Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-09-2023
Exécuté par ASUS (administrateur) sur DESKTOP-B087U96 (ASUSTeK COMPUTER INC. X555LA) (12-09-2023 22:38:41)
Exécuté depuis C:\Users\ASUS\Downloads\FRST64-2.1.exe
Profils chargés: ASUS
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3393 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\TotalAV\SecurityService.exe ->) (Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
(C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\LAClient\laclient.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.117.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MRT.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel(R) pGFX 2020 -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21548.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21548.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2305.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3385_none_7e1c800a7c81ffd9\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.117.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1380960 2022-07-06] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [Microsoft Edge Update] => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\MicrosoftEdgeUpdateCore.exe [263648 2023-07-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [MicrosoftEdgeAutoLaunch_74301B2884F50560207D3A8AEF963FB6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4108344 2023-09-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [] => [X]
HKLM\...\Print\Monitors\EPSON XP-342 343 345 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBREE.DLL [182784 2015-12-09] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP c111 Status Monitor: C:\WINDOWS\system32\hpinkstsc111LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PDF Suite 2020 Monitor: C:\Windows\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2020-04-13] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 1510 series.lnk [2023-09-12]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 1510 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN38O1FND005XJ;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A9C9C313-B203-44EC-8E6B-C809E88D6563} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {7C0813D5-F7FE-4214-9FEB-2556D7A2ED79} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {252691BA-94FD-414F-93E8-1C5F0F7A7868} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5ff73e75-a068-469c-b894-e37cb9087a16" --version "6.15.10623" --silent
Task: {8B71D9B8-93D8-4EF9-B72B-EB95A4EE0AA5} - System32\Tasks\CCleanerSkipUAC - ASUS => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F7E59214-8D01-4ACC-BB1D-420DF4218611} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-01-06] (Google Inc -> Google LLC)
Task: {1D4B041D-F040-4258-8932-42AB9BFDA75F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-01-06] (Google Inc -> Google LLC)
Task: {7A96CE96-F09E-490D-9408-87A006858EC8} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5744800 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
Task: {73DAF3D4-D01D-4B4E-8884-F986FBE8ED1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8365B7E-4E15-4631-AC68-F832E242F577} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A774A58C-3966-406B-A186-EC67AA1E053E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0719324A-B06F-4E0C-AADF-4A45DCF14936} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7DD757C4-EBA8-4C5F-AEA1-52FFF323F1A7} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4001726294-2036389126-3737119891-1001Core => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1684C0CA-A5AE-4BBF-BD1B-F0A749F101B2} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4001726294-2036389126-3737119891-1001UA => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C32627E-834D-4CA8-A81E-CDE1FB7EFF6C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [711608 2021-12-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {3981DE54-6EA8-437F-A583-5C285B16CBF3} - System32\Tasks\NCH Software\WavePadDowngrade => C:\Program Files (x86)\NCH Software\WavePad\wavepad.exe [7171240 2023-05-20] (NCH Software, Inc. -> NCH Software)
Task: {F857E594-9C9C-481C-8D62-9CEF37E752E9} - System32\Tasks\R@1n-KMS\Office 16, Office16ProPlusVL_KMS_Client edition => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-17] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
Task: {92A13144-BCD4-4F86-B6EF-1773C74D2AD1} - System32\Tasks\R@1n-KMS\Windows(R), Professional edition => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-17] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {6CA2DF85-C564-4134-8686-6F7E4608361C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D5F7148E-24C3-4F7E-99EA-021E31B2014A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {749F0E18-294A-4CE9-9226-A33F5289BC2C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01f9285e-afb1-4125-9e44-5bc203590013}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{447347e3-97d1-4c52-a153-19f6049a21c9}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-12]
