Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-04-2022 01
Exécuté par Christiane (administrateur) sur CHRISTIANE-PC (Acer Aspire 7736) (02-05-2022 20:54:42)
Exécuté depuis C:\Users\Christiane\Desktop
Profils chargés: Christiane
Plate-forme: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files (x86)\Avira\Antivirus\avguard.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe
(C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(CyberLink -> Acer Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(explorer.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (SONIX TECHNOLOGY CO. , LTD -> ) C:\Windows\PLFSetI.exe
(NewTech Infosystems, Inc -> NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(services.exe ->) (Acer Incorporated -> Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(services.exe ->) (NewTech Infosystems, Inc -> NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(services.exe ->) (NewTech Infosystems, Inc -> NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(taskeng.exe ->) (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8060960 2009-08-06] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-11-25] (SONIX TECHNOLOGY CO. , LTD -> )
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [818720 2010-02-26] (Acer Incorporated -> Acer Incorporated)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [PlayMovie] => C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480 2010-01-18] (CyberLink -> Acer Corp.)
HKLM-x32\...\Run: [NeroFilterCheck] => C:\Windows\SysWOW64\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh) [Fichier non signé]
HKLM-x32\...\Run: [Microsoft Default Manager] => C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-29] (NewTech Infosystems, Inc -> NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112 2009-10-29] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4071522075-2442597929-1746449056-1000\...\Run: [] => [X]
HKLM\...\Windows x64\Print Processors\Epson Inkjet: C:\Windows\System32\spool\prtprocs\x64\EP0NPP01.DLL [38912 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\Windows\system32\EP0SLM01.DLL [77824 2009-07-14] (Microsoft Windows -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\101.1.38.109\Installer\chrmstp.exe [2022-04-27] (Brave Software, Inc. -> Brave Software, Inc.)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00B59F7D-1529-4CEF-9F80-F09189BBF265} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29862168 2022-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {02EC61D9-5AE0-46CD-9B99-53A36ED64CB4} - System32\Tasks\{FE351440-81DC-4F3F-84A8-ABF673944E78} => C:\Windows\system32\pcalua.exe -a "C:\Programmes divers\ZHPFix\ZHPhep.exe" -d "C:\Programmes divers\ZHPFix"
Task: {16C718AD-AAD5-4663-BE6F-993FDC127A8C} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [237216 2021-11-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {22843947-5E68-41A8-872F-C91E3ED12D0F} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1673272 2021-11-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {40E5D188-A8DA-4AAD-8E52-96FF3F0589B3} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [55808 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Task: {B996409F-AE7F-445F-8328-99A2A64C9B15} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2651216 2021-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{292B3F29-1954-452B-B8EE-6DC0D4D86757}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Edge:
=======
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF DefaultProfile: 7n2abjxo.default-1651387772045
FF ProfilePath: C:\Users\Christiane\AppData\Roaming\Mozilla\Firefox\Profiles\7n2abjxo.default-1651387772045 [2022-05-02]
FF Homepage: Mozilla\Firefox\Profiles\7n2abjxo.default-1651387772045 -> hxxps://fr.audiofanzine.com/forums/101255/
FF Extension: (uBlock Origin) - C:\Users\Christiane\AppData\Roaming\Mozilla\Firefox\Profiles\7n2abjxo.default-1651387772045\Extensions\uBlock0@raymondhill.net.xpi [2022-05-01]
FF HKLM-x32\...\Firefox\Extensions: [msntoolbar@msn.com] - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox
FF Extension: (Bing Bar) - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\Firefox [2010-11-25] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension
FF Extension: (Search Helper Extension) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension [2010-11-25] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension
FF Extension: (Default Manager) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2010-11-25] [] [non signé]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpWinExt,version=5.0 -> C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin HKU\S-1-5-21-4071522075-2442597929-1746449056-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Christiane\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl -> Skype Limited)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

Brave:
=======
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-04-30]
BRA Extension: (Brave NTP background images) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-04-18]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-04-18]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-04-30]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-04-30]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-04-18]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-04-18]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2022-04-30]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Christiane\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-04-30]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agr64svc.exe [16896 2009-03-28] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208432 2021-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484904 2021-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484904 2021-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [575776 2021-02-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989160 2021-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [275320 2021-11-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [273536 2021-11-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-04-18] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [89920 2009-06-10] (Microsoft Corporation -> Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [158912 2019-03-28] (Microsoft Dynamic Code Publisher -> Microsoft Corporation)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 kpm_launch_service; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [31744 2009-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Google Inc)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [222984 2021-03-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [177112 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 cdrombus; C:\Windows\System32\Drivers\cdrombus.sys [25088 2012-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
S3 L1E; C:\Windows\System32\DRIVERS\L1E62x64.sys [54272 2009-06-20] (Microsoft Windows -> Atheros Communications, Inc.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-02 20:54 - 2022-05-02 20:56 - 000019570 _____ C:\Users\Christiane\Desktop\FRST.txt
2022-05-01 09:47 - 2022-05-01 09:47 - 000270236 _____ C:\Users\Christiane\Desktop\ZHPDiag.txt
2022-04-30 19:30 - 2022-04-30 19:30 - 000003232 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2022-04-30 19:23 - 2022-04-30 19:23 - 000000000 ____D C:\Windows\SysWOW64\ncp
2022-04-30 18:26 - 2022-04-30 18:26 - 000000000 ____D C:\Users\Public\Security Sessions
2022-04-30 18:23 - 2022-04-30 18:23 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2022-04-30 18:23 - 2022-04-30 18:23 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2022-04-30 18:23 - 2021-03-25 18:05 - 000222984 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2022-04-30 18:23 - 2021-02-09 19:03 - 000177112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2022-04-30 18:23 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2022-04-30 18:23 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2022-04-30 18:23 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2022-04-30 18:23 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2022-04-30 18:19 - 2022-04-30 18:26 - 000000000 ____D C:\Users\Christiane\AppData\Local\Avira
2022-04-30 18:19 - 2022-04-30 18:19 - 000003674 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate
2022-04-30 18:19 - 2022-04-30 18:19 - 000000000 ____D C:\Users\Public\Speedup Sessions
2022-04-30 18:18 - 2022-04-30 19:30 - 000003532 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2022-04-30 18:18 - 2022-04-30 19:30 - 000002648 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2022-04-30 18:18 - 2022-04-30 18:18 - 000000000 ____D C:\Windows\SysWOW64\statReporter
2022-04-30 18:17 - 2022-04-30 19:30 - 000001009 _____ C:\Users\Public\Desktop\Avira.lnk
2022-04-30 18:17 - 2022-04-30 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2022-04-30 17:33 - 2022-04-30 17:33 - 005954888 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christiane\Downloads\avira_fr_sptl1_3d2aff85bd16945a__phpws.exe
2022-04-30 17:18 - 2022-04-30 18:59 - 000002793 _____ C:\Users\Christiane\Desktop\ZHPCleaner (S).txt
2022-04-29 18:22 - 2022-04-29 18:22 - 003911819 _____ C:\Users\Christiane\Downloads\le porteur d'eau africain.mp4
2022-04-29 18:20 - 2022-04-29 18:20 - 010658551 _____ C:\Users\Christiane\Downloads\VID-20210613-WA0003 (1).mp4
2022-04-29 18:15 - 2022-04-29 18:15 - 007834112 _____ C:\Users\Christiane\Downloads\Antarctica openbaring.pps
2022-04-29 18:13 - 2022-04-29 18:13 - 012404155 _____ C:\Users\Christiane\Downloads\IRENA SENDLER.mp4
2022-04-26 18:54 - 2022-04-26 18:54 - 006505984 _____ C:\Users\Christiane\Downloads\Radium-girls-des-femmes-lumineuses(1).pps
2022-04-24 20:48 - 2022-05-01 09:10 - 000031980 _____ C:\Users\Christiane\Desktop\Fixlog.txt
2022-04-24 12:48 - 2022-04-24 12:48 - 005074756 _____ C:\Users\Christiane\Downloads\Les gendarmes en Belgique1(1).mp4
2022-04-24 09:08 - 2022-04-24 09:08 - 005074756 _____ C:\Users\Christiane\Downloads\Les gendarmes en Belgique1.mp4
2022-04-23 14:53 - 2022-04-23 14:53 - 014143976 _____ (Kaspersky Lab ZAO) C:\Users\Christiane\Downloads\kavremvr.exe
2022-04-23 12:54 - 2022-04-23 12:54 - 008069269 _____ C:\Users\Christiane\Downloads\lardeche-vue-par-jean-ferrat.mp4
2022-04-21 19:12 - 2022-04-21 19:12 - 009789899 _____ C:\Users\Christiane\Downloads\VID-20190607-WA0045.mp4
2022-04-21 19:09 - 2022-04-21 19:09 - 002691584 _____ C:\Users\Christiane\Downloads\Pyr.Or. Pays Basque 1_01.pps
2022-04-21 19:07 - 2022-04-21 19:07 - 010335943 _____ C:\Users\Christiane\Downloads\Hallelujah_au_bord_du_Titicaca_1_.mp4
2022-04-21 19:03 - 2022-04-21 19:03 - 007483439 _____ C:\Users\Christiane\Downloads\HARMONICA GUILLAUME TELL.mp4
2022-04-21 07:28 - 2022-04-21 07:28 - 000001391 _____ C:\Users\Christiane\Downloads\isrgrootx1.der
2022-04-20 19:07 - 2022-04-20 19:07 - 003295944 _____ (Nicolas Coolman) C:\Users\Christiane\Desktop\ZHPCleaner.exe
2022-04-20 18:49 - 2022-04-20 18:49 - 002366464 _____ (Farbar) C:\Users\Christiane\Desktop\FRST64.exe
2022-04-18 22:14 - 2022-05-02 20:55 - 000000000 ____D C:\FRST
2022-04-18 21:44 - 2022-04-19 21:13 - 000000000 ____D C:\Users\Christiane\AppData\Local\ZHP
2022-04-18 21:43 - 2022-04-18 21:43 - 003482312 _____ (Nicolas Coolman) C:\Users\Christiane\Desktop\ZHPSuite.exe
2022-04-18 18:31 - 2022-04-18 18:31 - 000003160 _____ C:\Windows\system32\Tasks\{FE351440-81DC-4F3F-84A8-ABF673944E78}
2022-04-18 18:26 - 2022-04-18 18:26 - 003521467 _____ (Nicolas Coolman ) C:\Users\Christiane\Downloads\ZHPFix.exe
2022-04-18 18:12 - 2022-04-18 18:12 - 000000000 ____D C:\Program Files\BraveSoftware
2022-04-18 18:08 - 2022-04-18 18:08 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2022-04-18 18:07 - 2022-04-18 18:12 - 000000000 ____D C:\Users\Christiane\AppData\Local\BraveSoftware
2022-04-18 18:05 - 2022-04-18 18:05 - 001293840 _____ (BraveSoftware Inc.) C:\Users\Christiane\Downloads\BraveBrowserSetup-CLU884.exe
2022-04-18 13:02 - 2022-04-28 20:44 - 000003590 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-18 13:02 - 2022-04-28 20:44 - 000003462 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-18 12:52 - 2022-04-18 12:52 - 001481400 _____ (Orange) C:\Users\Christiane\Downloads\Orange-assistant-page-de-demarrage.exe
2022-04-18 12:44 - 2022-04-20 18:52 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-18 12:44 - 2022-04-18 12:54 - 000000000 ____D C:\Users\Christiane\AppData\Local\Google
2022-04-18 12:44 - 2022-04-18 12:44 - 001343320 _____ (Google LLC) C:\Users\Christiane\Downloads\ChromeSetup(1).exe
2022-04-18 12:43 - 2022-04-18 12:43 - 001343320 _____ (Google LLC) C:\Users\Christiane\Downloads\ChromeSetup.exe
2022-04-18 08:49 - 2022-04-18 08:49 - 005306938 _____ C:\Users\Christiane\Downloads\VID-20220126-WA0000.mp4
2022-04-18 08:48 - 2022-04-18 08:48 - 002099213 _____ C:\Users\Christiane\Downloads\VID-20220324-WA0002.mp4
2022-04-15 17:28 - 2022-04-15 17:28 - 013413599 _____ C:\Users\Christiane\Downloads\VIDEO-2020-08-18-09-31-491.mp4
2022-04-15 17:26 - 2022-04-15 17:26 - 002304461 _____ C:\Users\Christiane\Downloads\Le gardien de but.mp4
2022-04-14 19:18 - 2022-04-24 20:48 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-12 19:12 - 2022-04-12 19:12 - 004202036 _____ C:\Users\Christiane\Downloads\RECYCLAGE_EN_AFRIQUE_._._sv_111.mp4
2022-04-10 08:02 - 2022-04-10 08:02 - 011478398 _____ C:\Users\Christiane\Downloads\statue_de_la_liberte.mp4
2022-04-05 19:24 - 2022-04-05 19:24 - 000603832 _____ C:\Users\Christiane\Downloads\macron va parler.mp4
2022-04-05 18:54 - 2022-04-05 18:54 - 006825004 _____ C:\Users\Christiane\Downloads\Statues inédites (H.Ley).mp4
2022-04-05 18:52 - 2022-04-05 18:52 - 005426982 _____ C:\Users\Christiane\Downloads\en manque de boulot.mp4
2022-04-05 18:48 - 2022-04-05 18:48 - 006585108 _____ C:\Users\Christiane\Downloads\acces_interdit_aux_femmes____1111-1111_01.mp4
2022-04-03 13:08 - 2022-04-03 13:08 - 006564864 _____ C:\Users\Christiane\Downloads\VISITAMOS_EL_KREMLIN.pps

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-05-02 20:48 - 2010-11-25 20:58 - 000000000 ____D C:\ProgramData\NVIDIA
2022-05-02 20:48 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-05-02 20:48 - 2009-07-14 06:45 - 000025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-05-02 20:48 - 2009-07-14 06:45 - 000025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-05-02 07:25 - 2016-12-04 19:20 - 000000000 ____D C:\Users\Christiane\AppData\LocalLow\Mozilla
2022-05-02 07:19 - 2011-03-22 16:02 - 000003976 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{5FE46448-4A2F-4820-A8FC-EDC3A63EC373}
2022-05-02 07:15 - 2022-02-12 07:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-05-01 09:47 - 2016-12-24 11:43 - 000000000 ____D C:\Users\Christiane\AppData\Roaming\ZHP
2022-05-01 08:49 - 2017-12-02 09:54 - 000000000 ____D C:\Users\Christiane\Desktop\Anciennes données de Firefox
2022-04-30 20:52 - 2010-11-26 05:48 - 000747910 _____ C:\Windows\system32\perfh00C.dat
2022-04-30 20:52 - 2010-11-26 05:48 - 000150402 _____ C:\Windows\system32\perfc00C.dat
2022-04-30 20:52 - 2009-07-14 07:13 - 001669656 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-30 20:52 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2022-04-30 19:30 - 2014-12-24 17:39 - 000000000 ____D C:\ProgramData\Avira
2022-04-30 19:25 - 2009-07-14 06:45 - 000414928 _____ C:\Windows\system32\FNTCACHE.DAT
2022-04-30 18:25 - 2011-02-09 15:02 - 000108848 _____ C:\Users\Christiane\AppData\Local\GDIPFONTCACHEV1.DAT
2022-04-30 18:22 - 2014-12-24 17:39 - 000000000 ____D C:\Program Files (x86)\Avira
2022-04-30 18:08 - 2011-02-11 02:36 - 001644724 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2022-04-30 18:00 - 2013-06-10 21:06 - 000000000 ____D C:\Programmes divers
2022-04-30 17:54 - 2020-04-10 07:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2022-04-30 17:48 - 2020-04-10 07:17 - 000000000 ____D C:\Program Files\Common Files\AV
2022-04-30 17:40 - 2019-12-27 14:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
2022-04-30 17:40 - 2018-04-15 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8
2022-04-30 17:40 - 2018-01-21 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2022-04-30 17:40 - 2017-11-03 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSC Service Utility
2022-04-30 17:40 - 2014-11-23 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-04-30 17:40 - 2013-06-10 21:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2022-04-30 17:40 - 2011-02-10 00:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-04-30 17:40 - 2010-11-25 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2022-04-30 17:40 - 2010-11-25 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe
2022-04-30 17:40 - 2010-11-25 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
2022-04-30 17:40 - 2010-11-25 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2022-04-30 17:40 - 2010-11-25 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye webcam
2022-04-30 17:40 - 2010-11-25 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-04-30 17:40 - 2010-09-23 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec
2022-04-30 17:40 - 2010-09-23 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2022-04-30 17:40 - 2010-09-23 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5
2022-04-30 17:40 - 2010-09-23 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
2022-04-30 17:40 - 2010-09-23 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2022-04-30 17:40 - 2010-09-23 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSobi v2
2022-04-30 17:40 - 2010-09-23 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2022-04-30 17:40 - 2010-09-23 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2022-04-30 17:40 - 2009-07-14 07:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2022-04-30 17:39 - 2020-04-10 07:05 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2022-04-25 22:15 - 2013-06-10 21:16 - 000000132 _____ C:\Windows\winamp.ini
2022-04-24 20:48 - 2016-10-21 12:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-04-24 20:48 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2022-04-14 19:18 - 2020-10-05 22:21 - 000003530 _____ C:\Windows\wininit.ini

==================== Fichiers à la racine de certains dossiers ========

2011-10-17 18:32 - 2011-10-17 18:33 - 000033134 _____ () C:\Users\Christiane\AppData\Roaming\UserTile.png
2013-08-09 18:12 - 2017-05-09 20:53 - 000007168 _____ () C:\Users\Christiane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2022-04-13 19:04
==================== Fin de FRST.txt ========================