Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-08.2024
Exécuté par mamimolette77 (administrateur) sur CLAUDINE-PC (ASUSTeK COMPUTER INC. G551JW) (11-08-2024 19:51:51)
Exécuté depuis C:\Users\claud_000\Desktop\FRST64.exe
Profils chargés: mamimolette77
Plate-forme: Microsoft Windows 10 Famille Version 2004 19041.572 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mep.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\64DriverLoad.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe ->) (Connectwise, LLC -> ScreenConnect Software) C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsClient.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <17>
(RuntimeBroker.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(RuntimeBroker.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(RuntimeBroker.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Video DSP\DriverMFTService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Connectwise, LLC -> ) C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [UDP Monitor] => C:\Program Files\UDP Monitor\udpmon.exe (Pas de fichier)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [463800 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () [Fichier non signé]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [Fichier non signé]
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [68822328 2021-01-25] (Discord Inc. -> Discord Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [159800 2017-07-25] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [Spotify] => C:\Users\claud_000\AppData\Roaming\Spotify\Spotify.exe [25591712 2019-07-20] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [AvastBrowserAutoLaunch_8A1D57FCFD27F8656CECB0E2149CB4C8] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [MicrosoftEdgeAutoLaunch_D15F2D973E7D63667391D701343AE5A4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814968 2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [EPSDNMON] => "" (Pas de fichier)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [UpdateStore] => cmd /c powershell -windowstyle hidden cd $env:TEMP; powershell -ep bypass .\SystemServices.ps1 (Pas de fichier)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44970408 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\MountPoints2: {0bd81eb0-3464-11eb-8382-086266b63cd1} - "G:\AutoRun.exe"
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\MountPoints2: {c22e83b4-8178-11eb-8392-086266b63cd1} - "G:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG4200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB9.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: C:\WINDOWS\system32\CNMLMB9.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\WINDOWS\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\WINDOWS\system32\CNMLMCS.DLL [406528 2015-03-15] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\WINDOWS\system32\CNMLMDR.DLL [1302016 2017-03-13] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON XP-7100 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBVFE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\127.0.6533.100\Installer\chrmstp.exe [2024-08-08] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\126.0.25735.183\Installer\chrmstp.exe [2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{6FF59A85-BC37-4CD4-3A6A-2AAF26BA9401}] -> C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsCredentialProvider.dll [2024-05-24] (Connectwise, LLC -> )
Lsa: [Authentication Packages] msv1_0 C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsAuthenticationPackage.dll
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2016-08-09] () <==== ATTENTION [zéro octet Fichier/Dossier]
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Login1.vbs [2024-08-06] () [Fichier non signé]
InternetURL: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft.url -> URL: file:///C:/Users/CLAUD_~1/AppData/Local/Temp/WindowStore.vbs <==== ATTENTION
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-12-13]
ShortcutTarget: Twitch.lnk -> C:\Users\claud_000\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
InternetURL: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updates.url -> URL: file:///C:/Users/CLAUD_~1/AppData/Local/Temp/Brave.vbs <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {421CD1B7-319D-4C8D-8C74-48DB58928A5C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {616B80FD-2D90-4D48-819A-788AB3EAAA91} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {8280F83D-0D7D-488F-8BB0-A58C712D2957} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {A5620819-8215-4A80-BAF1-367ECC4658CF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {D6D873EA-DCE2-4D22-A54E-10742398D8F5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {FD1DB9F6-B794-4843-BA82-3B896461D1A3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {8408B336-342B-463B-8C66-33DB82DCA1E7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392 2014-12-17] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {9EE072A7-9208-48CB-9415-2A708510A52B} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Task: {67E5564D-F7CF-45C8-AFEC-0D0AF1E4D995} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [120632 2014-06-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B024A282-BFDA-483B-883A-690F90AB331F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {51ABA3B4-D030-4544-B19D-B52F3C3C5BB2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {53AFF6DE-24C5-4E08-9E55-86D0A37AEE66} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup /iavs
Task: {3FEB5CA2-F76E-4E75-B8AB-873B567781AE} - System32\Tasks\AvastBrowserProtectS-1-5-21-1339820563-475386342-3544726719-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-29] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7CB79A75-EB5A-4B6F-B8F3-B66E5DDC02FA} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1F7D3B14-DA62-4771-93F5-0600BC536383} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {39283E5B-841D-4977-B8EA-959B3313E941} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5194176 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {CDE137B8-58E7-4C99-803C-7C57FE5C823E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [8064960 2024-07-18] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {9547F93C-D938-4EF6-9F39-CCC8F70CFE95} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DE0EA827-5D3C-475A-A07E-17899F842727} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr (Accès refusé) <==== ATTENTION
Task: {ECD7B63E-E047-4524-A2C6-75130BA8D7AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {052AE4EF-1C2C-4546-9A2B-B592EB7697BF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "1a8209af-a708-48de-8860-400bed121640" --version "6.26.11169" --silent
Task: {C2C09E7F-59C7-42FD-B2E0-B79522B1E03C} - System32\Tasks\CCleanerSkipUAC - mamimolette77 => C:\Program Files\CCleaner\CCleaner.exe [38931368 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {FF0B0BD7-3A7B-4312-9B58-42B7E5A37F2A} - System32\Tasks\dawr oftEdgeUpdate => C:\Users\Public\dawr.vbs (Pas de fichier)
Task: {06BA0E4C-C1D4-4691-AECC-F36C1D535C4F} - System32\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19} => C:\Windows\System32\spool\drivers\x64\3\E_YTSVFE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6E0C93D0-9743-4659-9A39-0FB8CE1A9CA9} - System32\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A} => C:\Windows\System32\spool\drivers\x64\3\E_YTSVFE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {AACFDD28-D3B2-44BE-A44A-14DF41A84957} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{BF12FED0-7A36-4FC3-B7BB-0CFF8BCE6EF2} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {8714FAD0-17D9-4276-91ED-3523F2839747} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Claudine-PC-mamimolette77 Claudine-PC => C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE [470720 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {34B4960D-31AF-4B5E-82D3-33015BA0C8CB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {971845A4-6660-45D2-87E7-50A90865B07B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {570CB2A0-C111-4726-81D2-F57A5BF31431} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {DE795C7A-400A-462F-B6EC-3B1C6B30E45A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {A0F97598-50BA-476E-8F92-A7C019A9BEF7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {7107BA35-4652-471C-B895-9B9E1B0206C0} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1339820563-475386342-3544726719-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {EB03455F-C900-4D31-A977-06E93E8ED74B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {F47DCD99-0E21-4C8A-9915-2617213CCE76} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59B6532D-387F-4792-9C9C-BD5605A6E28E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {408AFEE1-228E-4CD1-B9F4-98F7B80C4F42} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BA2ADB1-CAB5-4C64-9DD6-BABEB3E3A8AA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {F4E25BB4-B9BD-448B-B60D-FA5DE58AC1D6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86C40736-B506-432B-A4E9-7796776AB561} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F311AB6-DDE4-4B88-B85C-570B841FF77D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {219CBE95-ED66-42BB-A5B6-80E9CDF8956E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEFDF2EE-615A-45B4-B032-EDEA0D927B0A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17A35061-520C-4B56-A468-EBA3E6ED3A55} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CBE298F-4297-4094-969E-A94C79E816D8} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {7BBD78D0-120E-4A3A-A906-95C3A904E814} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13872856 2014-12-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {D292FF54-68B0-4990-89CD-5A415CE6DB88} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.)
