Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2021
Exécuté par mcear (administrateur) sur ASUSMIC (ASUSTeK COMPUTER INC. X756UVK) (04-10-2021 16:43:36)
Exécuté depuis C:\Users\mcear\Downloads
Profils chargés: mcear
Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avaya Inc. -> Avaya, Inc.) C:\Users\mcear\AppData\Local\Radvision\Conference Client\8.3.501.10\CUCore.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Corel Corporation -> ) [Fichier non signé] C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe
(Corel Corporation -> Corel Corporation) [Fichier non signé] C:\Program Files\WinZip\WinZip Smart Monitor\WinZipCompressionSmartMonitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <27>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <4>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dxgiadaptercache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\Temp\30B1A161-BD7A-41D5-8785-DC128D61373F\DismHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
Impossible d'accéder au processus -> AsusTPCenter.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [604496 2017-11-24] (Conexant Systems LLC -> Conexant Systems, Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1893312 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\FlowSync.exe [1397248 2018-09-17] (Polar Electro Oy) [Fichier non signé]
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\Run: [CUCore Agent] => C:\Users\mcear\AppData\Local\Radvision\Conference Client\8.3.501.10\ConfAgent.exe [140920 2020-03-27] (Avaya Inc. -> Avaya, Inc.)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\MountPoints2: {1fe5dc11-b162-11eb-bbf6-f0038c7e4608} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-09-30] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B11A214-4755-4500-9DBE-5C3552A3AEE9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {145796C9-366C-423B-85E2-52A56AC5FB91} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {24FECE1C-C66E-44EC-8855-186C4345FFD6} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1604256 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {2C1B9525-CF45-4E0E-A651-981D5DDCD21E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40844EB8-5D21-4412-853C-6AB50A545A5F} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {4B813C43-818A-4573-8623-6ACDCAA3D3CE} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2016-10-12] (ASUS) [Fichier non signé]
Task: {4DE786EE-3E7D-4A2D-8701-8D940083A9E1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1693632 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F608A46-EAEE-469F-AB03-0BDE8627BC3A} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5278E22E-0329-4C8F-8330-B400E567D612} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54799795-0DFC-4DBC-8868-78C17DA6231D} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {57D9E21C-E607-4BE8-8C91-8AAEB18FDA1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-16] (Google Inc -> Google LLC)
Task: {7B5A92F7-D213-4056-AAB2-466866B3BFAF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436672 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7BCC7036-8605-48D6-9CE0-4DB149054F2D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {80F8850F-9404-47C7-91EE-EF0F0F3F5E5C} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {847B3D58-3AAA-4FD1-94AE-064E7E3B3795} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1137C92-4DCC-4FE5-8620-DA7AAB1A6BC1} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2651056 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {B1667511-767F-4ADF-BC65-FFED66B5214F} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [233096 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {BBD36A71-A76B-44A9-8573-E02517F2C363} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [252872 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {C6B2ABCD-CC92-4AD8-83A8-3E5A129BADB6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1579296 2016-11-09] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {CE959A23-74DF-48C3-93DF-1CCEC8EED05C} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29851288 2021-10-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {D36C905F-EBF0-4605-853D-7B365C7B7C09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-16] (Google Inc -> Google LLC)
Task: {D8D78F67-9993-4930-9E21-3503F38D797F} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {F2FA5DD3-DF52-414A-B132-AFCCC086275D} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FC12409F-1F8D-4FAE-AA86-EAE1C8343FA8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [946112 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF9FAFEA-39B3-4C14-BA43-7BE47ED89F4D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-04-11] (ASUSTeK Computer Inc. -> AsusTek)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{13b6c841-0a3f-41e8-8191-7857a391a8ae}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ee1480f0-d46a-4343-b50a-d5221d2b8c20}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-04]