Edge Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-12]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-08-25]
Edge Extension: (Edge relevant text changes) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-12]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-09-10]
FireFox:
========
FF DefaultProfile: lvvmt34x.default
FF ProfilePath: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\lvvmt34x.default [2023-09-11]
FF Extension: (Avira Password Manager) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\lvvmt34x.default\Extensions\passwordmanager@avira.com [2021-04-05]
FF ProfilePath: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\m77j8gxi.default-release-1685854428072 [2023-09-11]
FF Extension: (Logitech SetPoint) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\m77j8gxi.default-release-1685854428072\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2023-07-07]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-06-17] [non signé]
FF Plugin-x32: @DVR/npmedia,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npmedia.dll [2014-11-03] () [Fichier non signé]
FF Plugin-x32: @DVR/npTimeGrid,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npTimeGrid.dll [2014-11-03] (Unauthorized copy) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-07-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-07-10] (Oracle America, Inc. -> Oracle Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-04-13] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-04-13] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default [2023-09-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-07]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-08-12]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-09-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-12]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-09-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-07]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\System Profile [2023-08-12]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [462432 2022-07-06] (Digital Wave Ltd -> Digital Wave Ltd)
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [274584 2023-08-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [124928 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 avgVpnRdr; C:\WINDOWS\System32\drivers\avgVpnRdr.sys [76720 2023-07-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 ProtectedELAM; C:\WINDOWS\System32\drivers\protected_elam.sys [18912 2023-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> TODO:)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2018-01-30] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
U1 avgbdisk; pas de ImagePath
U2 OSppSvc; pas de ImagePath
S3 WinRing0_1_2_0; \??\C:\Users\ASUS\AppData\Local\Temp\tmp6A5A.tmp [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-12 22:38 - 2023-09-12 22:49 - 000022291 _____ C:\Users\ASUS\Downloads\FRST.txt
2023-09-12 22:36 - 2023-09-12 22:36 - 000000000 ____D C:\Users\ASUS\Downloads\FRST-OlderVersion
2023-09-12 22:35 - 2023-09-12 22:43 - 000000000 ____D C:\FRST
2023-09-12 22:33 - 2023-09-12 22:36 - 002382848 _____ (Farbar) C:\Users\ASUS\Downloads\FRST64-2.1.exe
2023-09-12 22:31 - 2023-09-12 22:31 - 000000000 ___HD C:\$WinREAgent
2023-09-12 22:04 - 2023-09-12 22:04 - 000607449 _____ C:\Users\ASUS\Downloads\Temu _ Commander 2.pdf
2023-09-12 21:03 - 2023-09-12 21:03 - 000498297 _____ C:\Users\ASUS\Downloads\Temu _ Commander.pdf
2023-09-12 10:28 - 2023-09-12 10:28 - 000000000 ____D C:\Users\ASUS\Documents\TotalAV
2023-09-12 10:24 - 2023-09-12 15:43 - 000001162 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
2023-09-12 10:24 - 2023-09-12 10:24 - 000000000 ____D C:\Users\ASUS\AppData\Local\GUI
2023-09-12 10:24 - 2023-09-12 10:24 - 000000000 ____D C:\ProgramData\SecuritySuite
2023-09-12 10:23 - 2023-09-12 10:44 - 000000000 ____D C:\Program Files (x86)\TotalAV
2023-09-12 10:23 - 2023-09-12 10:24 - 000000000 ____D C:\ProgramData\TotalAV
2023-09-12 10:23 - 2023-09-12 10:23 - 000001064 _____ C:\Users\Public\Desktop\TotalAV.lnk
2023-09-12 10:22 - 2023-09-12 10:23 - 057494344 _____ C:\Users\ASUS\Downloads\TotalAV_Setup.exe
2023-09-12 00:04 - 2023-09-12 00:04 - 000000000 ____D C:\Users\ASUS\AppData\Local\Backup
2023-09-11 15:54 - 2023-09-11 15:55 - 000001417 _____ C:\Users\ASUS\Desktop\ETEINDRE PC.lnk
2023-09-11 14:49 - 2023-09-11 14:49 - 001372712 _____ (Google LLC) C:\Users\ASUS\Downloads\ChromeSetup.exe
2023-09-11 14:21 - 2023-09-12 07:39 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\ZHP
2023-09-11 14:21 - 2023-09-11 14:21 - 000000874 _____ C:\Users\ASUS\Desktop\ZHPCleaner.lnk
2023-09-11 14:21 - 2023-09-11 14:21 - 000000000 ____D C:\Users\ASUS\AppData\Local\ZHP
2023-09-11 14:20 - 2023-09-11 14:20 - 003343008 _____ (Nicolas Coolman) C:\Users\ASUS\Downloads\ZHPCleaner.exe
2023-09-11 13:57 - 2023-09-11 13:57 - 000000000 ____D C:\WINDOWS\Panther
2023-09-09 17:35 - 2023-09-10 09:40 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\vlc
2023-09-09 17:34 - 2023-09-09 17:34 - 000000000 ____D C:\Program Files\VideoLAN
