Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2021
Exécuté par ibra (administrateur) sur IBRA-PC (TOSHIBA SATELLITE C670-11U) (29-11-2021 18:12:57)
Exécuté depuis C:\Users\ibra\Downloads
Profils chargés: ibra
Plate-forme: Microsoft Windows 7 Professionnel Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <2>
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\Djezzy connect\OnlineUpdate\ouc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2278504 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [134936 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {03cf0c9a-0e41-11eb-b80a-806e6f6e6963} - E:\DriverPackSolution.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268523-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c2685ce-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c26861d-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268714-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268796-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {524b91d7-30ce-11eb-92a5-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {524b956c-30ce-11eb-92a5-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d2c8-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d378-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d3d2-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d496-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d503-1c83-11eb-8453-e840f235cff2} - F:\autorun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d565-1c83-11eb-8453-e840f235cff2} - F:\autorun.exe
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\Windows\system32\E_ILMILE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\95.1.13052.70\Installer\chrmstp.exe [2021-11-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {29CD72ED-8399-4AC0-A867-D6E3A1C15C33} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {3126EB78-0478-4546-A9BF-21C1A23C8247} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Task: {404914A5-6E22-444E-ACBD-3AFA718B1500} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2495608 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {6020A45A-6B46-47D4-8D3E-CAA14353E8A4} - System32\Tasks\{CB9A14AB-14EA-4BCC-BBEA-608FDBBE61B3} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe"
Task: {723FBAA8-5B3A-4FAE-A721-6A68F8C69D9F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2495608 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {90ADFF26-90FF-451B-AD9F-C95B24EA8875} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4974872 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {A33CE02E-D74F-4FD5-ABB3-44ED42926E87} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Task: {A6233957-C0F6-4309-BF12-07D6B32B7002} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3A96CEB-0F01-4008-ABE9-6F6FB4778889} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-28] (Google LLC -> Google LLC)
Task: {B8E4D67C-61B7-4151-A1BD-9B09A37E133A} - System32\Tasks\{E3D81577-7B9A-4587-A43A-FE9A39925C83} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe" -d "C:\Program Files (x86)\Baidu WiFiHotspot"
Task: {C4F180BE-059D-4A29-9C9C-5D040302BB22} - System32\Tasks\Baidu LiveUpdate => C:\Program [Argument = Files (x86)\Baidu WiFiHotspot\liveupdate.exe]
Task: {CBA37BCB-43B5-4801-B3B6-BAD3E3611FCF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE5CAB1E-FB28-4231-A347-85CF5DDB923E} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4048530393-2322815272-907176374-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {DF50E1FB-1DFC-4E65-A3CE-C94F3CF32354} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-28] (Google LLC -> Google LLC)
Task: {EB4ADB14-8E5E-4D14-90A1-E219BEA807ED} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.241.199
Tcpip\..\Interfaces\{18E69F52-7385-4B29-AE93-12385091703E}: [DhcpNameServer] 192.168.241.199
Tcpip\..\Interfaces\{F9206FE8-1613-490D-B566-490191FE1379}: [DhcpNameServer] 41.110.32.3 8.8.8.8
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-29]
Edge Extension: (Cisco Webex Extension) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-11-29]
Edge Extension: (Zoom Scheduler) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-29]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2021-03-09] [] [non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR Profile: C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default [2021-11-29]
CHR Notifications: Default -> hxxps://wp.aliexpress.com; hxxps://www.duolingo.com
CHR Extension: (Slides) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-14]
