Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-05-2023 01
Exécuté par Laurence (administrateur) sur LAURENCE (ASUSTeK COMPUTER INC. UX305FA) (16-05-2023 08:37:01)
Exécuté depuis C:\Users\Laurence.000\Desktop\FRST64.exe
Profils chargés: Laurence
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2728 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCopyAccelerator.exe
(C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
(services.exe ->) (WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Check Device\ASUS_Check.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [920280 2015-04-17] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-05-02] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3986915163-2735850528-662427447-1001\...\Run: [MicrosoftEdgeAutoLaunch_0507EDABBC16A8E0F7B08034E7DE7B9B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152256 2023-05-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.93\Installer\chrmstp.exe [2023-05-11] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00123F0E-EFAD-4D0E-B089-4E6C0BA5D74E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-10] (Google Inc -> Google Inc.)
Task: {09D6FCAB-F351-4CFF-B38A-31AF483A758B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {1514BB92-7408-47B3-B789-4F7B50DB5284} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1E664562-3941-4B19-8548-9C82611BC9C1} - System32\Tasks\ASUS_Check => C:\Program Files (x86)\ASUS\ASUS Check Device\ASUS_Check.exe [66672 2014-10-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {3321608F-9F81-4BC8-AA25-F0FC7EDB803A} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-18] (ASUSTeK Computer Inc. -> AsusTek)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exejoin
Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424 2014-09-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
Task: {3876821E-ED6C-4095-A1AC-C423B61C7B7B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {3A660E51-88D9-4AE5-867D-3349C3DE2A69} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {3F754E8D-97B0-486A-AAED-B5EF9D56690D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {42318525-B7FD-4CE1-90B2-DDECC5A70DD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {44AE94C4-DE5A-4B3A-9B85-C75397DA2C36} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {46A9C06B-1FE1-45F9-A44B-DE74147601B7} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [676768 2023-05-15] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {586CC733-D114-4354-9084-CF6457AA20EA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-15] (Mozilla Corporation -> Mozilla Foundation)
Task: {5976D4D9-F0EA-4468-8CD8-D5B140E3BE40} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {5F2EB2DB-46AB-43F3-AA3C-B13CA3666BB0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {5FDD8438-FE84-4CAD-972E-43F42E8D537A} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392 2014-09-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {61FF10F9-C563-4ABD-A1A7-EC3E8A1442D5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {6227DD33-77E3-434B-8D20-0451E4DD8501} - \WPD\SqmUpload_S-1-5-21-3986915163-2735850528-662427447-1001 -> Pas de fichier <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7692EEBE-5BC1-4ACB-B1FF-97C51B59D071} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [149712 2021-10-14] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {7977B142-07AB-4285-B55C-62CFDE4D966E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {91A5525F-EB8A-4621-AB5C-1231FDDF9B1E} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {921368EF-9442-42D4-9251-8F9FB4467B65} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [62536 2014-09-11] (ASUSTeK Computer Inc. -> ASUS)
Task: {93914FA2-5C7F-4335-B0D5-DC3ED9A8965B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F975267-1BD5-4779-8870-370716900B68} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {A8684F84-1B8D-42DF-86C0-AA634525F95C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {B3A12CC3-9313-4148-BAE1-4B0275801A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-10] (Google Inc -> Google Inc.)
Task: {B5D21AF2-1F36-450B-971E-ACE78B595288} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C78E6A90-9787-4B24-863B-8F2D73D3E3C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CD165CDD-E1B2-437B-B7FE-A40D8698E661} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {DAFC0844-6621-48CB-B1F4-1D1CBE152C1E} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [120632 2014-06-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {E803C01D-AD82-48C1-8FEA-B1E61D6DBF6D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9428B6C-DEA5-4FFF-97EC-D9360306B786} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9B90C87-362E-4B43-9BC7-607AC3D0A7C0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {EA0F4736-EF9D-4185-AFF8-DFB0C7624334} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FEE4C230-5428-4DE8-929E-16768B903DC1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {FF7DF8EA-FB7F-4107-90D4-CAEDD192DEA6} - System32\Tasks\GoogleUpdateTaskMachineUA1d04528a80ef8eb => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-10] (Google Inc -> Google Inc.)