Edge Notifications: Default -> hxxps://funtoday.info; hxxps://onemacusa.net; hxxps://quicklisti.com; hxxps://tik-ttok.net
Edge Extension: (Avira Safe Shopping) - C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2021-10-03]
Edge Extension: (Avira Password Manager) - C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2021-10-03]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-04-15] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-4265913030-1843694007-3050595197-1001: @radvision.com/ConfClient -> C:\Users\mcear\AppData\Local\Radvision\Installer\1.5.5.1\npclientinstmgr.dll [2020-03-27] (Avaya Inc. -> Avaya, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default [2021-10-04]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.lameteoagricole.net
CHR Extension: (Slides) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-16]
CHR Extension: (Docs) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-16]
CHR Extension: (Google Drive) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-27]
CHR Extension: (YouTube) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-16]
CHR Extension: (Avira Password Manager) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-10-03]
CHR Extension: (Avira Safe Shopping) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-10-03]
CHR Extension: (WhatsGreen Multi Messenger) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmjnhdnlkkchaghdafniiihhjllomdcd [2020-08-12]
CHR Extension: (Sheets) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-30]
CHR Extension: (Protection Web Avira) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-10-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574672 2021-07-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989160 2021-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384480 2021-08-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [251184 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [952992 2021-04-15] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinZip Compression Smart Monitor Service; C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe [495872 2017-09-01] (Corel Corporation -> ) [Fichier non signé]
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [143856 2017-04-11] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207864 2021-07-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 GridinSoftInetSecurityDriver; C:\WINDOWS\system32\DRIVERS\gsInetSecurity.sys [107784 2021-09-21] (GridinSoft, LLC -> GridinSoft LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 TrojanKillerDriver; C:\WINDOWS\System32\DRIVERS\gtkdrv.sys [38216 2021-09-29] (GridinSoft, LLC -> GridinSoft LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl4fbc6b1d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{698B60F5-AF78-439B-AF31-E68B02718496}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-04 16:43 - 2021-10-04 16:47 - 000026692 _____ C:\Users\mcear\Downloads\FRST.txt
2021-10-04 16:42 - 2021-10-04 16:45 - 000000000 ____D C:\FRST
2021-10-04 16:41 - 2021-10-04 16:42 - 002308096 _____ (Farbar) C:\Users\mcear\Downloads\FRST64.exe
2021-10-04 16:39 - 2021-10-04 16:40 - 002019328 _____ (Farbar) C:\Users\mcear\Downloads\FRST.exe
2021-10-04 15:55 - 2021-10-04 15:55 - 000001123 _____ C:\Users\Public\Desktop\GridinSoft Anti-Malware.lnk
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\ProgramData\GridinSoft
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware
2021-10-04 15:53 - 2021-10-04 15:53 - 000989584 _____ (GridinSoft LLC) C:\Users\mcear\Downloads\install-antimalware-fix.exe
2021-10-04 14:40 - 2021-10-04 14:40 - 002527040 _____ (Wiper Software, UAB) C:\Users\mcear\Downloads\WiperSoft-installer.exe
2021-10-03 18:28 - 2021-10-03 18:28 - 000000000 ____D C:\Users\Public\Security Sessions
2021-10-03 18:07 - 2021-10-03 18:07 - 000003374 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2021-10-03 18:07 - 2021-10-03 18:07 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2021-10-03 18:06 - 2021-07-30 23:17 - 000207864 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2021-10-03 18:06 - 2021-06-25 14:59 - 000022848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
2021-10-03 18:06 - 2021-02-09 19:03 - 000199312 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2021-10-03 18:06 - 2019-06-07 15:09 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2021-10-03 17:59 - 2021-10-03 18:28 - 000000000 ____D C:\Users\mcear\AppData\Local\Avira
2021-10-03 17:58 - 2021-10-03 17:59 - 000000000 ____D C:\Users\Public\Speedup Sessions
2021-10-03 17:58 - 2021-10-03 17:58 - 000003760 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2021-10-03 17:57 - 2021-10-03 18:28 - 000000000 ____D C:\ProgramData\Avira