CHR Extension: (Docs) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-14]
CHR Extension: (Google Drive) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-07]
CHR Extension: (YouTube) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-14]
CHR Extension: (Sheets) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-30]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-11-29]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-29]
CHR Extension: (Cisco Webex Extension) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-11-29]
CHR Extension: (Zoom Scheduler) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Super Viewer for Facebook) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbadcohnacfjiocpfpplghhbaiddpc [2020-12-30]
CHR Extension: (Gmail) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-07]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8376400 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [680728 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1700632 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [427800 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\95.1.13052.70\elevation_service.exe [1713640 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-05] (Avast Software s.r.o. -> AVAST Software)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation -> Microsoft Corporation)
S2 Djezzy connect. RunOuc; C:\Program Files (x86)\Djezzy connect\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> )
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7789240 2021-09-29] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35704 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [222112 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367632 2021-11-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-10-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99344 2021-10-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41344 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [538976 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-10-29] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107848 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [852216 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [557648 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214384 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317696 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 cmusbser; C:\Windows\System32\DRIVERS\cmusbser.sys [118144 2008-08-29] (Mobile Connector) [Fichier non signé]
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-26] (Malwarebytes Inc -> Malwarebytes)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [43088 2014-08-14] (Mainline Net Holdings Limited -> NT Kernel Resources)
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-29 18:12 - 2021-11-29 18:14 - 000020929 _____ C:\Users\ibra\Downloads\FRST.txt
2021-11-29 18:12 - 2021-11-29 18:13 - 000000000 ____D C:\FRST
2021-11-29 18:11 - 2021-11-29 18:11 - 002311680 _____ (Farbar) C:\Users\ibra\Downloads\FRST64.exe
2021-11-29 17:12 - 2021-11-29 17:12 - 000068077 _____ C:\Users\ibra\Downloads\GOUACEM_IBRAHIM.pdf
2021-11-29 09:29 - 2021-11-29 09:29 - 000003608 ____N C:\bootsqm.dat
2021-11-29 01:17 - 2021-11-29 01:17 - 004065360 _____ (Crystal Dew World ) C:\Users\ibra\Downloads\CrystalDiskMark8_0_4.exe
2021-11-29 00:42 - 2021-11-29 00:42 - 000000000 ____D C:\Windows\pss
2021-11-29 00:22 - 2021-11-29 16:57 - 000276450 _____ C:\Users\ibra\Desktop\ZHPDiag.txt
2021-11-29 00:17 - 2021-11-29 16:57 - 000000000 ____D C:\Users\ibra\AppData\Roaming\ZHP
2021-11-29 00:16 - 2021-11-29 00:16 - 000000000 ____D C:\Users\ibra\AppData\Local\ZHP
2021-11-29 00:14 - 2021-11-29 00:16 - 003282584 _____ (Nicolas Coolman) C:\Users\ibra\Downloads\ZHPDiag3.exe
2021-11-28 23:56 - 2021-11-29 00:01 - 000000000 ____D C:\AdwCleaner
2021-11-28 23:56 - 2021-11-28 23:56 - 008540344 _____ (Malwarebytes) C:\Users\ibra\Downloads\adwcleaner_8.3.1.exe
2021-11-13 22:01 - 2021-11-13 21:56 - 000155396 ____N C:\Users\ibra\Desktop\Channels2500-HYBRID by aissa.sdx
2021-11-13 19:32 - 2021-11-13 19:33 - 005193486 _____ C:\Users\ibra\Downloads\GN-2500HD HYBRID_V2.58(V1.09.23291)_10112021.rar
2021-11-13 19:00 - 2021-11-13 19:02 - 000000000 ____D C:\Users\ibra\Desktop\cancero
2021-11-13 18:50 - 2021-11-13 18:49 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-11-13 18:50 - 2021-11-13 18:49 - 000214384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-11-08 20:16 - 2021-11-08 20:16 - 000000000 ____D C:\Users\ibra\AppData\Local\Viber