2023-08-16 12:59 - 2023-08-16 13:37 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Publisher
2023-08-14 07:41 - 2023-08-14 07:41 - 000000613 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\drouot.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-12 22:31 - 2020-01-07 04:30 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-12 22:31 - 2020-01-07 04:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-12 21:49 - 2021-12-17 06:49 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-12 21:49 - 2020-01-06 17:58 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-12 20:34 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-09-12 19:31 - 2021-03-24 04:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-12 15:44 - 2020-01-07 04:50 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2023-09-12 15:42 - 2020-01-06 18:41 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-09-12 15:42 - 2020-01-06 18:41 - 000000000 __SHD C:\Users\ASUS\IntelGraphicsProfiles
2023-09-12 12:15 - 2023-06-17 08:09 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2023-09-12 10:23 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-09-12 07:57 - 2021-03-24 05:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-12 07:57 - 2021-03-23 23:11 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-12 07:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-09-12 07:56 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-09-12 00:07 - 2020-01-06 17:53 - 000000000 ____D C:\Users\ASUS\AppData\Local\Packages
2023-09-12 00:02 - 2021-03-24 04:44 - 001684792 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-12 00:02 - 2019-12-07 16:50 - 000759056 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-12 00:02 - 2019-12-07 16:50 - 000143308 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-11 23:55 - 2021-03-24 04:22 - 000756176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-11 23:52 - 2019-12-07 16:53 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-11 23:51 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-11 23:36 - 2021-03-24 05:03 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{C4E40AB8-174C-452A-A4B3-6C59021B6DB9}
2023-09-11 18:32 - 2022-07-26 21:35 - 000000000 ____D C:\Users\ASUS\AppData\Local\CrashDumps
2023-09-11 18:30 - 2022-07-16 15:55 - 000000000 ____D C:\Program Files\CCleaner
2023-09-11 16:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-11 16:33 - 2021-03-24 04:27 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-11 14:47 - 2023-07-29 16:43 - 000000000 ____D C:\ProgramData\BSD
2023-09-11 14:47 - 2020-01-06 17:57 - 000000000 ____D C:\Users\ASUS\AppData\Local\Google
2023-09-11 14:10 - 2022-10-29 14:31 - 000000000 ____D C:\WINDOWS\pss
2023-09-11 14:08 - 2022-10-29 14:36 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-09-10 17:11 - 2021-03-24 04:30 - 000000000 ____D C:\Users\ASUS
2023-09-10 12:07 - 2020-01-06 17:53 - 000000000 ___RD C:\Users\ASUS\3D Objects
2023-09-10 11:14 - 2020-03-26 21:40 - 000000000 ____D C:\Users\ASUS\AppData\Local\ElevatedDiagnostics
2023-09-10 11:13 - 2022-07-16 15:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-10 10:20 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-09-10 09:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-09-10 09:55 - 2023-03-04 17:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-10 09:55 - 2023-03-04 17:07 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-10 09:41 - 2021-03-24 05:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2023-09-10 09:40 - 2023-06-04 14:57 - 000000000 ____D C:\Users\ASUS\Suite NCH Software
2023-09-10 09:40 - 2022-10-27 10:29 - 000000000 ____D C:\Users\ASUS\Desktop\Appli peu utilisees
2023-09-10 09:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-09-10 09:17 - 2020-03-03 15:05 - 000000000 ____D C:\ProgramData\NCH Software
2023-09-10 09:17 - 2020-03-03 15:05 - 000000000 ____D C:\Program Files (x86)\NCH Software
2023-08-31 14:41 - 2020-01-06 17:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-30 08:35 - 2020-09-30 18:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-08-28 01:07 - 2021-04-11 16:17 - 000000000 ____D C:\WINDOWS\Minidump
2023-08-28 01:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-22 15:50 - 2022-10-19 07:45 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-22 08:32 - 2022-10-19 07:45 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-16 13:37 - 2020-01-06 18:37 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Office
2023-08-16 13:01 - 2023-04-14 18:03 - 000176256 _____ C:\Users\ASUS\AppData\Local\GDIPFONTCACHEV1.DAT
2023-08-15 12:11 - 2023-03-04 15:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\R@1n-KMS
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par ASUS (administrateur) sur DESKTOP-B087U96 (ASUSTeK COMPUTER INC. X555LA) (12-09-2023 22:38:41)
Exécuté depuis C:\Users\ASUS\Downloads\FRST64-2.1.exe
Profils chargés: ASUS
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3393 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\TotalAV\SecurityService.exe ->) (Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
(C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\LAClient\laclient.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.117.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MRT.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel(R) pGFX 2020 -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21548.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21548.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2305.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3385_none_7e1c800a7c81ffd9\TiWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.117.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1380960 2022-07-06] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [Microsoft Edge Update] => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\MicrosoftEdgeUpdateCore.exe [263648 2023-07-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [MicrosoftEdgeAutoLaunch_74301B2884F50560207D3A8AEF963FB6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4108344 2023-09-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4001726294-2036389126-3737119891-1001\...\Run: [] => [X]
HKLM\...\Print\Monitors\EPSON XP-342 343 345 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBREE.DLL [182784 2015-12-09] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\HP c111 Status Monitor: C:\WINDOWS\system32\hpinkstsc111LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PDF Suite 2020 Monitor: C:\Windows\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2020-04-13] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 1510 series.lnk [2023-09-12]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 1510 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN38O1FND005XJ;CONNECTION=USB;MONITOR=1;
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {A9C9C313-B203-44EC-8E6B-C809E88D6563} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {7C0813D5-F7FE-4214-9FEB-2556D7A2ED79} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {252691BA-94FD-414F-93E8-1C5F0F7A7868} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5ff73e75-a068-469c-b894-e37cb9087a16" --version "6.15.10623" --silent
Task: {8B71D9B8-93D8-4EF9-B72B-EB95A4EE0AA5} - System32\Tasks\CCleanerSkipUAC - ASUS => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F7E59214-8D01-4ACC-BB1D-420DF4218611} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-01-06] (Google Inc -> Google LLC)
Task: {1D4B041D-F040-4258-8932-42AB9BFDA75F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2020-01-06] (Google Inc -> Google LLC)
Task: {7A96CE96-F09E-490D-9408-87A006858EC8} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5744800 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
Task: {73DAF3D4-D01D-4B4E-8884-F986FBE8ED1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8365B7E-4E15-4631-AC68-F832E242F577} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A774A58C-3966-406B-A186-EC67AA1E053E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0719324A-B06F-4E0C-AADF-4A45DCF14936} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7DD757C4-EBA8-4C5F-AEA1-52FFF323F1A7} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4001726294-2036389126-3737119891-1001Core => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {1684C0CA-A5AE-4BBF-BD1B-F0A749F101B2} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4001726294-2036389126-3737119891-1001UA => C:\Users\ASUS\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [215992 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C32627E-834D-4CA8-A81E-CDE1FB7EFF6C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [711608 2021-12-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {3981DE54-6EA8-437F-A583-5C285B16CBF3} - System32\Tasks\NCH Software\WavePadDowngrade => C:\Program Files (x86)\NCH Software\WavePad\wavepad.exe [7171240 2023-05-20] (NCH Software, Inc. -> NCH Software)
Task: {F857E594-9C9C-481C-8D62-9CEF37E752E9} - System32\Tasks\R@1n-KMS\Office 16, Office16ProPlusVL_KMS_Client edition => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-17] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate
Task: {92A13144-BCD4-4F86-B6EF-1773C74D2AD1} - System32\Tasks\R@1n-KMS\Windows(R), Professional edition => C:\WINDOWS\System32\Wbem\wmic.exe [576000 2022-06-17] (Microsoft Windows -> Microsoft Corporation) -> path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
Task: {6CA2DF85-C564-4134-8686-6F7E4608361C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D5F7148E-24C3-4F7E-99EA-021E31B2014A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {749F0E18-294A-4CE9-9226-A33F5289BC2C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01f9285e-afb1-4125-9e44-5bc203590013}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{447347e3-97d1-4c52-a153-19f6049a21c9}: [DhcpNameServer] 212.27.40.241 212.27.40.240
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-12]
Edge Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-12]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-08-25]
