:06 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-07-29 10:18 - 2016-03-31 20:05 - 000000000 ____D C:\ProgramData\Adobe
2022-07-29 09:43 - 2016-03-23 17:28 - 000000000 ____D C:\Users\picho\AppData\Roaming\BitTorrent
2022-07-29 09:33 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-07-29 09:18 - 2019-12-20 10:20 - 000000000 ____D C:\Users\picho\Desktop\FILMS
2022-07-29 08:34 - 2017-03-26 11:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-07-28 20:30 - 2016-11-04 12:02 - 000017573 _____ C:\Users\picho\Desktop\films cine.odt
2022-07-28 19:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-28 19:20 - 2020-09-28 15:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-28 18:51 - 2019-11-23 14:19 - 000028272 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2022-07-28 18:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-27 19:02 - 2021-12-11 18:34 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3989596194-3478247091-1364011421-1001
2022-07-27 19:02 - 2020-09-28 16:29 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3989596194-3478247091-1364011421-1001
2022-07-27 19:02 - 2020-09-28 16:01 - 000002423 _____ C:\Users\picho\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-27 18:24 - 2021-01-17 13:17 - 000000000 ____D C:\Users\picho\Desktop\marvel comics
2022-07-27 18:20 - 2020-09-28 16:29 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-07-27 18:20 - 2020-09-28 16:29 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-07-26 20:06 - 2021-10-09 12:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-07-26 20:03 - 2017-03-26 11:34 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-07-24 11:28 - 2016-03-23 13:19 - 000035223 _____ C:\Users\picho\Desktop\pas vus.txt
2022-07-24 11:27 - 2016-03-22 12:10 - 000000000 ____D C:\ProgramData\firebird
2022-07-20 21:16 - 2018-07-10 23:43 - 000000000 ____D C:\ProgramData\Packages
2022-07-13 21:55 - 2016-03-23 14:09 - 000000000 ____D C:\Users\picho\AppData\Roaming\vlc
2022-07-07 22:02 - 2021-11-06 21:14 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - picho
2022-07-07 22:02 - 2020-09-28 16:29 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-07-07 22:02 - 2020-09-28 16:29 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-07-07 22:02 - 2020-09-28 16:29 - 000003450 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2022-07-07 22:02 - 2020-09-28 16:29 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-07-07 22:02 - 2020-09-28 16:29 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2022-07-07 22:02 - 2020-09-28 16:29 - 000002340 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2022-07-07 22:02 - 2020-09-28 16:29 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2022-07-07 21:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-07-07 20:21 - 2016-03-22 19:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-07-07 20:20 - 2016-03-22 18:59 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers ========

2016-03-22 11:38 - 2019-11-23 11:00 - 000000165 _____ () C:\Users\picho\AppData\Roaming\sp_data.sys

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================