2021-10-03 17:57 - 2021-10-03 18:05 - 000000000 ____D C:\Program Files (x86)\Avira
2021-10-03 17:57 - 2021-10-03 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2021-10-03 17:57 - 2021-10-03 17:57 - 000003688 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2021-10-03 17:57 - 2021-10-03 17:57 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2021-10-03 17:57 - 2021-10-03 17:57 - 000002816 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray
2021-10-03 17:57 - 2021-10-03 17:57 - 000001156 _____ C:\Users\Public\Desktop\Avira.lnk
2021-10-03 17:55 - 2021-10-03 17:55 - 005901768 _____ (Avira Operations GmbH & Co. KG) C:\Users\mcear\Downloads\avira_fr_sptl1_786226954-1633276526__adwg-spotlightdiscfr1-current.exe
2021-09-29 21:33 - 2021-09-29 21:33 - 000038216 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gtkdrv.sys
2021-09-26 21:21 - 2021-09-26 21:21 - 002028754 _____ C:\Users\mcear\Downloads\Programme de marche nordique - Octobre 2021 - moni.nicaisse@gmail.com - Gmail.html
2021-09-26 21:21 - 2021-09-26 21:21 - 000000000 ____D C:\Users\mcear\Downloads\Programme de marche nordique - Octobre 2021 - moni.nicaisse@gmail.com - Gmail_files
2021-09-21 14:15 - 2021-09-21 14:15 - 000107784 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gsInetSecurity.sys
2021-09-16 09:13 - 2021-09-16 09:13 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-16 09:13 - 2021-09-16 09:13 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-16 09:12 - 2021-09-16 09:12 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-16 09:12 - 2021-09-16 09:12 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-16 09:12 - 2021-09-16 09:12 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-16 09:12 - 2021-09-16 09:12 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-16 09:12 - 2021-09-16 09:12 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-16 09:12 - 2021-09-16 09:12 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-16 09:12 - 2021-09-16 09:12 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-16 09:12 - 2021-09-16 09:12 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-16 09:12 - 2021-09-16 09:12 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 09:11 - 2021-09-16 09:11 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-16 09:11 - 2021-09-16 09:11 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-16 09:11 - 2021-09-16 09:11 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-16 09:10 - 2021-09-16 09:10 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-16 09:10 - 2021-09-16 09:10 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-16 09:10 - 2021-09-16 09:10 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-16 09:10 - 2021-09-16 09:10 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-16 09:10 - 2021-09-16 09:10 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-16 09:10 - 2021-09-16 09:10 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-16 08:28 - 2021-09-16 08:28 - 000000000 ___HD C:\$WinREAgent
2021-09-13 17:14 - 2021-09-13 17:14 - 003102665 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (4).pdf
2021-09-13 17:12 - 2021-09-13 17:12 - 003102673 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (3).pdf
2021-09-13 17:09 - 2021-09-13 17:09 - 000046139 _____ C:\Users\mcear\Downloads\Tickets_de_caisse.pdf
2021-09-13 08:33 - 2021-09-13 08:33 - 003102672 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (2).pdf
2021-09-12 21:23 - 2021-09-12 21:23 - 003102672 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (1).pdf
2021-09-12 21:19 - 2021-09-12 21:19 - 003102671 _____ C:\Users\mcear\Downloads\randonnee-porquerolles.pdf
2021-09-05 14:55 - 2021-09-05 14:55 - 000000000 ___SD C:\Users\mcear\Documents\Mes sources de données
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-04 16:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-04 16:38 - 2019-07-16 08:57 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-04 16:35 - 2019-07-16 01:19 - 000000000 __SHD C:\Users\mcear\IntelGraphicsProfiles
2021-10-04 16:34 - 2021-04-17 15:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-04 16:34 - 2021-04-17 15:25 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-04 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-04 16:34 - 2019-07-15 21:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-04 16:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-04 16:26 - 2021-04-17 15:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-04 15:40 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-04 15:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-04 15:40 - 2019-07-16 01:19 - 000000000 ____D C:\Users\mcear\AppData\Local\Packages
2021-10-04 13:23 - 2019-07-16 01:24 - 000000200 _____ C:\Users\mcear\AppData\Roaming\sp_data.sys
2021-10-04 13:14 - 2021-04-17 15:25 - 000286432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-03 21:03 - 2020-07-28 08:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-03 21:03 - 2020-07-28 08:49 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-03 18:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-10-01 13:53 - 2021-04-17 15:57 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 13:53 - 2021-04-17 15:57 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-28 18:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-28 18:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-26 15:20 - 2021-06-11 17:17 - 000019968 _____ C:\Users\mcear\Documents\BILAN CHORGES.xls
2021-09-25 17:12 - 2021-04-17 15:57 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4265913030-1843694007-3050595197-1001
2021-09-25 17:12 - 2021-04-17 15:36 - 000002423 _____ C:\Users\mcear\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-17 13:06 - 2021-04-17 15:47 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-17 13:06 - 2019-12-07 16:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-17 13:06 - 2019-12-07 16:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-17 12:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 09:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-16 08:22 - 2019-07-16 22:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:18 - 2019-07-16 22:07 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 14:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-09 16:04 - 2019-10-20 19:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-08 16:56 - 2020-07-23 16:19 - 000000000 ____D C:\Users\mcear\Documents\Bibliothèque calibre
2021-09-04 14:56 - 2019-10-21 10:08 - 000000000 ____D C:\Users\mcear\AppData\Local\D3DSCache
==================== Fichiers à la racine de certains dossiers ========
2019-07-16 01:24 - 2021-10-04 13:23 - 000000200 _____ () C:\Users\mcear\AppData\Roaming\sp_data.sys
2020-01-20 20:09 - 2020-01-20 20:09 - 000000017 _____ () C:\Users\mcear\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par mcear (administrateur) sur ASUSMIC (ASUSTeK COMPUTER INC. X756UVK) (04-10-2021 16:43:36)
Exécuté depuis C:\Users\mcear\Downloads
Profils chargés: mcear
Platform: Windows 10 Home Version 20H2 19042.1237 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe <2>
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avaya Inc. -> Avaya, Inc.) C:\Users\mcear\AppData\Local\Radvision\Conference Client\8.3.501.10\CUCore.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Corel Corporation -> ) [Fichier non signé] C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe
(Corel Corporation -> Corel Corporation) [Fichier non signé] C:\Program Files\WinZip\WinZip Smart Monitor\WinZipCompressionSmartMonitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <27>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\IntelCpHeciSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <4>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20436.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dxgiadaptercache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\Temp\30B1A161-BD7A-41D5-8785-DC128D61373F\DismHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
Impossible d'accéder au processus -> AsusTPCenter.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [604496 2017-11-24] (Conexant Systems LLC -> Conexant Systems, Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1893312 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\FlowSync.exe [1397248 2018-09-17] (Polar Electro Oy) [Fichier non signé]
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\Run: [CUCore Agent] => C:\Users\mcear\AppData\Local\Radvision\Conference Client\8.3.501.10\ConfAgent.exe [140920 2020-03-27] (Avaya Inc. -> Avaya, Inc.)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
HKU\S-1-5-21-4265913030-1843694007-3050595197-1001\...\MountPoints2: {1fe5dc11-b162-11eb-bbf6-f0038c7e4608} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.71\Installer\chrmstp.exe [2021-09-30] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B11A214-4755-4500-9DBE-5C3552A3AEE9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {145796C9-366C-423B-85E2-52A56AC5FB91} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {24FECE1C-C66E-44EC-8855-186C4345FFD6} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1604256 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {2C1B9525-CF45-4E0E-A651-981D5DDCD21E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40844EB8-5D21-4412-853C-6AB50A545A5F} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {4B813C43-818A-4573-8623-6ACDCAA3D3CE} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2016-10-12] (ASUS) [Fichier non signé]
Task: {4DE786EE-3E7D-4A2D-8701-8D940083A9E1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1693632 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F608A46-EAEE-469F-AB03-0BDE8627BC3A} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5278E22E-0329-4C8F-8330-B400E567D612} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54799795-0DFC-4DBC-8868-78C17DA6231D} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {57D9E21C-E607-4BE8-8C91-8AAEB18FDA1B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-16] (Google Inc -> Google LLC)
Task: {7B5A92F7-D213-4056-AAB2-466866B3BFAF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436672 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7BCC7036-8605-48D6-9CE0-4DB149054F2D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {80F8850F-9404-47C7-91EE-EF0F0F3F5E5C} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {847B3D58-3AAA-4FD1-94AE-064E7E3B3795} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1137C92-4DCC-4FE5-8620-DA7AAB1A6BC1} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2651056 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {B1667511-767F-4ADF-BC65-FFED66B5214F} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [233096 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {BBD36A71-A76B-44A9-8573-E02517F2C363} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [252872 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {C6B2ABCD-CC92-4AD8-83A8-3E5A129BADB6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1579296 2016-11-09] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé]
Task: {CE959A23-74DF-48C3-93DF-1CCEC8EED05C} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29851288 2021-10-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {D36C905F-EBF0-4605-853D-7B365C7B7C09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-16] (Google Inc -> Google LLC)
Task: {D8D78F67-9993-4930-9E21-3503F38D797F} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc)
Task: {F2FA5DD3-DF52-414A-B132-AFCCC086275D} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124280 2017-03-21] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FC12409F-1F8D-4FAE-AA86-EAE1C8343FA8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [946112 2017-05-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF9FAFEA-39B3-4C14-BA43-7BE47ED89F4D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-04-11] (ASUSTeK Computer Inc. -> AsusTek)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{13b6c841-0a3f-41e8-8191-7857a391a8ae}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ee1480f0-d46a-4343-b50a-d5221d2b8c20}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-04]
Edge Notifications: Default -> hxxps://funtoday.info; hxxps://onemacusa.net; hxxps://quicklisti.com; hxxps://tik-ttok.net
Edge Extension: (Avira Safe Shopping) - C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2021-10-03]
Edge Extension: (Avira Password Manager) - C:\Users\mcear\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2021-10-03]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-04-15] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-4265913030-1843694007-3050595197-1001: @radvision.com/ConfClient -> C:\Users\mcear\AppData\Local\Radvision\Installer\1.5.5.1\npclientinstmgr.dll [2020-03-27] (Avaya Inc. -> Avaya, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default [2021-10-04]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.lameteoagricole.net
CHR Extension: (Slides) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-16]
CHR Extension: (Docs) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-16]
CHR Extension: (Google Drive) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-27]
CHR Extension: (YouTube) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-16]
CHR Extension: (Avira Password Manager) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-10-03]
CHR Extension: (Avira Safe Shopping) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-10-03]
CHR Extension: (WhatsGreen Multi Messenger) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmjnhdnlkkchaghdafniiihhjllomdcd [2020-08-12]
CHR Extension: (Sheets) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-30]
CHR Extension: (Protection Web Avira) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-10-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-02]
CHR Extension: (Gmail) - C:\Users\mcear\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-06-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-06-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574672 2021-07-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989160 2021-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384480 2021-08-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [251184 2021-09-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [952992 2021-04-15] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinZip Compression Smart Monitor Service; C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe [495872 2017-09-01] (Corel Corporation -> ) [Fichier non signé]
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [143856 2017-04-11] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22848 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207864 2021-07-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-02-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 GridinSoftInetSecurityDriver; C:\WINDOWS\system32\DRIVERS\gsInetSecurity.sys [107784 2021-09-21] (GridinSoft, LLC -> GridinSoft LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 TrojanKillerDriver; C:\WINDOWS\System32\DRIVERS\gtkdrv.sys [38216 2021-09-29] (GridinSoft, LLC -> GridinSoft LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl4fbc6b1d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{698B60F5-AF78-439B-AF31-E68B02718496}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-04 16:43 - 2021-10-04 16:47 - 000026692 _____ C:\Users\mcear\Downloads\FRST.txt
2021-10-04 16:42 - 2021-10-04 16:45 - 000000000 ____D C:\FRST
2021-10-04 16:41 - 2021-10-04 16:42 - 002308096 _____ (Farbar) C:\Users\mcear\Downloads\FRST64.exe
2021-10-04 16:39 - 2021-10-04 16:40 - 002019328 _____ (Farbar) C:\Users\mcear\Downloads\FRST.exe
2021-10-04 15:55 - 2021-10-04 15:55 - 000001123 _____ C:\Users\Public\Desktop\GridinSoft Anti-Malware.lnk
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\ProgramData\GridinSoft
2021-10-04 15:54 - 2021-10-04 15:54 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware
2021-10-04 15:53 - 2021-10-04 15:53 - 000989584 _____ (GridinSoft LLC) C:\Users\mcear\Downloads\install-antimalware-fix.exe
2021-10-04 14:40 - 2021-10-04 14:40 - 002527040 _____ (Wiper Software, UAB) C:\Users\mcear\Downloads\WiperSoft-installer.exe
2021-10-03 18:28 - 2021-10-03 18:28 - 000000000 ____D C:\Users\Public\Security Sessions
2021-10-03 18:07 - 2021-10-03 18:07 - 000003374 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2021-10-03 18:07 - 2021-10-03 18:07 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2021-10-03 18:06 - 2021-07-30 23:17 - 000207864 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2021-10-03 18:06 - 2021-06-25 14:59 - 000022848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
2021-10-03 18:06 - 2021-02-09 19:03 - 000199312 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2021-10-03 18:06 - 2019-06-07 15:09 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2021-10-03 18:06 - 2019-03-20 19:50 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2021-10-03 17:59 - 2021-10-03 18:28 - 000000000 ____D C:\Users\mcear\AppData\Local\Avira
2021-10-03 17:58 - 2021-10-03 17:59 - 000000000 ____D C:\Users\Public\Speedup Sessions
2021-10-03 17:58 - 2021-10-03 17:58 - 000003760 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2021-10-03 17:57 - 2021-10-03 18:28 - 000000000 ____D C:\ProgramData\Avira
2021-10-03 17:57 - 2021-10-03 18:05 - 000000000 ____D C:\Program Files (x86)\Avira
2021-10-03 17:57 - 2021-10-03 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2021-10-03 17:57 - 2021-10-03 17:57 - 000003688 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2021-10-03 17:57 - 2021-10-03 17:57 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2021-10-03 17:57 - 2021-10-03 17:57 - 000002816 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray
2021-10-03 17:57 - 2021-10-03 17:57 - 000001156 _____ C:\Users\Public\Desktop\Avira.lnk
2021-10-03 17:55 - 2021-10-03 17:55 - 005901768 _____ (Avira Operations GmbH & Co. KG) C:\Users\mcear\Downloads\avira_fr_sptl1_786226954-1633276526__adwg-spotlightdiscfr1-current.exe
2021-09-29 21:33 - 2021-09-29 21:33 - 000038216 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gtkdrv.sys
2021-09-26 21:21 - 2021-09-26 21:21 - 002028754 _____ C:\Users\mcear\Downloads\Programme de marche nordique - Octobre 2021 - moni.nicaisse@gmail.com - Gmail.html
2021-09-26 21:21 - 2021-09-26 21:21 - 000000000 ____D C:\Users\mcear\Downloads\Programme de marche nordique - Octobre 2021 - moni.nicaisse@gmail.com - Gmail_files
2021-09-21 14:15 - 2021-09-21 14:15 - 000107784 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gsInetSecurity.sys
2021-09-16 09:13 - 2021-09-16 09:13 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-16 09:13 - 2021-09-16 09:13 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-16 09:12 - 2021-09-16 09:12 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-16 09:12 - 2021-09-16 09:12 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-16 09:12 - 2021-09-16 09:12 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-16 09:12 - 2021-09-16 09:12 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-16 09:12 - 2021-09-16 09:12 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-16 09:12 - 2021-09-16 09:12 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-16 09:12 - 2021-09-16 09:12 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-16 09:12 - 2021-09-16 09:12 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-16 09:12 - 2021-09-16 09:12 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-16 09:11 - 2021-09-16 09:11 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-16 09:11 - 2021-09-16 09:11 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-16 09:11 - 2021-09-16 09:11 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-16 09:10 - 2021-09-16 09:10 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-16 09:10 - 2021-09-16 09:10 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-16 09:10 - 2021-09-16 09:10 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-16 09:10 - 2021-09-16 09:10 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-16 09:10 - 2021-09-16 09:10 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-16 09:10 - 2021-09-16 09:10 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-16 08:28 - 2021-09-16 08:28 - 000000000 ___HD C:\$WinREAgent
2021-09-13 17:14 - 2021-09-13 17:14 - 003102665 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (4).pdf
2021-09-13 17:12 - 2021-09-13 17:12 - 003102673 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (3).pdf
2021-09-13 17:09 - 2021-09-13 17:09 - 000046139 _____ C:\Users\mcear\Downloads\Tickets_de_caisse.pdf
2021-09-13 08:33 - 2021-09-13 08:33 - 003102672 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (2).pdf
2021-09-12 21:23 - 2021-09-12 21:23 - 003102672 _____ C:\Users\mcear\Downloads\randonnee-porquerolles (1).pdf
2021-09-12 21:19 - 2021-09-12 21:19 - 003102671 _____ C:\Users\mcear\Downloads\randonnee-porquerolles.pdf
2021-09-05 14:55 - 2021-09-05 14:55 - 000000000 ___SD C:\Users\mcear\Documents\Mes sources de données
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-10-04 16:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-04 16:38 - 2019-07-16 08:57 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-04 16:35 - 2019-07-16 01:19 - 000000000 __SHD C:\Users\mcear\IntelGraphicsProfiles
2021-10-04 16:34 - 2021-04-17 15:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-04 16:34 - 2021-04-17 15:25 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-04 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-04 16:34 - 2019-07-15 21:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-04 16:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-10-04 16:26 - 2021-04-17 15:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-04 15:40 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-04 15:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-04 15:40 - 2019-07-16 01:19 - 000000000 ____D C:\Users\mcear\AppData\Local\Packages
2021-10-04 13:23 - 2019-07-16 01:24 - 000000200 _____ C:\Users\mcear\AppData\Roaming\sp_data.sys
2021-10-04 13:14 - 2021-04-17 15:25 - 000286432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-03 21:03 - 2020-07-28 08:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-03 21:03 - 2020-07-28 08:49 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-10-03 18:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-10-01 13:53 - 2021-04-17 15:57 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 13:53 - 2021-04-17 15:57 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-28 18:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-28 18:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-26 15:20 - 2021-06-11 17:17 - 000019968 _____ C:\Users\mcear\Documents\BILAN CHORGES.xls
2021-09-25 17:12 - 2021-04-17 15:57 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4265913030-1843694007-3050595197-1001
2021-09-25 17:12 - 2021-04-17 15:36 - 000002423 _____ C:\Users\mcear\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-17 13:06 - 2021-04-17 15:47 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-17 13:06 - 2019-12-07 16:49 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2021-09-17 13:06 - 2019-12-07 16:49 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-17 12:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-17 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-17 12:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 09:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-16 08:22 - 2019-07-16 22:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 08:18 - 2019-07-16 22:07 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-14 14:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-09-09 16:04 - 2019-10-20 19:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-08 16:56 - 2020-07-23 16:19 - 000000000 ____D C:\Users\mcear\Documents\Bibliothèque calibre
2021-09-04 14:56 - 2019-10-21 10:08 - 000000000 ____D C:\Users\mcear\AppData\Local\D3DSCache
==================== Fichiers à la racine de certains dossiers ========
2019-07-16 01:24 - 2021-10-04 13:23 - 000000200 _____ () C:\Users\mcear\AppData\Roaming\sp_data.sys
2020-01-20 20:09 - 2020-01-20 20:09 - 000000017 _____ () C:\Users\mcear\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================