Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-12-2024
Exécuté par ericp (administrateur) sur LAPTOP-J1FSLULU (Packard Bell B315-34) (01-01-2025 16:25:32)
Exécuté depuis C:\Users\ericp\Downloads\FRST64.exe
Profils chargés: ericp
Plate-forme: Microsoft Windows 11 Famille Version 24H2 26100.2605 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\PCProtect\SecurityService.exe ->) (Protected Antivirus Limited -> PCProtect) C:\Program Files (x86)\PCProtect\PCProtect.exe
(C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <47>
(explorer.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_db7985d30b50e28f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7b69d1dcf2ed050c\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(services.exe ->) (Intel(R) pGFX -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.U.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (Protected Antivirus Limited -> PCProtect) C:\Program Files (x86)\PCProtect\SecurityService.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d19142d5a057a7c\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> msedge.exe
Impossible d'accéder au processus -> msedge.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d19142d5a057a7c\RtkAudUService64.exe [3403400 2021-12-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45381424 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [MicrosoftEdgeAutoLaunch_821C582780A49E40AE845C17844149C6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911240 2024-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.205\Installer\chrmstp.exe [2024-12-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {456E722C-FFD6-44B7-9386-D1C060C6D407} - System32\Tasks\App Explorer S => C:\Users\ericp\AppData\Local\Microsoft\WindowsApps\AppsExplorer.exe [0 0] () [symlink -> ]
Task: {7F45968D-9DE8-420C-ABE8-0CF6EB7D8052} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {97B9D9F1-A881-4076-8966-8386058B7658} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "b0fb2dd8-4e21-4df5-8403-6c67262b9f83" --version "6.31.11415" --silent
Task: {882A58F4-3861-44D4-BF16-178F50EB4EEA} - System32\Tasks\CCleanerSkipUAC - ericp => C:\Program Files\CCleaner\CCleaner.exe [39151920 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {6EE72CDE-0FFB-4F88-8945-CEC24498F53C} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{E71844C6-8814-4A5E-A5F9-D94D517A88E1} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {647D3E2B-2022-4A33-B52B-4E5555F1D0F0} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3543104612-4165526015-2249563598-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.23.211.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2192632 2024-09-13] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {DE5AFFFF-B74D-4504-B4DA-EC9E4ACC84D6} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200} C:\WINDOWS\system32\IntelligentPwdlessTask.dll [139264 2024-12-21] (Microsoft Windows -> Microsoft Corporation)
Task: {6A3E3CBB-A4D3-4464-9D50-826CB62DF117} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {AE1926A6-0B9A-46AC-BDB2-482DAF2DF67C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {00C97EF6-8FEE-46B2-B04D-55A404FF1804} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {683104D9-F094-47CD-9D15-4E3DD38D2491} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {378723E3-BBF7-4AA5-B051-D9685E5ABB72} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-12] (Acer Incorporated -> )
Task: {5EEF1D72-FFF7-492E-B13E-EC9360897F66} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3543104612-4165526015-2249563598-1003 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {54D9185B-29EB-4216-9E6B-80D360A2A4FB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3543104612-4165526015-2249563598-1003 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {42657387-408C-4DBF-88C1-7A6E8C06EDD8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3543104612-4165526015-2249563598-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {006148FB-37AD-4D4A-8902-9CBCCE7B5132} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2020-09-17] (Acer Incorporated -> Microsoft)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{5fcbbb18-bf2c-470e-bb53-85c6c3fe41e0}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{90637dea-1842-4d9e-9477-0a1cdb4b49d5}: [DhcpNameServer] 172.24.248.17 172.24.248.18
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-01]
Edge HomePage: Default -> hxxp://www.msn.com/?pc=ACTE
Edge Extension: (Avira Safe Shopping) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-09-03]
Edge Extension: (Avira Password Manager) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-10-22]
Edge Extension: (Google Docs hors connexion) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-23]
Edge Extension: (Edge relevant text changes) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Chrome:
=======
CHR Profile: C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default [2025-01-01]
CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
CHR StartupUrls: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp"
CHR Extension: (Protection Web Avira) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-14]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-11] (HP Inc. -> HP Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [119560 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [81424 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.U.)