2021-10-30 14:26 - 2021-10-30 14:26 - 004788590 _____ C:\Users\ibra\Downloads\programme 10 jmc 2021 v11.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-29 18:13 - 2020-10-14 20:30 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-29 17:33 - 2009-07-14 05:45 - 000030768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-29 17:33 - 2009-07-14 05:45 - 000030768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-29 17:05 - 2021-03-28 00:39 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-29 17:05 - 2021-03-28 00:39 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-29 15:52 - 2020-10-29 23:42 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-11-29 09:35 - 2010-11-21 07:19 - 000750596 _____ C:\Windows\system32\perfh00C.dat
2021-11-29 09:35 - 2010-11-21 07:19 - 000151706 _____ C:\Windows\system32\perfc00C.dat
2021-11-29 09:35 - 2009-07-14 06:13 - 001677746 _____ C:\Windows\system32\PerfStringBackup.INI
2021-11-29 09:35 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-11-29 09:31 - 2020-11-06 18:08 - 000000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-11-29 09:31 - 2020-10-29 23:40 - 000000000 ____D C:\ProgramData\Avast Software
2021-11-29 09:30 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-11-29 01:10 - 2021-06-18 18:08 - 000000000 ____D C:\ProgramData\WinZip
2021-11-29 00:31 - 2020-10-29 23:50 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-11-29 00:31 - 2020-10-29 23:50 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-11-29 00:27 - 2020-10-20 13:24 - 000002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-29 00:15 - 2020-10-20 13:23 - 000003534 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-29 00:15 - 2020-10-20 13:23 - 000003406 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-11-29 00:01 - 2020-11-13 03:24 - 000000000 ____D C:\Program Files (x86)\Le Congrès Virtuel By Peaksource
2021-11-28 23:59 - 2020-11-01 22:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-11-28 23:57 - 2021-05-23 01:53 - 000000000 ____D C:\Users\Public\Documents\EndNote
2021-11-28 23:57 - 2021-05-23 01:52 - 000000000 ____D C:\ProgramData\Thomson.ResearchSoft.Installers
2021-11-28 23:57 - 2020-10-14 18:50 - 000000000 ____D C:\Users\ibra
2021-11-28 23:52 - 2020-11-01 21:54 - 000000000 ____D C:\ProgramData\DatacardService
2021-11-28 23:52 - 2020-10-29 23:42 - 000367632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-11-28 23:44 - 2021-06-19 13:18 - 000000000 ____D C:\Users\ibra\Documents\ViberDownloads
2021-11-28 23:44 - 2020-10-20 19:20 - 000000000 ____D C:\Users\ibra\AppData\Roaming\ViberPC
2021-11-13 19:04 - 2021-05-31 02:53 - 000000000 ____D C:\Users\ibra\AppData\Local\CrashDumps
2021-11-13 18:59 - 2020-10-20 20:08 - 000000000 ____D C:\Windows\system32\MRT
2021-11-13 18:50 - 2020-10-29 23:42 - 000317696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-11-13 18:50 - 2020-10-20 20:08 - 141529560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-11-13 18:49 - 2020-10-29 23:42 - 000852216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000557648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000538976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000222112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000107848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000041344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000035704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-11-13 18:35 - 2020-10-14 18:51 - 000001429 _____ C:\Users\ibra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2021-11-06 20:05 - 2021-03-28 00:34 - 000003504 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-11-06 20:05 - 2021-03-28 00:34 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-11-06 20:05 - 2020-10-29 23:43 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-10-30 15:41 - 2020-12-09 02:27 - 000000000 ____D C:\Users\ibra\AppData\Roaming\WhatsApp
2021-10-30 14:34 - 2020-10-29 23:42 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-10-30 14:34 - 2020-10-29 23:42 - 000099344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
==================== Fichiers à la racine de certains dossiers ========
2020-10-31 18:58 - 2021-03-05 17:58 - 000007597 _____ () C:\Users\ibra\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2021-11-29 02:21
==================== Fin de FRST.txt ========================
Exécuté par ibra (administrateur) sur IBRA-PC (TOSHIBA SATELLITE C670-11U) (29-11-2021 18:12:57)
Exécuté depuis C:\Users\ibra\Downloads