Task: {1FFC058C-4167-4CFB-879C-8269B30790E0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5753752 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
Task: {1DC22CAF-D33D-406D-87E4-A00BF22AA3F8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6193080 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
Task: {56FA96B4-BB11-4248-BB8A-ADF86174656E} - System32\Tasks\UDP Monitor Task => "C:\Program Files\UDP Monitor\udpmon.exe" $(Arg0) (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVFE.EXE:/EXE:{964F3859-09B0-4840-8EDB-BCD8F58FBE19} /F:UpdateWORKGROUP\CLAUDINE-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVFE.EXE:/EXE:{FE1002CF-06E5-47CB-86F9-5C5FBE946C6A} /F:UpdateWORKGROUP\CLAUDINE-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{77324609-9125-4876-ac20-1694cbce2c65}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\14962726F687F593733444: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\14962726F687F593733444: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D243441443: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D243441443: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D244731414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D244731414: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D254144343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D254144343: [DhcpDomain] home
Edge:
=======
DownloadDir: C:\Users\claud_000\Downloads
Edge Profile: C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-17]
Edge Extension: (Edge relevant text changes) - C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-12]
FireFox:
========
FF DefaultProfile: cili18w7.default-1456138729935
FF ProfilePath: C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 [2024-08-11]
FF Homepage: Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 -> hxxps://www.qwant.com/?client=qwant-firefox
FF NewTab: Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 -> hxxps://fr.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10118__190107__yaff
FF Extension: (Lush – Soft) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\lush-soft-colorway@mozilla.org.xpi [2023-03-21]
FF Extension: (Qwant VIPrivacy) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\qwantcomforfirefox@jetpack.xpi [2022-09-02]
FF Extension: (Flash Video Player for Facebook™) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\{d0bfdcce-52c7-4b32-bb45-948f62db8d3f}.xpi [2024-04-29]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-08-05] [] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default [2024-08-11]
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
CHR DefaultSearchKeyword: Default -> qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Extension: (Avast SafePrice) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2024-06-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\126.0.25735.183\elevation_service.exe [1773352 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [807864 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2370376 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1245112 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9039288 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-07-25] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085864 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
R2 DriverMFTService; C:\Program Files (x86)\Asus\ASUS Video DSP\DriverMFTService.exe [9728 2014-10-29] (ASUSTek Computer Inc.) [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2018-04-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-11-02] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-11-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ScreenConnect Client (cb672556b38846d7); C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe [95520 2024-05-29] (Connectwise, LLC -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; "%ProgramData%\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe" [X]
S3 WinDefend; "C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20536 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [229944 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [380984 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [293944 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27744 2024-08-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [271928 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [549848 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [97840 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [948792 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1198648 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [203728 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306648 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 IObitUnlocker; C:\ProgramData\IObitUnlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-08-11 19:51 - 2024-08-11 19:53 - 000045032 _____ C:\Users\claud_000\Desktop\FRST.txt
2024-08-11 19:51 - 2024-08-11 19:53 - 000000000 ____D C:\FRST
2024-08-11 19:50 - 2024-08-11 19:50 - 002397184 _____ (Farbar) C:\Users\claud_000\Desktop\FRST64.exe
2024-08-11 19:29 - 2024-08-11 19:29 - 000000000 ___HD C:\$AV_AVG
2024-08-11 19:28 - 2024-08-11 19:28 - 000000000 ____D C:\Users\claud_000\AppData\Local\AVG
2024-08-11 19:26 - 2024-08-11 19:26 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Gratuit.lnk
2024-08-11 19:26 - 2024-08-11 19:26 - 000002061 _____ C:\Users\Public\Desktop\AVG AntiVirus Gratuit.lnk
2024-08-11 19:26 - 2024-08-11 19:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-08-11 19:26 - 2024-08-11 19:26 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\AVG
2024-08-11 19:26 - 2024-08-11 19:23 - 000314808 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-08-11 19:23 - 2024-08-11 19:34 - 000000000 ____D C:\ProgramData\AVG
2024-08-11 19:23 - 2024-08-11 19:24 - 000000000 ____D C:\Program Files\AVG
2024-08-11 19:23 - 2024-08-11 19:23 - 000000000 ____D C:\ProgramData\Piriform
2024-08-11 19:23 - 2024-08-11 19:23 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-08-11 19:22 - 2024-08-11 19:33 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-08-11 19:22 - 2024-08-11 19:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-08-11 19:22 - 2024-08-11 19:22 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-08-11 19:22 - 2024-08-11 19:22 - 000002928 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - mamimolette77
2024-08-11 19:22 - 2024-08-11 19:22 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-08-11 19:22 - 2024-08-11 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-08-11 19:21 - 2024-08-11 19:36 - 000000000 ____D C:\Program Files\CCleaner
2024-08-11 19:19 - 2024-08-11 19:19 - 075968840 _____ (Piriform Software Ltd) C:\Users\claud_000\Downloads\ccsetup626.exe
2024-08-11 19:08 - 2024-08-11 19:08 - 000000000 ___HD C:\$WinREAgent
2024-08-10 17:47 - 2024-08-10 17:47 - 002596072 _____ (Malwarebytes) C:\Users\claud_000\Downloads\MBSetup(1).exe
2024-08-10 13:11 - 2024-08-08 11:51 - 000455006 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240810-131139.backup
2024-08-10 08:23 - 2024-08-10 18:14 - 000000000 ____D C:\Program Files\UDP Monitor
2024-08-10 08:23 - 2024-08-10 18:09 - 000002210 _____ C:\WINDOWS\system32\Tasks\UDP Monitor Task
2024-08-09 09:00 - 2024-08-09 09:00 - 008790880 _____ (Malwarebytes) C:\Users\claud_000\Downloads\adwcleaner(4).exe
2024-08-08 16:19 - 2024-08-08 16:19 - 000000506 _____ C:\Users\Public\Remove.ps1
2024-08-08 16:18 - 2024-08-08 16:18 - 000000000 ____D C:\ProgramData\IObitUnlocker
2024-08-08 16:18 - 2024-08-08 16:18 - 000000000 ____D C:\ProgramData\IObit
2024-08-08 11:51 - 2024-08-08 11:51 - 000455006 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240808-115157.backup
2024-08-08 11:51 - 2024-04-06 14:38 - 000454872 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240808-115113.backup
2024-08-08 04:07 - 2024-08-08 12:57 - 001024565 _____ C:\Users\Public\dawr.ps1
2024-08-08 04:07 - 2024-08-08 12:57 - 000003518 _____ C:\WINDOWS\system32\Tasks\dawr oftEdgeUpdate
2024-08-08 04:07 - 2024-08-08 12:57 - 000000195 _____ C:\Users\Public\dawr.bat
2024-08-06 19:38 - 2024-08-06 19:38 - 000066560 _____ () C:\Users\claud_000\AppData\Roaming\.exe
2024-08-06 19:32 - 2024-08-11 19:13 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\02AB4D06-642A-4B5B-B6D9-C80E4157ED26
2024-08-06 19:32 - 2024-08-06 19:32 - 000207360 _____ C:\Users\claud_000\AppData\Roaming\GoogleUpdate.exe
2024-08-06 15:38 - 2024-08-10 08:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-07-31 15:06 - 2024-08-06 16:13 - 000001456 _____ C:\Users\claud_000\AppData\Roaming\SystemLogin.bat
2024-07-30 05:06 - 2024-08-06 21:06 - 000000194 _____ C:\Users\claud_000\AppData\Roaming\Update32.vbs
2024-07-30 05:02 - 2024-08-06 16:11 - 000041230 _____ C:\Users\Public\SystemUpdate.ps1
2024-07-30 04:48 - 2024-08-08 16:19 - 000000000 ____D C:\Users\claud_000\Documents\ConnectWiseControl
2024-07-26 17:43 - 2024-07-26 17:43 - 000670830 ____R C:\Users\claud_000\Downloads\Copie AAE PROMESSE DE VENTE AUBERT_MALLET-STEMPOIPNIAK.pdf
2024-07-25 14:39 - 2024-07-25 14:39 - 000426769 _____ C:\Users\claud_000\Documents\entretien gaz20240725_14395422.pdf
2024-07-25 14:31 - 2024-07-25 14:31 - 000638055 _____ C:\Users\claud_000\Documents\gaz + fenêtres20240725_14310584.pdf
2024-07-24 20:50 - 2024-07-24 20:50 - 000000022 _____ C:\Users\claud_000\Documents\test.zip
2024-07-23 10:52 - 2024-07-23 10:52 - 000824455 _____ C:\Users\claud_000\Documents\contrat mariage20240723_10522404.pdf
2024-07-23 10:14 - 2024-07-23 10:14 - 000037648 _____ C:\Users\claud_000\Downloads\DEVIS_MATFER-BOURGEAT_23-07-2024_ma-premiere-liste.xlsx
2024-07-22 17:27 - 2024-07-22 17:27 - 001390148 _____ C:\Users\claud_000\Documents\factures travaux20240722_17272367.pdf
2024-07-22 17:23 - 2024-07-22 17:23 - 000022780 ____R C:\Users\claud_000\Downloads\bricodepot-facture-190620240417015011030.pdf
2024-07-18 19:06 - 2024-07-18 19:06 - 000000000 ____D C:\Users\claud_000\moneroocean
2024-07-17 20:34 - 2024-07-17 20:34 - 000000000 ____D C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)
2024-07-17 20:33 - 2024-07-17 20:37 - 000008796 _____ C:\Users\claud_000\Downloads\Votre facture électronique EDF au format PDF.zip
2024-07-17 20:33 - 2024-07-17 20:33 - 005637456 _____ C:\Users\claud_000\Downloads\ScreenConnect.ClientSetup.exe
2024-07-17 20:30 - 2024-07-17 20:30 - 000526445 _____ C:\Users\claud_000\Documents\comp crécy20240717_20300162.pdf
2024-07-17 20:24 - 2024-07-17 20:24 - 000129849 ____R C:\Users\claud_000\Downloads\proposition.pdf
2024-07-16 09:55 - 2024-07-16 09:55 - 000220718 ____R C:\Users\claud_000\Downloads\Etiquette_Colissimo_2024_6_16_Z0026550704.pdf
2024-07-13 10:00 - 2024-07-13 10:00 - 000417450 _____ C:\Users\claud_000\Documents\cni Cl20240713_10001628.pdf
2024-07-13 09:47 - 2024-07-13 09:47 - 000211930 _____ C:\Users\claud_000\Documents\cni Cl20240713_09470667.pdf
2024-07-13 09:44 - 2024-07-13 09:44 - 000208759 _____ C:\Users\claud_000\Documents\cni Cl20240713_09443146.pdf
2024-07-13 09:40 - 2024-07-13 09:40 - 000074859 ____R C:\Users\claud_000\Downloads\Bouyguestelecom_Facture_20240623.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-08-11 19:53 - 2022-02-09 11:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-08-11 19:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-11 19:44 - 2024-05-14 09:43 - 000005352 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for Claudine-PC-mamimolette77 Claudine-PC
2024-08-11 19:37 - 2017-06-07 13:35 - 000000000 ____D C:\ProgramData\NVIDIA
2024-08-11 19:35 - 2017-06-07 13:35 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-08-11 19:33 - 2020-08-05 19:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-11 19:33 - 2020-08-05 19:01 - 000008192 ___SH C:\DumpStack.log.tmp
2024-08-11 19:32 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-08-11 19:26 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-11 19:25 - 2023-12-29 18:49 - 000000000 ____D C:\Program Files (x86)\Steam
2024-08-11 19:25 - 2020-11-23 07:03 - 000000000 ____D C:\WINDOWS\Minidump
2024-08-11 19:25 - 2018-08-29 20:42 - 000000000 ____D C:\Users\claud_000\AppData\Local\CrashDumps
2024-08-11 19:23 - 2021-03-31 15:37 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-08-11 19:18 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-11 19:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-08-11 19:11 - 2016-11-27 16:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-08-11 19:10 - 2020-08-05 19:17 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-11 19:10 - 2019-12-07 16:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2024-08-11 19:10 - 2019-12-07 16:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2024-08-11 18:57 - 2020-06-22 20:34 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-11 18:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-11 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-11 18:48 - 2020-08-05 19:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-10 18:45 - 2020-08-05 19:05 - 000000000 ____D C:\Users\claud_000
2024-08-10 11:33 - 2021-12-14 10:22 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1339820563-475386342-3544726719-1001
2024-08-10 11:33 - 2020-08-05 19:37 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1339820563-475386342-3544726719-1001
2024-08-10 11:33 - 2020-08-05 19:05 - 000002431 _____ C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-10 11:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-08-10 08:21 - 2020-08-05 16:40 - 000000943 _____ C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}.job
