cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 19-04-2024 01
Exécuté par User (administrateur) sur DESKTOP-FBEISMA (ASUSTeK COMPUTER INC. K55VM) (01-05-2024 11:43:34)
Exécuté depuis C:\Users\User\Downloads\FRST.exe
Profils chargés: User
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4046 (X86) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() <==== ATTENTION [zéro octet? (Erreur=3)] C:\$WINDOWS.~BT\Work\43A47C1F-7461-43AE-99F0-34883BB68A8E\DismHost.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(C:\$WINDOWS.~BT\Sources\SetupHost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe
(C:\Program Files\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files\ControlCenter4\BrCcUxSys.exe
(C:\Windows\SoftwareDistribution\Download\68d3a991646a4140d4eb50a9bdcfe189\WindowsUpdateBox.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files\Browny02\Brother\BrStMonW.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(explorer.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Google LLC -> Google LLC) C:\Program Files\Google\GoogleUpdater\126.0.6441.0\updater.exe <2>
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel® Corporation) [Fichier non signé] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <28>
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files\Browny02\BrYNSvc.exe
(services.exe ->) (Guillemot Corporation -> Thrustmaster®) C:\Program Files\Thrustmaster\Thrustmaster FFB Driver\drivers\x86\tmGAInstall.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.22091.10061.0_x86__8wekyb3d8bbwe\Video.UI.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\System32\AggregatorHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4289_none_22085b38c41cd65d\TiWorker.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\68d3a991646a4140d4eb50a9bdcfe189\WindowsUpdateBox.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1804648 2015-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [89088 2015-03-16] (Intel® Corporation) [Fichier non signé]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11414160 2017-08-23] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [8162200 2024-03-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3087360 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-11-19] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3084288 2012-07-31] (Brother Industries, Ltd.) [Fichier non signé]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2074328100-4005188952-2321874348-1001\...\Run: [Chromium] => "c:\users\user\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session [1068544 2016-03-18] (The Chromium Authors) [Fichier non signé]
HKU\S-1-5-21-2074328100-4005188952-2321874348-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3012032 2024-04-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2074328100-4005188952-2321874348-1001\...\MountPoints2: {b113a51f-8c6b-11e5-93cd-806e6f6e6963} - "E:\RA32\viewer32.exe"
HKU\S-1-5-21-2074328100-4005188952-2321874348-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [793600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\Canon MG5100 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPDAD.DLL [27648 2010-08-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5100 series: C:\WINDOWS\system32\CNMLMAD.DLL [290816 2010-08-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\...\AppCompatFlags\InstalledSDB\{49cd2afd-8679-48a5-90ab-e7044bee2465}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{49cd2afd-8679-48a5-90ab-e7044bee2465}.sdb [2018-06-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.91\Installer\chrmstp.exe [2024-04-27] (Google LLC -> Google LLC)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StarOffice 8.lnk [2016-11-02]
ShortcutTarget: StarOffice 8.lnk -> D:\StarOffice 8\program\quickstart.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2015-11-18]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [Fichier non signé]
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {9AD14BFA-1193-4C93-BCAE-2527B47063C0} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {16A4B807-4727-4CB3-AAE9-5C525780FE36} - System32\Tasks\{6151E599-FB30-43A4-9B7F-4C7E3708AE95} => C:\Windows\System32\pcalua.exe [43520 2023-11-15] (Microsoft Windows -> Microsoft Corporation) -> -a "C:\Program Files\Aviation\Flight Simulator 9\fs9org.exe" -d "C:\Program Files\Aviation\Flight Simulator 9"
Task: {76E0F91B-6D57-41BD-8D02-9E463E37E13E} - System32\Tasks\{68816C39-3069-4840-BC34-C22E891D59A9} => C:\Windows\System32\pcalua.exe [43520 2023-11-15] (Microsoft Windows -> Microsoft Corporation) -> -a E:\INSTALL.EXE -d E:\
Task: {4B3259BF-2CD9-48E2-B151-663F44F4DFE7} - System32\Tasks\{9D18257D-25C2-4FF6-900F-1CC6B3BE1767} => C:\Windows\System32\pcalua.exe [43520 2023-11-15] (Microsoft Windows -> Microsoft Corporation) -> -a "C:\Program Files\Flight Simulator 9\fs9.exe" -d "C:\Program Files\Flight Simulator 9"
Task: {F9927818-C72A-48B1-904E-57EFE730649A} - System32\Tasks\{D8D14756-D763-496D-8CCC-2C625EE1369F} => C:\Windows\System32\pcalua.exe [43520 2023-11-15] (Microsoft Windows -> Microsoft Corporation) -> -a E:\SETUP\3DSETUP\3DSETUP.EXE -d E:\SETUP\3DSETUP
Task: {B4A23269-0850-40B9-B565-71A0F6263138} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4518296 2024-03-20] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (l'élément de données a 99 caractères en plus).