Profils chargés: ibra
Plate-forme: Microsoft Windows 7 Professionnel Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <2>
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\Djezzy connect\OnlineUpdate\ouc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2278504 2011-10-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [134936 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {03cf0c9a-0e41-11eb-b80a-806e6f6e6963} - E:\DriverPackSolution.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268523-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c2685ce-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c26861d-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268714-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {0c268796-2076-11eb-9658-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {524b91d7-30ce-11eb-92a5-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {524b956c-30ce-11eb-92a5-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d2c8-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d378-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d3d2-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d496-1c83-11eb-8453-e840f235cff2} - F:\AutoRun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d503-1c83-11eb-8453-e840f235cff2} - F:\autorun.exe
HKU\S-1-5-21-4048530393-2322815272-907176374-1000\...\MountPoints2: {a275d565-1c83-11eb-8453-e840f235cff2} - F:\autorun.exe
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\Windows\system32\E_ILMILE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-29] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\95.1.13052.70\Installer\chrmstp.exe [2021-11-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {29CD72ED-8399-4AC0-A867-D6E3A1C15C33} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {3126EB78-0478-4546-A9BF-21C1A23C8247} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Task: {404914A5-6E22-444E-ACBD-3AFA718B1500} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2495608 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {6020A45A-6B46-47D4-8D3E-CAA14353E8A4} - System32\Tasks\{CB9A14AB-14EA-4BCC-BBEA-608FDBBE61B3} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe"
Task: {723FBAA8-5B3A-4FAE-A721-6A68F8C69D9F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2495608 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {90ADFF26-90FF-451B-AD9F-C95B24EA8875} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4974872 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
Task: {A33CE02E-D74F-4FD5-ABB3-44ED42926E87} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Task: {A6233957-C0F6-4309-BF12-07D6B32B7002} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B3A96CEB-0F01-4008-ABE9-6F6FB4778889} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-28] (Google LLC -> Google LLC)
Task: {B8E4D67C-61B7-4151-A1BD-9B09A37E133A} - System32\Tasks\{E3D81577-7B9A-4587-A43A-FE9A39925C83} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Baidu WiFiHotspot\WifiUninstall.exe" -d "C:\Program Files (x86)\Baidu WiFiHotspot"
Task: {C4F180BE-059D-4A29-9C9C-5D040302BB22} - System32\Tasks\Baidu LiveUpdate => C:\Program [Argument = Files (x86)\Baidu WiFiHotspot\liveupdate.exe]
Task: {CBA37BCB-43B5-4801-B3B6-BAD3E3611FCF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE5CAB1E-FB28-4231-A347-85CF5DDB923E} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4048530393-2322815272-907176374-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {DF50E1FB-1DFC-4E65-A3CE-C94F3CF32354} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-28] (Google LLC -> Google LLC)
Task: {EB4ADB14-8E5E-4D14-90A1-E219BEA807ED} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.241.199
Tcpip\..\Interfaces\{18E69F52-7385-4B29-AE93-12385091703E}: [DhcpNameServer] 192.168.241.199
Tcpip\..\Interfaces\{F9206FE8-1613-490D-B566-490191FE1379}: [DhcpNameServer] 41.110.32.3 8.8.8.8
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-29]
Edge Extension: (Cisco Webex Extension) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-11-29]
Edge Extension: (Zoom Scheduler) - C:\Users\ibra\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-29]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2021-03-09] [] [non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software)
Chrome:
=======
CHR Profile: C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default [2021-11-29]
CHR Notifications: Default -> hxxps://wp.aliexpress.com; hxxps://www.duolingo.com