2024-08-10 08:21 - 2020-08-05 14:07 - 000000943 _____ C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}.job
2024-08-10 08:20 - 2019-01-07 21:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-10 08:20 - 2018-03-22 09:18 - 000000000 ____D C:\Users\claud_000\AppData\Local\AVAST Software
2024-08-10 08:20 - 2015-10-04 16:32 - 000000000 ____D C:\ProgramData\AVAST Software
2024-08-08 21:11 - 2016-05-09 07:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-07 09:33 - 2021-10-09 16:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-08-07 09:33 - 2019-01-07 21:23 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-06 09:37 - 2018-07-25 16:17 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\Microsoft\Skype for Desktop
2024-08-04 14:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-30 23:15 - 2018-03-22 09:34 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-07-29 00:28 - 2020-08-05 19:37 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-29 00:28 - 2020-08-05 19:37 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-23 10:29 - 2017-12-05 11:32 - 000000000 ____D C:\Users\claud_000\AppData\Local\Packages
2024-07-23 10:14 - 2019-08-11 09:34 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\Microsoft\Excel
2024-07-23 10:02 - 2015-09-15 09:07 - 000000000 ___SD C:\Users\claud_000\AppData\Roaming\Microsoft\Credentials
2024-07-23 09:56 - 2019-02-06 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-07-18 19:06 - 2020-08-05 19:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-07-16 13:52 - 2020-08-05 19:37 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003318 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{92E96176-2BF1-4236-BB51-0DF16E424ABB}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002964 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2024-07-16 13:52 - 2020-08-05 19:37 - 000002950 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002348 _____ C:\WINDOWS\system32\Tasks\RtHDVBg
2024-07-16 13:52 - 2020-08-05 19:37 - 000002342 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2024-07-16 13:52 - 2020-08-05 19:37 - 000002188 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
==================== Fichiers à la racine de certains dossiers ========
2024-08-08 04:07 - 2024-08-08 12:57 - 000000195 _____ () C:\Users\Public\dawr.bat
2024-08-06 19:38 - 2024-08-06 19:38 - 000066560 _____ () C:\Users\claud_000\AppData\Roaming\.exe
2024-08-06 19:32 - 2024-08-06 19:32 - 000207360 _____ () C:\Users\claud_000\AppData\Roaming\GoogleUpdate.exe
2015-09-15 09:11 - 2019-12-30 10:58 - 000000165 _____ () C:\Users\claud_000\AppData\Roaming\sp_data.sys
2024-07-31 15:06 - 2024-08-06 16:13 - 000001456 _____ () C:\Users\claud_000\AppData\Roaming\SystemLogin.bat
2024-07-30 05:06 - 2024-08-06 21:06 - 000000194 _____ () C:\Users\claud_000\AppData\Roaming\Update32.vbs
2016-04-13 11:27 - 2016-04-13 11:27 - 000003584 _____ () C:\Users\claud_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par mamimolette77 (administrateur) sur CLAUDINE-PC (ASUSTeK COMPUTER INC. G551JW) (11-08-2024 19:51:51)
Exécuté depuis C:\Users\claud_000\Desktop\FRST64.exe
Profils chargés: mamimolette77
Plate-forme: Microsoft Windows 10 Famille Version 2004 19041.572 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mep.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\64DriverLoad.exe
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe ->) (Connectwise, LLC -> ScreenConnect Software) C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsClient.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <17>
(RuntimeBroker.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(RuntimeBroker.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(RuntimeBroker.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Video DSP\DriverMFTService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Connectwise, LLC -> ) C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [UDP Monitor] => C:\Program Files\UDP Monitor\udpmon.exe (Pas de fichier)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [463800 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] () [Fichier non signé]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [Fichier non signé]
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [68822328 2021-01-25] (Discord Inc. -> Discord Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [159800 2017-07-25] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [Spotify] => C:\Users\claud_000\AppData\Roaming\Spotify\Spotify.exe [25591712 2019-07-20] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [AvastBrowserAutoLaunch_8A1D57FCFD27F8656CECB0E2149CB4C8] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [MicrosoftEdgeAutoLaunch_D15F2D973E7D63667391D701343AE5A4] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814968 2024-08-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [EPSDNMON] => "" (Pas de fichier)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [UpdateStore] => cmd /c powershell -windowstyle hidden cd $env:TEMP; powershell -ep bypass .\SystemServices.ps1 (Pas de fichier)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44970408 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\MountPoints2: {0bd81eb0-3464-11eb-8382-086266b63cd1} - "G:\AutoRun.exe"
HKU\S-1-5-21-1339820563-475386342-3544726719-1001\...\MountPoints2: {c22e83b4-8178-11eb-8392-086266b63cd1} - "G:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG4200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB9.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: C:\WINDOWS\system32\CNMLMB9.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\WINDOWS\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\WINDOWS\system32\CNMLMCS.DLL [406528 2015-03-15] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\WINDOWS\system32\CNMLMDR.DLL [1302016 2017-03-13] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON Stylus SX200 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMEFE.DLL [108032 2007-12-07] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\EPSON XP-7100 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBVFE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\127.0.6533.100\Installer\chrmstp.exe [2024-08-08] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\126.0.25735.183\Installer\chrmstp.exe [2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{6FF59A85-BC37-4CD4-3A6A-2AAF26BA9401}] -> C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsCredentialProvider.dll [2024-05-24] (Connectwise, LLC -> )
Lsa: [Authentication Packages] msv1_0 C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.WindowsAuthenticationPackage.dll
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2016-08-09] () <==== ATTENTION [zéro octet Fichier/Dossier]
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Login1.vbs [2024-08-06] () [Fichier non signé]
InternetURL: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft.url -> URL: file:///C:/Users/CLAUD_~1/AppData/Local/Temp/WindowStore.vbs <==== ATTENTION
Startup: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-12-13]
ShortcutTarget: Twitch.lnk -> C:\Users\claud_000\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
InternetURL: C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updates.url -> URL: file:///C:/Users/CLAUD_~1/AppData/Local/Temp/Brave.vbs <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {421CD1B7-319D-4C8D-8C74-48DB58928A5C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {616B80FD-2D90-4D48-819A-788AB3EAAA91} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {8280F83D-0D7D-488F-8BB0-A58C712D2957} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {A5620819-8215-4A80-BAF1-367ECC4658CF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {D6D873EA-DCE2-4D22-A54E-10742398D8F5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {FD1DB9F6-B794-4843-BA82-3B896461D1A3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {8408B336-342B-463B-8C66-33DB82DCA1E7} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392 2014-12-17] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {9EE072A7-9208-48CB-9415-2A708510A52B} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Task: {67E5564D-F7CF-45C8-AFEC-0D0AF1E4D995} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [120632 2014-06-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B024A282-BFDA-483B-883A-690F90AB331F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {51ABA3B4-D030-4544-B19D-B52F3C3C5BB2} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3153984 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {53AFF6DE-24C5-4E08-9E55-86D0A37AEE66} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe -> C:\Program Files\Common Files\AV\avast! Antivirus\/backup /iavs
Task: {3FEB5CA2-F76E-4E75-B8AB-873B567781AE} - System32\Tasks\AvastBrowserProtectS-1-5-21-1339820563-475386342-3544726719-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-29] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7CB79A75-EB5A-4B6F-B8F3-B66E5DDC02FA} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1F7D3B14-DA62-4771-93F5-0600BC536383} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {39283E5B-841D-4977-B8EA-959B3313E941} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5194176 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {CDE137B8-58E7-4C99-803C-7C57FE5C823E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [8064960 2024-07-18] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {9547F93C-D938-4EF6-9F39-CCC8F70CFE95} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {DE0EA827-5D3C-475A-A07E-17899F842727} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe -sr (Accès refusé) <==== ATTENTION
Task: {ECD7B63E-E047-4524-A2C6-75130BA8D7AF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {052AE4EF-1C2C-4546-9A2B-B592EB7697BF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "1a8209af-a708-48de-8860-400bed121640" --version "6.26.11169" --silent
Task: {C2C09E7F-59C7-42FD-B2E0-B79522B1E03C} - System32\Tasks\CCleanerSkipUAC - mamimolette77 => C:\Program Files\CCleaner\CCleaner.exe [38931368 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {FF0B0BD7-3A7B-4312-9B58-42B7E5A37F2A} - System32\Tasks\dawr oftEdgeUpdate => C:\Users\Public\dawr.vbs (Pas de fichier)
Task: {06BA0E4C-C1D4-4691-AECC-F36C1D535C4F} - System32\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19} => C:\Windows\System32\spool\drivers\x64\3\E_YTSVFE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6E0C93D0-9743-4659-9A39-0FB8CE1A9CA9} - System32\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A} => C:\Windows\System32\spool\drivers\x64\3\E_YTSVFE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {AACFDD28-D3B2-44BE-A44A-14DF41A84957} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{BF12FED0-7A36-4FC3-B7BB-0CFF8BCE6EF2} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe [4889704 2024-07-15] (Google LLC -> Google LLC)
Task: {8714FAD0-17D9-4276-91ED-3523F2839747} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Claudine-PC-mamimolette77 Claudine-PC => C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE [470720 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {34B4960D-31AF-4B5E-82D3-33015BA0C8CB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {971845A4-6660-45D2-87E7-50A90865B07B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {570CB2A0-C111-4726-81D2-F57A5BF31431} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {DE795C7A-400A-462F-B6EC-3B1C6B30E45A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {A0F97598-50BA-476E-8F92-A7C019A9BEF7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {7107BA35-4652-471C-B895-9B9E1B0206C0} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1339820563-475386342-3544726719-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-06] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {EB03455F-C900-4D31-A977-06E93E8ED74B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-06] (Mozilla Corporation -> Mozilla Foundation)
Task: {F47DCD99-0E21-4C8A-9915-2617213CCE76} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59B6532D-387F-4792-9C9C-BD5605A6E28E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {408AFEE1-228E-4CD1-B9F4-98F7B80C4F42} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BA2ADB1-CAB5-4C64-9DD6-BABEB3E3A8AA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {F4E25BB4-B9BD-448B-B60D-FA5DE58AC1D6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86C40736-B506-432B-A4E9-7796776AB561} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F311AB6-DDE4-4B88-B85C-570B841FF77D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {219CBE95-ED66-42BB-A5B6-80E9CDF8956E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEFDF2EE-615A-45B4-B032-EDEA0D927B0A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17A35061-520C-4B56-A468-EBA3E6ED3A55} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8CBE298F-4297-4094-969E-A94C79E816D8} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-04] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {7BBD78D0-120E-4A3A-A906-95C3A904E814} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13872856 2014-12-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {D292FF54-68B0-4990-89CD-5A415CE6DB88} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.)
Task: {1FFC058C-4167-4CFB-879C-8269B30790E0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5753752 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
Task: {1DC22CAF-D33D-406D-87E4-A00BF22AA3F8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6193080 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
Task: {56FA96B4-BB11-4248-BB8A-ADF86174656E} - System32\Tasks\UDP Monitor Task => "C:\Program Files\UDP Monitor\udpmon.exe" $(Arg0) (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVFE.EXE:/EXE:{964F3859-09B0-4840-8EDB-BCD8F58FBE19} /F:UpdateWORKGROUP\CLAUDINE-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSVFE.EXE:/EXE:{FE1002CF-06E5-47CB-86F9-5C5FBE946C6A} /F:UpdateWORKGROUP\CLAUDINE-PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{77324609-9125-4876-ac20-1694cbce2c65}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\14962726F687F593733444: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\14962726F687F593733444: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D243441443: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D243441443: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D244731414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D244731414: [DhcpDomain] home
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D254144343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aea6849e-b912-4f6b-94b7-7f3e04c7bd44}\F42716E676560214962726F687D254144343: [DhcpDomain] home
Edge:
=======
DownloadDir: C:\Users\claud_000\Downloads
Edge Profile: C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-17]
Edge Extension: (Edge relevant text changes) - C:\Users\claud_000\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-12]
FireFox:
========
FF DefaultProfile: cili18w7.default-1456138729935
FF ProfilePath: C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 [2024-08-11]
FF Homepage: Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 -> hxxps://www.qwant.com/?client=qwant-firefox
FF NewTab: Mozilla\Firefox\Profiles\cili18w7.default-1456138729935 -> hxxps://fr.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10118__190107__yaff
FF Extension: (Lush – Soft) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\lush-soft-colorway@mozilla.org.xpi [2023-03-21]
FF Extension: (Qwant VIPrivacy) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\qwantcomforfirefox@jetpack.xpi [2022-09-02]
FF Extension: (Flash Video Player for Facebook™) - C:\Users\claud_000\AppData\Roaming\Mozilla\Firefox\Profiles\cili18w7.default-1456138729935\Extensions\{d0bfdcce-52c7-4b32-bb45-948f62db8d3f}.xpi [2024-04-29]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-08-05] [] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [Pas de fichier]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default [2024-08-11]
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
CHR DefaultSearchKeyword: Default -> qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Extension: (Avast SafePrice) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2024-06-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\claud_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\126.0.25735.183\elevation_service.exe [1773352 2024-07-17] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [807864 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2370376 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1245112 2024-08-11] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9039288 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-08-11] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-07-25] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085864 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd)
R2 DriverMFTService; C:\Program Files (x86)\Asus\ASUS Video DSP\DriverMFTService.exe [9728 2014-10-29] (ASUSTek Computer Inc.) [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2018-04-09] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-11-02] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-11-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ScreenConnect Client (cb672556b38846d7); C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)\ScreenConnect.ClientService.exe [95520 2024-05-29] (Connectwise, LLC -> )
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Fichier non signé]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; "%ProgramData%\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe" [X]
S3 WinDefend; "C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20536 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [229944 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [380984 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [293944 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27744 2024-08-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [271928 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [549848 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [97840 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [948792 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [1198648 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [203728 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306648 2024-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 IObitUnlocker; C:\ProgramData\IObitUnlocker\IObitUnlocker.sys [66824 2017-06-15] (IObit Information Technology -> IObit)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. -> )
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-08-11 19:51 - 2024-08-11 19:53 - 000045032 _____ C:\Users\claud_000\Desktop\FRST.txt
2024-08-11 19:51 - 2024-08-11 19:53 - 000000000 ____D C:\FRST
2024-08-11 19:50 - 2024-08-11 19:50 - 002397184 _____ (Farbar) C:\Users\claud_000\Desktop\FRST64.exe
2024-08-11 19:29 - 2024-08-11 19:29 - 000000000 ___HD C:\$AV_AVG
2024-08-11 19:28 - 2024-08-11 19:28 - 000000000 ____D C:\Users\claud_000\AppData\Local\AVG