Task: {F94EC0FB-76E5-46F5-85A4-A9C848DAE6CC} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6914968 2024-03-14] (Avast Software s.r.o. -> Avast Software)
Task: {DF7B9C58-77FD-4E77-A170-FEEE324506CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup /iavs
Task: {A3BBDB3C-916B-4E68-9075-73ABA285E777} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [4909880 2024-02-14] (Microsoft Windows -> Microsoft Corporation)
Task: {6BF08339-D4AF-4C09-A19D-130995B50F29} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{1117963E-9BFB-483C-8078-0C58E8F848C2} => C:\Program Files\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {043A1878-B153-459E-8E5B-4A5F58135CA7} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [89088 2015-03-16] (Intel® Corporation) [Fichier non signé]
Task: {2DECEEFE-BD29-45E9-ACED-486E4D5AA353} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => %windir%\System32\RemoteFXvGPUDisablement.exe Disable (Pas de fichier)
Task: {C80C67F8-EEFF-4107-A8F9-CE86FE3916A3} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => %windir%\System32\RemoteFXvGPUDisablement.exe Warning (Pas de fichier)
Task: {DB13DDCB-54E9-425A-A701-C25EC7CD48F6} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [606624 2024-05-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E82E8195-2102-40AE-95A3-F1F1C76874CF} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2074328100-4005188952-2321874348-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [606624 2024-05-01] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {E5D9080A-93AB-4619-AF33-5BB70176B48B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [31136 2024-05-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {23E11E57-22DF-4FA3-BAE7-3C8746AB0366} - System32\Tasks\Samsung_PSSD_Registration => C:\ProgramData\Samsung Apps\Portable SSD\SamsungPortableSSDMon.exe [500704 2021-02-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c36627b4-4a72-4760-be97-bf5a3a092326}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-01]
Edge HomePage: Default -> hxxp://www.google.com/
Edge StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com/"
Edge Extension: (Google Docs hors connexion) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF DefaultProfile: tynyi778.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tynyi778.default [2023-10-21]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\543q64t9.default-release [2024-05-01]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [Pas de fichier]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2024-04-29]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://smsmms.orange.fr; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com"
CHR DefaultSearchURL: Default -> hxxps://www.mycanal.fr/home-icon.png
CHR Extension: (Word Online) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2016-08-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-10-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-30]
CHR HKU\S-1-5-21-2074328100-4005188952-2321874348-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [270336 2012-07-13] (Brother Industries, Ltd.) [Fichier non signé]
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [299488 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [15658904 2024-03-20] (Avast Software s.r.o. -> AVAST Software)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4665168 2015-09-23] (SafeNet, Inc. -> SafeNet Inc.)