Task: {FFBCB059-1889-4383-BCDF-B6F51BB62EC2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{525befbc-c839-4151-8aea-0e0032b3ecff}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Laurence.000\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-16]
Edge Notifications: Default -> hxxps://www.photoweb.fr
Edge Extension: (Edge relevant text changes) - C:\Users\Laurence.000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-15]

FireFox:
========
FF DefaultProfile: f48wzrnz.default-1684181631268
FF ProfilePath: C:\Users\Laurence.000\AppData\Roaming\Mozilla\Firefox\Profiles\f48wzrnz.default-1684181631268 [2023-05-16]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN -> VideoLAN) [Fichier non signé]
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN -> VideoLAN) [Fichier non signé]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\Default [2023-05-16]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.duolingo.com; hxxps://www.maisonsdumonde.com; hxxps://www.oui.sncf
CHR Extension: (Google Docs hors connexion) - C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-29]
CHR Extension: (Skype) - C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2022-05-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10]
CHR Profile: C:\Users\Laurence.000\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-15]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-05-02] (Dropbox, Inc -> Dropbox, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent Inc -> WildTangent)
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2019-06-26] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-08] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-18] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64.sys [1536528 2016-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-05-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-05-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-08] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-16 08:37 - 2023-05-16 08:38 - 000024852 ____C C:\Users\Laurence.000\Desktop\FRST.txt
2023-05-16 08:36 - 2023-05-16 08:37 - 000000000 ____D C:\FRST
2023-05-16 08:25 - 2023-05-16 08:25 - 002382848 _____ (Farbar) C:\Users\Laurence.000\Desktop\FRST64.exe
2023-05-15 22:14 - 2023-05-15 22:14 - 000000000 ___DC C:\Users\Laurence.000\Desktop\Anciennes données de Firefox
2023-05-15 21:50 - 2023-05-15 21:50 - 000000000 ___HD C:\$WinREAgent
2023-05-15 21:41 - 2023-05-15 21:41 - 000002619 _____ C:\Users\Public\Desktop\PatchCleaner.lnk
2023-05-15 21:41 - 2023-05-15 21:41 - 000000000 ____D C:\Users\Laurence.000\AppData\Local\HomeDev
2023-05-15 21:41 - 2023-05-15 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeDev
2023-05-15 21:41 - 2023-05-15 21:41 - 000000000 ____D C:\Program Files (x86)\HomeDev
2023-05-15 20:52 - 2023-05-15 20:52 - 000007605 _____ C:\Users\Laurence.000\AppData\Local\Resmon.ResmonCfg
2023-05-15 16:22 - 2023-05-15 22:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-05-14 22:02 - 2023-05-14 22:02 - 000000000 ____D C:\WINDOWS\Panther
2023-05-11 17:12 - 2023-05-11 17:12 - 000906993 _____ C:\Users\Laurence.000\Downloads\Contrat Hostnfly.pdf
2023-05-11 16:46 - 2023-05-11 16:46 - 000059410 _____ C:\Users\Laurence.000\Downloads\Devis_cataracte-pour-un-oeil.jpeg
2023-05-11 16:46 - 2023-05-11 16:46 - 000057143 _____ C:\Users\Laurence.000\Downloads\Autres_frais_operatoires.jpeg
2023-05-11 16:46 - 2023-05-11 16:46 - 000055336 _____ C:\Users\Laurence.000\Downloads\Devis_implant.jpeg
2023-05-11 16:46 - 2023-05-11 16:46 - 000055098 _____ C:\Users\Laurence.000\Downloads\Convocation_pour_les-deux-interventions.jpeg
2023-05-10 20:19 - 2023-05-10 20:19 - 000077110 _____ C:\Users\Laurence.000\Downloads\Bouyguestelecom_Facture_20230502.pdf
2023-05-08 19:41 - 2023-05-08 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-05-02 15:59 - 2023-05-02 15:59 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-05-16 08:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-05-16 08:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-05-16 08:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-05-16 08:19 - 2015-02-10 13:56 - 000000000 ____D C:\Program Files (x86)\Google
2023-05-16 08:18 - 2022-08-28 11:55 - 000000000 ____D C:\Users\Laurence.000\AppData\Roaming\DropboxElectron
2023-05-16 08:18 - 2020-11-11 15:45 - 000000000 ____D C:\Users\Laurence.000\AppData\Local\Dropbox
2023-05-16 08:17 - 2015-10-30 23:51 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2023-05-16 08:16 - 2016-09-30 19:09 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-05-15 22:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-15 22:14 - 2021-10-25 19:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-05-15 22:07 - 2021-04-02 02:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-05-15 21:00 - 2015-02-10 13:32 - 000000000 ___DC C:\Users\Laurence.000\AppData\Roaming\Microsoft\Word
2023-05-15 20:55 - 2015-02-10 16:13 - 000000000 ___DC C:\Users\Laurence.000\AppData\Roaming\Microsoft\Excel
2023-05-15 20:46 - 2020-03-30 10:25 - 000000000 ____D C:\Users\Laurence.000\AppData\Local\D3DSCache
2023-05-15 20:45 - 2022-02-15 21:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-05-15 20:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-05-15 20:26 - 2015-02-10 13:57 - 000001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-05-15 20:26 - 2015-02-10 13:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-05-15 18:03 - 2015-02-10 13:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2023-05-15 17:58 - 2015-02-15 13:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-15 17:44 - 2015-02-15 13:04 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-15 17:39 - 2021-04-02 03:07 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-15 17:39 - 2019-12-07 16:49 - 000794350 _____ C:\WINDOWS\system32\perfh00C.dat
2023-05-15 17:39 - 2019-12-07 16:49 - 000150464 _____ C:\WINDOWS\system32\perfc00C.dat
2023-05-15 17:32 - 2021-04-02 03:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-05-15 16:35 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-05-14 23:19 - 2022-02-21 18:21 - 000000000 ____D C:\Users\Laurence.000\AppData\Roaming\WhatsApp
2023-05-14 22:53 - 2022-02-21 18:21 - 000000000 ____D C:\Users\Laurence.000\AppData\Local\WhatsApp
2023-05-14 22:53 - 2015-02-09 22:33 - 000000000 __SDC C:\Users\Laurence.000\AppData\Roaming\Microsoft\Credentials
2023-05-14 22:08 - 2013-08-22 15:25 - 000000199 _____ C:\WINDOWS\win.ini
2023-05-14 22:02 - 2021-04-02 02:57 - 002253776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-14 22:02 - 2020-11-11 15:45 - 000001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2023-05-14 22:02 - 2020-11-11 15:45 - 000001204 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2023-05-14 22:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-05-14 22:01 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-14 22:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-14 22:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-14 22:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-14 22:01 - 2015-02-10 13:32 - 000000000 ___DC C:\Users\Laurence.000\AppData\Roaming\Microsoft\Office
2023-05-14 20:15 - 2016-11-27 00:45 - 000000000 ___DC C:\Users\Laurence.000\AppData\LocalLow\Mozilla
2023-05-14 19:57 - 2020-10-14 13:25 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-14 19:56 - 2018-01-23 00:08 - 000000000 ___DC C:\Users\Laurence.000\AppData\Local\Packages
2023-05-14 19:40 - 2020-11-09 14:50 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-05-14 19:40 - 2020-11-09 14:50 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-05-12 11:53 - 2021-12-14 00:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3986915163-2735850528-662427447-1001
2023-05-12 11:53 - 2021-04-02 03:10 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3986915163-2735850528-662427447-1001
2023-05-12 11:53 - 2021-04-02 03:01 - 000002440 ____C C:\Users\Laurence.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-05-10 18:19 - 2021-04-02 03:10 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-10 18:19 - 2021-04-02 03:10 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-05-08 19:53 - 2021-04-02 03:10 - 000004268 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2023-05-08 19:53 - 2021-04-02 03:10 - 000004036 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2023-05-08 19:46 - 2018-02-25 23:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-05-08 19:42 - 2018-10-22 12:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-04-28 23:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-04-24 23:48 - 2021-04-02 03:10 - 000003914 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d04528a80ef8eb
2023-04-24 23:48 - 2021-04-02 03:10 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-04-21 13:30 - 2020-04-28 18:57 - 000000000 ____D C:\Users\Laurence.000\AppData\Local\ElevatedDiagnostics

==================== Fichiers à la racine de certains dossiers ========

2015-02-09 22:33 - 2021-04-13 21:08 - 000000125 ____C () C:\Users\Laurence.000\AppData\Roaming\sp_data.sys
2023-05-15 20:52 - 2023-05-15 20:52 - 000007605 _____ () C:\Users\Laurence.000\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================