2024-08-11 19:26 - 2024-08-11 19:26 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Gratuit.lnk
2024-08-11 19:26 - 2024-08-11 19:26 - 000002061 _____ C:\Users\Public\Desktop\AVG AntiVirus Gratuit.lnk
2024-08-11 19:26 - 2024-08-11 19:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-08-11 19:26 - 2024-08-11 19:26 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\AVG
2024-08-11 19:26 - 2024-08-11 19:23 - 000314808 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-08-11 19:23 - 2024-08-11 19:34 - 000000000 ____D C:\ProgramData\AVG
2024-08-11 19:23 - 2024-08-11 19:24 - 000000000 ____D C:\Program Files\AVG
2024-08-11 19:23 - 2024-08-11 19:23 - 000000000 ____D C:\ProgramData\Piriform
2024-08-11 19:23 - 2024-08-11 19:23 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-08-11 19:22 - 2024-08-11 19:33 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-08-11 19:22 - 2024-08-11 19:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-08-11 19:22 - 2024-08-11 19:22 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-08-11 19:22 - 2024-08-11 19:22 - 000002928 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - mamimolette77
2024-08-11 19:22 - 2024-08-11 19:22 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2024-08-11 19:22 - 2024-08-11 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-08-11 19:21 - 2024-08-11 19:36 - 000000000 ____D C:\Program Files\CCleaner
2024-08-11 19:19 - 2024-08-11 19:19 - 075968840 _____ (Piriform Software Ltd) C:\Users\claud_000\Downloads\ccsetup626.exe
2024-08-11 19:08 - 2024-08-11 19:08 - 000000000 ___HD C:\$WinREAgent
2024-08-10 17:47 - 2024-08-10 17:47 - 002596072 _____ (Malwarebytes) C:\Users\claud_000\Downloads\MBSetup(1).exe
2024-08-10 13:11 - 2024-08-08 11:51 - 000455006 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240810-131139.backup
2024-08-10 08:23 - 2024-08-10 18:14 - 000000000 ____D C:\Program Files\UDP Monitor
2024-08-10 08:23 - 2024-08-10 18:09 - 000002210 _____ C:\WINDOWS\system32\Tasks\UDP Monitor Task
2024-08-09 09:00 - 2024-08-09 09:00 - 008790880 _____ (Malwarebytes) C:\Users\claud_000\Downloads\adwcleaner(4).exe
2024-08-08 16:19 - 2024-08-08 16:19 - 000000506 _____ C:\Users\Public\Remove.ps1
2024-08-08 16:18 - 2024-08-08 16:18 - 000000000 ____D C:\ProgramData\IObitUnlocker
2024-08-08 16:18 - 2024-08-08 16:18 - 000000000 ____D C:\ProgramData\IObit
2024-08-08 11:51 - 2024-08-08 11:51 - 000455006 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240808-115157.backup
2024-08-08 11:51 - 2024-04-06 14:38 - 000454872 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20240808-115113.backup
2024-08-08 04:07 - 2024-08-08 12:57 - 001024565 _____ C:\Users\Public\dawr.ps1
2024-08-08 04:07 - 2024-08-08 12:57 - 000003518 _____ C:\WINDOWS\system32\Tasks\dawr oftEdgeUpdate
2024-08-08 04:07 - 2024-08-08 12:57 - 000000195 _____ C:\Users\Public\dawr.bat
2024-08-06 19:38 - 2024-08-06 19:38 - 000066560 _____ () C:\Users\claud_000\AppData\Roaming\.exe
2024-08-06 19:32 - 2024-08-11 19:13 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\02AB4D06-642A-4B5B-B6D9-C80E4157ED26
2024-08-06 19:32 - 2024-08-06 19:32 - 000207360 _____ C:\Users\claud_000\AppData\Roaming\GoogleUpdate.exe
2024-08-06 15:38 - 2024-08-10 08:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-07-31 15:06 - 2024-08-06 16:13 - 000001456 _____ C:\Users\claud_000\AppData\Roaming\SystemLogin.bat
2024-07-30 05:06 - 2024-08-06 21:06 - 000000194 _____ C:\Users\claud_000\AppData\Roaming\Update32.vbs
2024-07-30 05:02 - 2024-08-06 16:11 - 000041230 _____ C:\Users\Public\SystemUpdate.ps1
2024-07-30 04:48 - 2024-08-08 16:19 - 000000000 ____D C:\Users\claud_000\Documents\ConnectWiseControl
2024-07-26 17:43 - 2024-07-26 17:43 - 000670830 ____R C:\Users\claud_000\Downloads\Copie AAE PROMESSE DE VENTE AUBERT_MALLET-STEMPOIPNIAK.pdf
2024-07-25 14:39 - 2024-07-25 14:39 - 000426769 _____ C:\Users\claud_000\Documents\entretien gaz20240725_14395422.pdf
2024-07-25 14:31 - 2024-07-25 14:31 - 000638055 _____ C:\Users\claud_000\Documents\gaz + fenêtres20240725_14310584.pdf
2024-07-24 20:50 - 2024-07-24 20:50 - 000000022 _____ C:\Users\claud_000\Documents\test.zip
2024-07-23 10:52 - 2024-07-23 10:52 - 000824455 _____ C:\Users\claud_000\Documents\contrat mariage20240723_10522404.pdf
2024-07-23 10:14 - 2024-07-23 10:14 - 000037648 _____ C:\Users\claud_000\Downloads\DEVIS_MATFER-BOURGEAT_23-07-2024_ma-premiere-liste.xlsx
2024-07-22 17:27 - 2024-07-22 17:27 - 001390148 _____ C:\Users\claud_000\Documents\factures travaux20240722_17272367.pdf
2024-07-22 17:23 - 2024-07-22 17:23 - 000022780 ____R C:\Users\claud_000\Downloads\bricodepot-facture-190620240417015011030.pdf
2024-07-18 19:06 - 2024-07-18 19:06 - 000000000 ____D C:\Users\claud_000\moneroocean
2024-07-17 20:34 - 2024-07-17 20:34 - 000000000 ____D C:\Program Files (x86)\ScreenConnect Client (cb672556b38846d7)
2024-07-17 20:33 - 2024-07-17 20:37 - 000008796 _____ C:\Users\claud_000\Downloads\Votre facture électronique EDF au format PDF.zip
2024-07-17 20:33 - 2024-07-17 20:33 - 005637456 _____ C:\Users\claud_000\Downloads\ScreenConnect.ClientSetup.exe
2024-07-17 20:30 - 2024-07-17 20:30 - 000526445 _____ C:\Users\claud_000\Documents\comp crécy20240717_20300162.pdf
2024-07-17 20:24 - 2024-07-17 20:24 - 000129849 ____R C:\Users\claud_000\Downloads\proposition.pdf
2024-07-16 09:55 - 2024-07-16 09:55 - 000220718 ____R C:\Users\claud_000\Downloads\Etiquette_Colissimo_2024_6_16_Z0026550704.pdf
2024-07-13 10:00 - 2024-07-13 10:00 - 000417450 _____ C:\Users\claud_000\Documents\cni Cl20240713_10001628.pdf
2024-07-13 09:47 - 2024-07-13 09:47 - 000211930 _____ C:\Users\claud_000\Documents\cni Cl20240713_09470667.pdf
2024-07-13 09:44 - 2024-07-13 09:44 - 000208759 _____ C:\Users\claud_000\Documents\cni Cl20240713_09443146.pdf
2024-07-13 09:40 - 2024-07-13 09:40 - 000074859 ____R C:\Users\claud_000\Downloads\Bouyguestelecom_Facture_20240623.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-08-11 19:53 - 2022-02-09 11:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-08-11 19:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-11 19:44 - 2024-05-14 09:43 - 000005352 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for Claudine-PC-mamimolette77 Claudine-PC
2024-08-11 19:37 - 2017-06-07 13:35 - 000000000 ____D C:\ProgramData\NVIDIA
2024-08-11 19:35 - 2017-06-07 13:35 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-08-11 19:33 - 2020-08-05 19:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-11 19:33 - 2020-08-05 19:01 - 000008192 ___SH C:\DumpStack.log.tmp
2024-08-11 19:32 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-08-11 19:26 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-11 19:25 - 2023-12-29 18:49 - 000000000 ____D C:\Program Files (x86)\Steam
2024-08-11 19:25 - 2020-11-23 07:03 - 000000000 ____D C:\WINDOWS\Minidump
2024-08-11 19:25 - 2018-08-29 20:42 - 000000000 ____D C:\Users\claud_000\AppData\Local\CrashDumps
2024-08-11 19:23 - 2021-03-31 15:37 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-08-11 19:18 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-11 19:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-08-11 19:11 - 2016-11-27 16:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-08-11 19:10 - 2020-08-05 19:17 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-11 19:10 - 2019-12-07 16:49 - 000792858 _____ C:\WINDOWS\system32\perfh00C.dat
2024-08-11 19:10 - 2019-12-07 16:49 - 000149988 _____ C:\WINDOWS\system32\perfc00C.dat
2024-08-11 18:57 - 2020-06-22 20:34 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-11 18:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-11 18:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-11 18:48 - 2020-08-05 19:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-10 18:45 - 2020-08-05 19:05 - 000000000 ____D C:\Users\claud_000
2024-08-10 11:33 - 2021-12-14 10:22 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1339820563-475386342-3544726719-1001
2024-08-10 11:33 - 2020-08-05 19:37 - 000003386 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1339820563-475386342-3544726719-1001
2024-08-10 11:33 - 2020-08-05 19:05 - 000002431 _____ C:\Users\claud_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-10 11:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-08-10 08:21 - 2020-08-05 16:40 - 000000943 _____ C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}.job
2024-08-10 08:21 - 2020-08-05 14:07 - 000000943 _____ C:\WINDOWS\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}.job
2024-08-10 08:20 - 2019-01-07 21:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-08-10 08:20 - 2018-03-22 09:18 - 000000000 ____D C:\Users\claud_000\AppData\Local\AVAST Software
2024-08-10 08:20 - 2015-10-04 16:32 - 000000000 ____D C:\ProgramData\AVAST Software
2024-08-08 21:11 - 2016-05-09 07:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-07 09:33 - 2021-10-09 16:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-08-07 09:33 - 2019-01-07 21:23 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-08-06 09:37 - 2018-07-25 16:17 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\Microsoft\Skype for Desktop
2024-08-04 14:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-07-30 23:15 - 2018-03-22 09:34 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-07-29 00:28 - 2020-08-05 19:37 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-07-29 00:28 - 2020-08-05 19:37 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-07-23 10:29 - 2017-12-05 11:32 - 000000000 ____D C:\Users\claud_000\AppData\Local\Packages
2024-07-23 10:14 - 2019-08-11 09:34 - 000000000 ____D C:\Users\claud_000\AppData\Roaming\Microsoft\Excel
2024-07-23 10:02 - 2015-09-15 09:07 - 000000000 ___SD C:\Users\claud_000\AppData\Roaming\Microsoft\Credentials
2024-07-23 09:56 - 2019-02-06 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2024-07-18 19:06 - 2020-08-05 19:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-07-16 13:52 - 2020-08-05 19:37 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON XP-7100 Series Update {FE1002CF-06E5-47CB-86F9-5C5FBE946C6A}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON XP-7100 Series Update {964F3859-09B0-4840-8EDB-BCD8F58FBE19}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003318 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{92E96176-2BF1-4236-BB51-0DF16E424ABB}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002964 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2024-07-16 13:52 - 2020-08-05 19:37 - 000002950 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-07-16 13:52 - 2020-08-05 19:37 - 000002348 _____ C:\WINDOWS\system32\Tasks\RtHDVBg
2024-07-16 13:52 - 2020-08-05 19:37 - 000002342 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2024-07-16 13:52 - 2020-08-05 19:37 - 000002188 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
==================== Fichiers à la racine de certains dossiers ========
2024-08-08 04:07 - 2024-08-08 12:57 - 000000195 _____ () C:\Users\Public\dawr.bat
2024-08-06 19:38 - 2024-08-06 19:38 - 000066560 _____ () C:\Users\claud_000\AppData\Roaming\.exe
2024-08-06 19:32 - 2024-08-06 19:32 - 000207360 _____ () C:\Users\claud_000\AppData\Roaming\GoogleUpdate.exe
2015-09-15 09:11 - 2019-12-30 10:58 - 000000165 _____ () C:\Users\claud_000\AppData\Roaming\sp_data.sys
2024-07-31 15:06 - 2024-08-06 16:13 - 000001456 _____ () C:\Users\claud_000\AppData\Roaming\SystemLogin.bat
2024-07-30 05:06 - 2024-08-06 21:06 - 000000194 _____ () C:\Users\claud_000\AppData\Roaming\Update32.vbs
2016-04-13 11:27 - 2016-04-13 11:27 - 000003584 _____ () C:\Users\claud_000\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================