R2 HuaweiHiSuiteService.exe; C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe [154432 2019-08-19] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [292832 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [426480 2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [392056 2023-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [6658496 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 tmGAInstall; C:\Program Files\Thrustmaster\Thrustmaster FFB Driver\drivers\x86\tmGAInstall.EXE [41088 2017-09-18] (Guillemot Corporation -> Thrustmaster®)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [300416 2023-09-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2136112 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [85032 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [116680 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [107648 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [65536 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R3 iBtFltCoex; C:\WINDOWS\System32\drivers\ibtfltcoex.sys [66832 2015-11-16] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44016 2015-12-01] (Intel(R) Wireless Display -> Intel Corporation)
R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35320 2015-12-01] (Intel(R) Wireless Display -> Intel Corporation)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [55104 2015-11-16] (Intel Corporation -> Intel Corporation)
R0 MsSecCore; C:\WINDOWS\System32\drivers\msseccore.sys [21888 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
S3 MsSecWfp; C:\WINDOWS\System32\drivers\mssecwfp.sys [28544 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNe32; C:\WINDOWS\System32\drivers\NETwen01.sys [2670592 2019-12-07] (Microsoft Windows -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_x86_e8ed594a72e6bc27\nvlddmkm.sys [14865864 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_x86_e8ed594a72e6bc27\nvpciflt.sys [43040 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RSBASTOR; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [244480 2015-11-16] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [562176 2019-12-07] (Microsoft Windows -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [146048 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [38280 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [38624 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [214016 2023-12-13] (Microsoft Windows -> Microsoft Corporation)
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2024-05-01 11:43 - 2024-05-01 11:46 - 000023553 _____ C:\Users\User\Downloads\FRST.txt
2024-05-01 11:31 - 2024-05-01 11:45 - 000000000 ____D C:\FRST
2024-05-01 11:30 - 2024-05-01 11:30 - 002092544 _____ (Farbar) C:\Users\User\Downloads\FRST.exe
2024-05-01 09:25 - 2024-05-01 09:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-30 14:25 - 2024-04-30 14:25 - 000000000 ___HD C:\$WinREAgent
2024-04-28 20:41 - 2024-04-28 20:48 - 002280244 _____ C:\WINDOWS\Minidump\042824-67906-01.dmp
2024-04-26 13:14 - 2024-04-26 13:18 - 002150236 _____ C:\WINDOWS\Minidump\042624-58156-01.dmp
2024-04-20 20:44 - 2024-04-20 20:48 - 002451148 _____ C:\WINDOWS\Minidump\042024-57812-01.dmp
2024-04-18 22:04 - 2024-04-18 22:23 - 002407748 _____ C:\WINDOWS\Minidump\041824-51796-01.dmp
2024-04-12 21:42 - 2024-04-12 21:45 - 002296076 _____ C:\WINDOWS\Minidump\041224-50640-01.dmp
2024-04-11 11:59 - 2024-04-11 12:14 - 001739532 _____ C:\WINDOWS\Minidump\041124-57750-01.dmp
2024-04-10 18:16 - 2024-04-10 18:16 - 000159142 _____ C:\Users\User\Downloads\urssaf-justificatif-declaration-2024-T1-20240410-18h16.pdf
2024-04-10 18:13 - 2024-04-10 18:13 - 000159164 _____ C:\Users\User\Downloads\urssaf-justificatif-declaration-2023-T4-20240410-18h13.pdf
2024-04-10 18:08 - 2024-04-10 18:08 - 000200802 _____ C:\Users\User\Downloads\document-3.pdf
2024-04-10 18:08 - 2024-04-10 18:08 - 000200802 _____ C:\Users\User\Downloads\document-2.pdf
2024-04-08 21:26 - 2024-04-08 21:33 - 002291980 _____ C:\WINDOWS\Minidump\040824-60421-01.dmp
2024-04-08 21:20 - 2024-04-12 12:09 - 000014275 _____ C:\Users\User\Documents\FERMETURE PROVISOIRE PENSION CANINE.odt
2024-04-07 21:47 - 2024-04-07 21:47 - 000000000 ___RD C:\Users\User\AppData\Roaming\Brother
2024-04-07 21:47 - 2024-04-07 21:47 - 000000000 ____D C:\Users\User\AppData\LocalLow\Brother
2024-04-06 11:31 - 2024-04-06 14:53 - 000016570 _____ C:\Users\User\Documents\MENU RESTAURANT verte campagne.odt
2024-04-05 10:42 - 2024-04-05 10:42 - 000000000 ____D C:\WINDOWS\system32\o2
2024-04-05 10:41 - 2024-04-05 11:00 - 002509300 _____ C:\WINDOWS\Minidump\040524-87609-01.dmp

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2024-05-01 11:29 - 2021-05-06 19:34 - 000013338 _____ C:\WINDOWS\diagwrn.xml