Edge Extension: (Edge relevant text changes) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-12]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\ASUS\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-09-10]
FireFox:
========
FF DefaultProfile: lvvmt34x.default
FF ProfilePath: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\lvvmt34x.default [2023-09-11]
FF Extension: (Avira Password Manager) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\lvvmt34x.default\Extensions\passwordmanager@avira.com [2021-04-05]
FF ProfilePath: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\m77j8gxi.default-release-1685854428072 [2023-09-11]
FF Extension: (Logitech SetPoint) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\m77j8gxi.default-release-1685854428072\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2023-07-07]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-06-17] [non signé]
FF Plugin-x32: @DVR/npmedia,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npmedia.dll [2014-11-03] () [Fichier non signé]
FF Plugin-x32: @DVR/npTimeGrid,version=3.1.0.4 -> C:\Program Files (x86)\webrec\WEB30\WebPlugin\npTimeGrid.dll [2014-11-03] (Unauthorized copy) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-07-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-07-10] (Oracle America, Inc. -> Oracle Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-04-13] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-04-13] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default [2023-09-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-07]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-08-12]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-09-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-12]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-09-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-07]
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\System Profile [2023-08-12]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [462432 2022-07-06] (Digital Wave Ltd -> Digital Wave Ltd)
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [274584 2023-08-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [124928 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 avgVpnRdr; C:\WINDOWS\System32\drivers\avgVpnRdr.sys [76720 2023-07-04] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 ProtectedELAM; C:\WINDOWS\System32\drivers\protected_elam.sys [18912 2023-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> TODO:
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [865216 2018-01-30] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55872 2023-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [574872 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
U1 avgbdisk; pas de ImagePath
U2 OSppSvc; pas de ImagePath
S3 WinRing0_1_2_0; \??\C:\Users\ASUS\AppData\Local\Temp\tmp6A5A.tmp [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-12 22:38 - 2023-09-12 22:49 - 000022291 _____ C:\Users\ASUS\Downloads\FRST.txt
2023-09-12 22:36 - 2023-09-12 22:36 - 000000000 ____D C:\Users\ASUS\Downloads\FRST-OlderVersion
2023-09-12 22:35 - 2023-09-12 22:43 - 000000000 ____D C:\FRST
2023-09-12 22:33 - 2023-09-12 22:36 - 002382848 _____ (Farbar) C:\Users\ASUS\Downloads\FRST64-2.1.exe
2023-09-12 22:31 - 2023-09-12 22:31 - 000000000 ___HD C:\$WinREAgent
2023-09-12 22:04 - 2023-09-12 22:04 - 000607449 _____ C:\Users\ASUS\Downloads\Temu _ Commander 2.pdf
2023-09-12 21:03 - 2023-09-12 21:03 - 000498297 _____ C:\Users\ASUS\Downloads\Temu _ Commander.pdf
2023-09-12 10:28 - 2023-09-12 10:28 - 000000000 ____D C:\Users\ASUS\Documents\TotalAV
2023-09-12 10:24 - 2023-09-12 15:43 - 000001162 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
2023-09-12 10:24 - 2023-09-12 10:24 - 000000000 ____D C:\Users\ASUS\AppData\Local\GUI
2023-09-12 10:24 - 2023-09-12 10:24 - 000000000 ____D C:\ProgramData\SecuritySuite
2023-09-12 10:23 - 2023-09-12 10:44 - 000000000 ____D C:\Program Files (x86)\TotalAV
2023-09-12 10:23 - 2023-09-12 10:24 - 000000000 ____D C:\ProgramData\TotalAV
2023-09-12 10:23 - 2023-09-12 10:23 - 000001064 _____ C:\Users\Public\Desktop\TotalAV.lnk
2023-09-12 10:22 - 2023-09-12 10:23 - 057494344 _____ C:\Users\ASUS\Downloads\TotalAV_Setup.exe
2023-09-12 00:04 - 2023-09-12 00:04 - 000000000 ____D C:\Users\ASUS\AppData\Local\Backup
2023-09-11 15:54 - 2023-09-11 15:55 - 000001417 _____ C:\Users\ASUS\Desktop\ETEINDRE PC.lnk
2023-09-11 14:49 - 2023-09-11 14:49 - 001372712 _____ (Google LLC) C:\Users\ASUS\Downloads\ChromeSetup.exe
2023-09-11 14:21 - 2023-09-12 07:39 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\ZHP
2023-09-11 14:21 - 2023-09-11 14:21 - 000000874 _____ C:\Users\ASUS\Desktop\ZHPCleaner.lnk
2023-09-11 14:21 - 2023-09-11 14:21 - 000000000 ____D C:\Users\ASUS\AppData\Local\ZHP
2023-09-11 14:20 - 2023-09-11 14:20 - 003343008 _____ (Nicolas Coolman) C:\Users\ASUS\Downloads\ZHPCleaner.exe
2023-09-11 13:57 - 2023-09-11 13:57 - 000000000 ____D C:\WINDOWS\Panther
2023-09-09 17:35 - 2023-09-10 09:40 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\vlc
2023-09-09 17:34 - 2023-09-09 17:34 - 000000000 ____D C:\Program Files\VideoLAN
2023-08-16 12:59 - 2023-08-16 13:37 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Publisher
2023-08-14 07:41 - 2023-08-14 07:41 - 000000613 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\drouot.lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-09-12 22:31 - 2020-01-07 04:30 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-09-12 22:31 - 2020-01-07 04:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-09-12 21:49 - 2021-12-17 06:49 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-09-12 21:49 - 2020-01-06 17:58 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-09-12 21:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-12 20:34 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-09-12 19:31 - 2021-03-24 04:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-09-12 15:44 - 2020-01-07 04:50 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2023-09-12 15:42 - 2020-01-06 18:41 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-09-12 15:42 - 2020-01-06 18:41 - 000000000 __SHD C:\Users\ASUS\IntelGraphicsProfiles
2023-09-12 12:15 - 2023-06-17 08:09 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2023-09-12 10:23 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-09-12 07:57 - 2021-03-24 05:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-09-12 07:57 - 2021-03-23 23:11 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-12 07:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-09-12 07:56 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-09-12 00:07 - 2020-01-06 17:53 - 000000000 ____D C:\Users\ASUS\AppData\Local\Packages
2023-09-12 00:02 - 2021-03-24 04:44 - 001684792 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-09-12 00:02 - 2019-12-07 16:50 - 000759056 _____ C:\WINDOWS\system32\perfh00C.dat
2023-09-12 00:02 - 2019-12-07 16:50 - 000143308 _____ C:\WINDOWS\system32\perfc00C.dat
2023-09-11 23:55 - 2021-03-24 04:22 - 000756176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-09-11 23:52 - 2019-12-07 16:53 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-09-11 23:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-09-11 23:51 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-09-11 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-09-11 23:36 - 2021-03-24 05:03 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{C4E40AB8-174C-452A-A4B3-6C59021B6DB9}
2023-09-11 18:32 - 2022-07-26 21:35 - 000000000 ____D C:\Users\ASUS\AppData\Local\CrashDumps
2023-09-11 18:30 - 2022-07-16 15:55 - 000000000 ____D C:\Program Files\CCleaner
2023-09-11 16:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-09-11 16:33 - 2021-03-24 04:27 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-09-11 14:47 - 2023-07-29 16:43 - 000000000 ____D C:\ProgramData\BSD
2023-09-11 14:47 - 2020-01-06 17:57 - 000000000 ____D C:\Users\ASUS\AppData\Local\Google
2023-09-11 14:10 - 2022-10-29 14:31 - 000000000 ____D C:\WINDOWS\pss
2023-09-11 14:08 - 2022-10-29 14:36 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2023-09-10 17:11 - 2021-03-24 04:30 - 000000000 ____D C:\Users\ASUS
2023-09-10 12:07 - 2020-01-06 17:53 - 000000000 ___RD C:\Users\ASUS\3D Objects
2023-09-10 11:14 - 2020-03-26 21:40 - 000000000 ____D C:\Users\ASUS\AppData\Local\ElevatedDiagnostics
2023-09-10 11:13 - 2022-07-16 15:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-09-10 10:20 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-09-10 09:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-09-10 09:55 - 2023-03-04 17:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-10 09:55 - 2023-03-04 17:07 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-09-10 09:41 - 2021-03-24 05:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2023-09-10 09:40 - 2023-06-04 14:57 - 000000000 ____D C:\Users\ASUS\Suite NCH Software
2023-09-10 09:40 - 2022-10-27 10:29 - 000000000 ____D C:\Users\ASUS\Desktop\Appli peu utilisees
2023-09-10 09:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2023-09-10 09:17 - 2020-03-03 15:05 - 000000000 ____D C:\ProgramData\NCH Software
2023-09-10 09:17 - 2020-03-03 15:05 - 000000000 ____D C:\Program Files (x86)\NCH Software
2023-08-31 14:41 - 2020-01-06 17:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-08-30 08:35 - 2020-09-30 18:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-08-28 01:07 - 2021-04-11 16:17 - 000000000 ____D C:\WINDOWS\Minidump
2023-08-28 01:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-08-22 15:50 - 2022-10-19 07:45 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-22 08:32 - 2022-10-19 07:45 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-16 13:37 - 2020-01-06 18:37 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Office
2023-08-16 13:01 - 2023-04-14 18:03 - 000176256 _____ C:\Users\ASUS\AppData\Local\GDIPFONTCACHEV1.DAT
2023-08-15 12:11 - 2023-03-04 15:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\R@1n-KMS
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================