CHR Extension: (Slides) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-14]
CHR Extension: (Docs) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-14]
CHR Extension: (Google Drive) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-07]
CHR Extension: (YouTube) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-14]
CHR Extension: (Sheets) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-30]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-11-29]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-11-29]
CHR Extension: (Cisco Webex Extension) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2021-11-29]
CHR Extension: (Zoom Scheduler) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Super Viewer for Facebook) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbadcohnacfjiocpfpplghhbaiddpc [2020-12-30]
CHR Extension: (Gmail) - C:\Users\ibra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-07]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8376400 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [680728 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [1700632 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [427800 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\95.1.13052.70\elevation_service.exe [1713640 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-05] (Avast Software s.r.o. -> AVAST Software)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation -> Microsoft Corporation)
S2 Djezzy connect. RunOuc; C:\Program Files (x86)\Djezzy connect\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> )
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7789240 2021-09-29] (Malwarebytes Inc -> Malwarebytes)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35704 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [222112 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367632 2021-11-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-10-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99344 2021-10-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41344 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [538976 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-10-29] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107848 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [852216 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [557648 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214384 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317696 2021-11-13] (Avast Software s.r.o. -> AVAST Software)
S3 cmusbser; C:\Windows\System32\DRIVERS\cmusbser.sys [118144 2008-08-29] (Mobile Connector) [Fichier non signé]
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-06-26] (Malwarebytes Inc -> Malwarebytes)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [43088 2014-08-14] (Mainline Net Holdings Limited -> NT Kernel Resources)
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-29 18:12 - 2021-11-29 18:14 - 000020929 _____ C:\Users\ibra\Downloads\FRST.txt
2021-11-29 18:12 - 2021-11-29 18:13 - 000000000 ____D C:\FRST
2021-11-29 18:11 - 2021-11-29 18:11 - 002311680 _____ (Farbar) C:\Users\ibra\Downloads\FRST64.exe
2021-11-29 17:12 - 2021-11-29 17:12 - 000068077 _____ C:\Users\ibra\Downloads\GOUACEM_IBRAHIM.pdf
2021-11-29 09:29 - 2021-11-29 09:29 - 000003608 ____N C:\bootsqm.dat
2021-11-29 01:17 - 2021-11-29 01:17 - 004065360 _____ (Crystal Dew World ) C:\Users\ibra\Downloads\CrystalDiskMark8_0_4.exe
2021-11-29 00:42 - 2021-11-29 00:42 - 000000000 ____D C:\Windows\pss
2021-11-29 00:22 - 2021-11-29 16:57 - 000276450 _____ C:\Users\ibra\Desktop\ZHPDiag.txt
2021-11-29 00:17 - 2021-11-29 16:57 - 000000000 ____D C:\Users\ibra\AppData\Roaming\ZHP
2021-11-29 00:16 - 2021-11-29 00:16 - 000000000 ____D C:\Users\ibra\AppData\Local\ZHP
2021-11-29 00:14 - 2021-11-29 00:16 - 003282584 _____ (Nicolas Coolman) C:\Users\ibra\Downloads\ZHPDiag3.exe
2021-11-28 23:56 - 2021-11-29 00:01 - 000000000 ____D C:\AdwCleaner
2021-11-28 23:56 - 2021-11-28 23:56 - 008540344 _____ (Malwarebytes) C:\Users\ibra\Downloads\adwcleaner_8.3.1.exe
2021-11-13 22:01 - 2021-11-13 21:56 - 000155396 ____N C:\Users\ibra\Desktop\Channels2500-HYBRID by aissa.sdx
2021-11-13 19:32 - 2021-11-13 19:33 - 005193486 _____ C:\Users\ibra\Downloads\GN-2500HD HYBRID_V2.58(V1.09.23291)_10112021.rar
2021-11-13 19:00 - 2021-11-13 19:02 - 000000000 ____D C:\Users\ibra\Desktop\cancero
2021-11-13 18:50 - 2021-11-13 18:49 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-11-13 18:50 - 2021-11-13 18:49 - 000214384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-11-08 20:16 - 2021-11-08 20:16 - 000000000 ____D C:\Users\ibra\AppData\Local\Viber
2021-10-30 14:26 - 2021-10-30 14:26 - 004788590 _____ C:\Users\ibra\Downloads\programme 10 jmc 2021 v11.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-29 18:13 - 2020-10-14 20:30 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-29 17:33 - 2009-07-14 05:45 - 000030768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-29 17:33 - 2009-07-14 05:45 - 000030768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-29 17:05 - 2021-03-28 00:39 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-29 17:05 - 2021-03-28 00:39 - 000002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-29 15:52 - 2020-10-29 23:42 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-11-29 09:35 - 2010-11-21 07:19 - 000750596 _____ C:\Windows\system32\perfh00C.dat
2021-11-29 09:35 - 2010-11-21 07:19 - 000151706 _____ C:\Windows\system32\perfc00C.dat
2021-11-29 09:35 - 2009-07-14 06:13 - 001677746 _____ C:\Windows\system32\PerfStringBackup.INI
2021-11-29 09:35 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-11-29 09:31 - 2020-11-06 18:08 - 000000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-11-29 09:31 - 2020-10-29 23:40 - 000000000 ____D C:\ProgramData\Avast Software
2021-11-29 09:30 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-11-29 01:10 - 2021-06-18 18:08 - 000000000 ____D C:\ProgramData\WinZip
2021-11-29 00:31 - 2020-10-29 23:50 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-11-29 00:31 - 2020-10-29 23:50 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-11-29 00:27 - 2020-10-20 13:24 - 000002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-29 00:15 - 2020-10-20 13:23 - 000003534 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-29 00:15 - 2020-10-20 13:23 - 000003406 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-11-29 00:01 - 2020-11-13 03:24 - 000000000 ____D C:\Program Files (x86)\Le Congrès Virtuel By Peaksource
2021-11-28 23:59 - 2020-11-01 22:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-11-28 23:57 - 2021-05-23 01:53 - 000000000 ____D C:\Users\Public\Documents\EndNote
2021-11-28 23:57 - 2021-05-23 01:52 - 000000000 ____D C:\ProgramData\Thomson.ResearchSoft.Installers
2021-11-28 23:57 - 2020-10-14 18:50 - 000000000 ____D C:\Users\ibra
2021-11-28 23:52 - 2020-11-01 21:54 - 000000000 ____D C:\ProgramData\DatacardService
2021-11-28 23:52 - 2020-10-29 23:42 - 000367632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-11-28 23:44 - 2021-06-19 13:18 - 000000000 ____D C:\Users\ibra\Documents\ViberDownloads
2021-11-28 23:44 - 2020-10-20 19:20 - 000000000 ____D C:\Users\ibra\AppData\Roaming\ViberPC
2021-11-13 19:04 - 2021-05-31 02:53 - 000000000 ____D C:\Users\ibra\AppData\Local\CrashDumps
2021-11-13 18:59 - 2020-10-20 20:08 - 000000000 ____D C:\Windows\system32\MRT
2021-11-13 18:50 - 2020-10-29 23:42 - 000317696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-11-13 18:50 - 2020-10-20 20:08 - 141529560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-11-13 18:49 - 2020-10-29 23:42 - 000852216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000557648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000538976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000222112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000107848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000041344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-11-13 18:49 - 2020-10-29 23:42 - 000035704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-11-13 18:35 - 2020-10-14 18:51 - 000001429 _____ C:\Users\ibra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2021-11-06 20:05 - 2021-03-28 00:34 - 000003504 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-11-06 20:05 - 2021-03-28 00:34 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-11-06 20:05 - 2020-10-29 23:43 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-10-30 15:41 - 2020-12-09 02:27 - 000000000 ____D C:\Users\ibra\AppData\Roaming\WhatsApp
2021-10-30 14:34 - 2020-10-29 23:42 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-10-30 14:34 - 2020-10-29 23:42 - 000099344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
==================== Fichiers à la racine de certains dossiers ========
2020-10-31 18:58 - 2021-03-05 17:58 - 000007597 _____ () C:\Users\ibra\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2021-11-29 02:21
==================== Fin de FRST.txt ========================