2024-05-01 11:29 - 2021-05-06 19:34 - 000013338 _____ C:\WINDOWS\diagerr.xml
2024-05-01 11:21 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\Registration
2024-05-01 11:20 - 2019-12-07 14:57 - 000000000 ___HD C:\$WINDOWS.~BT
2024-05-01 11:20 - 2019-12-07 08:10 - 000000000 ____D C:\WINDOWS\INF
2024-05-01 11:18 - 2019-12-07 08:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-01 10:52 - 2023-10-21 17:07 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-05-01 10:50 - 2021-04-26 19:19 - 000000000 ___DC C:\WINDOWS\Panther
2024-05-01 10:33 - 2021-05-06 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-05-01 09:55 - 2019-12-07 08:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-05-01 09:37 - 2019-12-07 08:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-05-01 09:36 - 2023-10-21 17:07 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-01 09:36 - 2023-10-21 17:07 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2024-05-01 09:34 - 2015-11-16 17:39 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles
2024-05-01 09:33 - 2021-05-06 19:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-05-01 09:33 - 2021-05-06 19:09 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-01 09:33 - 2018-04-26 11:29 - 000000000 ____D C:\Users\User\AppData\Local\AVAST Software
2024-05-01 09:33 - 2017-12-16 00:23 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2024-05-01 09:33 - 2017-08-03 20:32 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-01 09:33 - 2015-11-19 16:25 - 000000000 ____D C:\Users\User\AppData\Roaming\AVAST Software
2024-05-01 09:33 - 2015-11-19 16:23 - 000000000 ____D C:\ProgramData\AVAST Software
2024-05-01 09:33 - 2015-11-19 16:23 - 000000000 ____D C:\Program Files\AVAST Software
2024-05-01 09:32 - 2019-12-07 08:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-05-01 09:30 - 2015-11-16 16:38 - 000759712 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-05-01 09:29 - 2021-05-06 19:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-05-01 09:16 - 2024-03-22 11:17 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-04-30 14:46 - 2021-05-06 19:26 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-30 14:46 - 2019-12-07 14:20 - 000792836 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-30 14:46 - 2019-12-07 14:20 - 000149966 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-29 07:15 - 2023-10-21 17:22 - 000001240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-04-29 02:43 - 2022-01-19 18:38 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-28 21:30 - 2019-12-07 08:12 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-28 21:30 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-28 21:13 - 2023-11-10 12:54 - 000000000 ____D C:\Users\User\Documents\ANDREE PISSOT
2024-04-28 20:48 - 2023-11-09 08:48 - 000000000 ____D C:\WINDOWS\Minidump
2024-04-28 20:41 - 2023-11-09 08:48 - 645047192 _____ C:\WINDOWS\MEMORY.DMP
2024-04-28 15:02 - 2021-05-06 19:13 - 000002388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-21 11:34 - 2023-11-12 18:59 - 000000360 _____ C:\WINDOWS\BRRBCOM.INI
2024-04-10 11:01 - 2015-11-16 16:35 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 10:56 - 2015-11-16 16:35 - 187004976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-07 09:49 - 2018-10-04 13:20 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2024-04-07 09:46 - 2021-05-07 10:59 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-07 09:46 - 2021-05-07 10:59 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7429dfe26326a
2024-04-07 09:46 - 2021-05-06 19:36 - 000002486 _____ C:\WINDOWS\system32\Tasks\Samsung_PSSD_Registration
2024-04-06 11:31 - 2023-11-10 13:04 - 000000000 ____D C:\Users\User\Documents\DOSSIER BABETH
2024-04-03 17:18 - 2024-03-28 23:08 - 002226140 _____ C:\WINDOWS\Minidump\032824-111093-01.dmp
2024-04-03 16:19 - 2019-12-07 08:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP

==================== Fichiers à la racine de certains dossiers ========

2017-08-14 22:59 - 2017-08-14 22:59 - 000000203 _____ () C:\Users\User\AppData\Roaming\Installeur OpenSceneryX.plist
2016-09-15 19:14 - 2023-10-21 23:38 - 000004843 _____ () C:\Users\User\AppData\Roaming\LTspiceXVII.ini
2015-12-02 17:09 - 2021-02-14 13:15 - 000000028 _____ () C:\Users\User\AppData\Local\X-Plane Installer.prf
2015-11-16 20:49 - 2023-02-24 17:28 - 000000077 _____ () C:\Users\User\AppData\Local\X-Plane_drm.prf
2018-01-13 18:38 - 2018-01-13 18:38 - 000000020 _____ () C:\Users\User\AppData\Local\x-plane_install.txt
2015-11-16 20:49 - 2023-02-24 17:25 - 000000136 _____ () C:\Users\User\AppData\Local\x-plane_install_10.txt
2016-12-27 23:40 - 2023-02-23 17:39 - 000000082 _____ () C:\Users\User\AppData\Local\X-Plane_xdd.prf

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité