Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Véro (administrateur) sur VÉRO-PC (ASUSTeK Computer Inc. K50IE) (20-09-2022 13:06:00)
Exécuté depuis C:\Users\Véro\Desktop
Profils chargés: Véro
Plate-forme: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: IE
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Boingo Wireless -> Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google) C:\Users\Véro\AppData\Local\Google\Chrome\User Data\SwReporter\90.261.200\software_reporter_tool.exe <4>
(explorer.exe ->) (AlcorMicro Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(explorer.exe ->) (eCareme Technologies, Inc. -> ) C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
(explorer.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <42>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(explorer.exe ->) (SRS Labs, Inc -> SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(FBAgent.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(FBAgent.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
(FBAgent.exe ->) (CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(FBAgent.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(services.exe ->) (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\SysWOW64\nvSCPAPISvr.exe
(svchost.exe ->) (ASUSTeK) [Fichier non signé] C:\Windows\SysWOW64\ACEngSvr.exe
(taskeng.exe ->) () [Fichier non signé] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(taskeng.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(taskeng.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
(taskeng.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(taskeng.exe ->) (ATK) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] (eCareme Technologies, Inc. -> )
HKLM\...\Run: [NvCplDaemon] => C:\Windows\system32\NvCpl.dll [16399976 2009-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [621440 2009-09-30] (ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-02] (AlcorMicro Co., Ltd.) [Fichier non signé]
HKLM\...\Run: [Setwallpaper] => c:\programdata\SetWallpaper.cmd (Pas de fichier)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui (Pas de fichier)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Boingo Wi-Fi] => C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-08-20] () [Fichier non signé]
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6998656 2009-10-27] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2009-08-20] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [Vidéo Futur] => C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe [954472 2009-06-11] (glow entertainment group -> Glowria) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2121978954-1636498572-149131101-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent (Pas de fichier)
HKU\S-1-5-21-2121978954-1636498572-149131101-1000\...\MountPoints2: {633c8be3-07eb-11e6-b9ab-20cf30407f7d} - F:\HTC_Sync_Manager_PC.exe
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\system32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-07-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM\Software\...\Authentication\Credential Providers: [{2AD920F6-D745-4d8b-9526-619171C2CC4D}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Providers: [{455BD3EC-20A5-44c3-8D77-396909825B5E}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{120495C2-9E38-48a2-A08B-C302F7487628}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Fichier non signé]
IFEO\cliconfg.exe: [VerifierDlls] Hibiki.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2010-08-20]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\hpoddt01.exe.lnk [2012-11-07]
ShortcutTarget: hpoddt01.exe.lnk -> C:\Program Files (x86)\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2010-08-20]
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (SRS Labs, Inc -> Acresso Software Inc.)
Startup: C:\Users\Véro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk [2018-04-22]
ShortcutTarget: OpenOffice.org 2.0.lnk -> I:\Program Files\OpenOffice.org 2.0\program\quickstart.exe (Pas de fichier)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1F24765D-7B35-4991-B043-7AEFA00D652D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Pas de fichier)
Task: {38D388E0-BFD7-4C86-829F-575428EF46EF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe /from_scheduler:1 (Pas de fichier)
Task: {3D98E9CB-9337-4560-A592-EE36EBA8C2CB} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat [0 2018-04-20] () <==== ATTENTION [zéro octet Fichier/Dossier] <==== ATTENTION
Task: {530D063B-4EF7-48D9-BA75-276DBA5B7A06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-12] (Google Inc -> Google Inc.)
Task: {59C000B0-9B5C-489F-BC17-3E843F0FEE05} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720 2009-07-31] (ASUSTeK Computer Inc. -> ASUS)
Task: {69CC7F95-983C-450F-BCBA-0410865C66BC} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888 2009-11-24] (ASUSTeK Computer Inc. -> )
Task: {82AA5933-05C9-40CB-8B68-8E5D9199430C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Pas de fichier)
Task: {857BAB39-8B1D-4F21-B785-1F92665D713F} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768 2007-11-30] (ASUSTeK Computer Inc. -> )
Task: {8969153C-0783-4509-B8E8-F7C985888F14} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [270016 2016-07-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A9A695D-6162-45D5-B2A1-E7B8ABDDC5F3} - System32\Tasks\{6CB8051B-3370-4248-A36C-2843CBDA4719} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\
Task: {92B306FA-2261-4025-BA08-6FAB6387E716} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {A46DE647-F460-4774-B4AA-803BE2E71AD0} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service"
Task: {A46DE647-F460-4774-B4AA-803BE2E71AD0} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service"
Task: {B29B77A6-520B-4C27-A59D-AB6071CA067D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-12] (Google Inc -> Google Inc.)
Task: {BAD4DEEA-8A96-4128-8591-49D31EDFDA7D} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task
Task: {BCCEF98E-DC2D-4E2F-8132-5C242A9DCC5A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (Pas de fichier)
Task: {C8891217-B184-42AD-9399-ADB638F330F5} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2009-11-12] () [Fichier non signé]
Task: {D2E77102-3079-4601-8CE0-24A3A53004FA} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {F6259748-3C51-413F-8E5F-CB63E4ED22BC} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [684544 2009-07-23] (ATK) [Fichier non signé]

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{922126D2-A14C-48B6-B562-E785122A784D}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{B51F3218-6233-4000-872E-29717F3292C9}: [DhcpNameServer] 212.27.40.240 212.27.40.241

FireFox:
========
FF DefaultProfile: x70s8sfy.default
FF ProfilePath: C:\Users\Véro\AppData\Roaming\Mozilla\Firefox\Profiles\x70s8sfy.default [2022-09-20]
FF Homepage: Mozilla\Firefox\Profiles\x70s8sfy.default -> hxxps://www.google.fr/
FF Session Restore: Mozilla\Firefox\Profiles\x70s8sfy.default -> est activé.
FF HomepageOverride: Mozilla\Firefox\Profiles\x70s8sfy.default -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (cacaoweb) - C:\Users\Véro\AppData\Roaming\Mozilla\Firefox\Profiles\x70s8sfy.default\Extensions\cacaoweb@cacaoweb.org [2017-02-19] [] [non signé]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Véro\AppData\Roaming\Mozilla\Firefox\Profiles\x70s8sfy.default\Extensions\sp@avast.com.xpi [2020-07-14]
FF Extension: (Avast Online Security) - C:\Users\Véro\AppData\Roaming\Mozilla\Firefox\Profiles\x70s8sfy.default\Extensions\wrc@avast.com.xpi [2020-07-14]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [Pas de fichier]
FF Plugin-x32: @glowria.fr/FireVMGate -> C:\Program Files (x86)\Common Files\Glowria\npFireVMGate.dll [2009-03-30] ( Glowria) [Fichier non signé]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default [2022-09-20]
CHR Extension: (Slides) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Docs) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-28]
CHR Extension: (YouTube) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-12]
CHR Extension: (Sheets) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-26]
CHR Extension: (Gmail) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-18]
CHR Extension: (Chrome Media Router) - C:\Users\Véro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2022-04-15]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [270016 2016-07-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [Fichier non signé]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 Stereo Service; C:\Windows\SysWOW64\nvSCPAPISvr.exe [239720 2009-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S0 AFS; C:\Windows\SysWow64\Drivers\AFS.sys [77004 2012-11-07] (Oak Technology Inc.) [Fichier non signé]
S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [44032 2009-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1542656 2009-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [117760 2009-10-15] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Research In Motion Limited)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1799680 2009-08-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 MpKslad1f5833; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA6CCCD2-619E-4560-B839-9ECD0224A056}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-20 13:06 - 2022-09-20 13:07 - 000021874 _____ C:\Users\Véro\Desktop\FRST.txt
2022-09-20 13:05 - 2022-09-20 13:06 - 000000000 ____D C:\FRST
2022-09-20 13:02 - 2022-09-20 13:03 - 002371072 _____ (Farbar) C:\Users\Véro\Desktop\FRST64.exe
2022-09-18 10:49 - 2022-09-18 10:49 - 000000000 ____D C:\Users\Véro\Desktop\2022-09-18 doc CNE2
2022-09-18 10:47 - 2022-09-18 10:47 - 000000000 ____D C:\Users\Véro\Desktop\2022-09-18 doc CNE

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-09-20 13:05 - 2009-07-14 06:45 - 000022592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-09-20 13:05 - 2009-07-14 06:45 - 000022592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-09-20 12:57 - 2017-02-12 17:36 - 000000000 ____D C:\Users\Véro\AppData\LocalLow\Mozilla
2022-09-20 12:56 - 2020-07-14 20:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-09-20 12:43 - 2010-08-20 08:31 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-20 12:43 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-19 19:42 - 2013-08-17 08:13 - 000000000 ____D C:\Windows\system32\MRT
2022-09-19 19:42 - 2012-10-20 14:36 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-09-19 19:38 - 2012-10-21 07:34 - 000001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2022-09-18 10:24 - 2012-10-20 13:00 - 000000000 ____D C:\Users\Véro

==================== Fichiers à la racine de certains dossiers ========

2012-12-20 20:24 - 2012-12-20 20:24 - 000000043 _____ () C:\Users\Véro\AppData\Roaming\stats.txt
2012-10-21 09:14 - 2012-10-21 09:14 - 000003584 _____ () C:\Users\Véro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-01-29 14:07 - 2019-01-29 14:07 - 000000000 _____ () C:\Users\Véro\AppData\Local\{DA297D95-DA8C-49AD-995B-1005579811C1}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2022-08-14 12:33
==================== Fin de FRST.txt ========================