R2 SecurityService; C:\Program Files (x86)\PCProtect\SecurityService.exe [275144 2023-10-31] (Protected Antivirus Limited -> PCProtect)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\DriverStore\FileRepository\acerairplanemodecontroller.inf_amd64_36869d4d52526b5b\AcerAirplaneModeController.sys [36200 2024-06-03] (Acer Incorporated -> Acer Incorporated)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [209088 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S4 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 ProtectedELAM; C:\WINDOWS\System32\drivers\protected_elam.sys [18912 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> TODO:)
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [37424 2024-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [63360 2023-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.U.)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_350fa1f1d5f73524\rt68cx21x64.sys [652256 2022-08-25] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-12-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-12-30] (Microsoft Windows -> Microsoft Corporation)
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 16:25 - 2025-01-01 16:27 - 000021963 _____ C:\Users\ericp\Downloads\FRST.txt
2025-01-01 16:24 - 2025-01-01 16:26 - 000000000 ____D C:\FRST
2025-01-01 16:23 - 2025-01-01 16:23 - 002403840 _____ (Farbar) C:\Users\ericp\Downloads\FRST64.exe
2025-01-01 16:14 - 2022-12-06 11:53 - 000211208 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsnhwfp.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000575720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000407264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000335064 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000215264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000164568 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000146664 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000146184 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000137960 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000128744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000125672 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000218856 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000198376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000176360 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000162536 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000150760 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000130280 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2025-01-01 16:13 - 2025-01-01 16:16 - 000000000 ____D C:\Program Files (x86)\Panda Security
2025-01-01 16:13 - 2025-01-01 16:13 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2025-01-01 16:13 - 2025-01-01 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2025-01-01 16:03 - 2025-01-01 16:16 - 000000000 ____D C:\ProgramData\Panda Security
2025-01-01 16:02 - 2025-01-01 16:03 - 003369480 _____ (Panda Security, S.L.) C:\Users\ericp\Downloads\PANDAFREEAV.exe
2024-12-28 20:48 - 2023-10-31 16:01 - 000209088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2024-12-28 20:48 - 2023-10-31 16:01 - 000199312 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2024-12-28 20:48 - 2023-10-31 16:01 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2024-12-27 18:32 - 2024-12-27 18:32 - 000793494 _____ C:\WINDOWS\system32\perfh00C.dat
2024-12-27 18:32 - 2024-12-27 18:32 - 000159190 _____ C:\WINDOWS\system32\perfc00C.dat
2024-12-27 18:27 - 2024-12-27 18:27 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-12-27 18:08 - 2024-12-27 18:08 - 000000000 ____D C:\Users\ericp\AppData\Local\Total_Security
2024-12-27 18:07 - 2024-12-27 18:08 - 000000000 ____D C:\ProgramData\TotalAV
2024-12-27 18:07 - 2024-12-27 18:07 - 000000000 ____D C:\Program Files (x86)\TotalAV
2024-12-27 18:05 - 2024-12-27 18:05 - 000218472 _____ C:\Users\ericp\Downloads\TotalAV_Setup.exe
2024-12-27 16:56 - 2024-12-27 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2024-12-27 16:49 - 2024-12-27 16:49 - 000000000 ____D C:\Users\ericp\OneDrive\Documents\PCProtect
2024-12-27 16:44 - 2024-12-28 20:48 - 000000000 ____D C:\Program Files (x86)\PCProtect
2024-12-27 16:44 - 2024-12-27 18:28 - 000001190 _____ C:\Users\ericp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCProtect.lnk
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\Users\ericp\AppData\Local\GUI
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\ProgramData\PCProtect
2024-12-27 16:43 - 2024-12-27 16:44 - 057417608 _____ C:\Users\ericp\Downloads\PCProtect_Setup.exe
2024-12-21 18:21 - 2024-12-31 07:16 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-21 18:10 - 2024-12-21 18:10 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2024-12-21 18:09 - 2024-12-21 18:09 - 000027132 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-21 18:09 - 2024-12-21 18:09 - 000027132 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-12-20 18:33 - 2024-12-20 18:33 - 000069847 _____ C:\Users\ericp\Downloads\20SXTCAM3B-AT-4617898-PERRIN_2024-12-16_101722.pdf
2024-12-20 18:31 - 2024-12-20 18:31 - 007269295 _____ C:\Users\ericp\Downloads\VIDEO-2024-10-17-18-58-54.mp4
2024-12-20 18:29 - 2024-12-20 18:29 - 003208335 _____ C:\Users\ericp\Downloads\CalculFuturesRetraites.mp4
2024-12-12 21:30 - 2024-12-12 21:30 - 000024155 _____ C:\Users\ericp\Downloads\AA2_54750587_DX-132-RS_99664358 (1).pdf
2024-12-12 19:16 - 2024-12-12 19:16 - 000739773 _____ C:\Users\ericp\Downloads\Effets de différents revêtements sur la température au sein de la ruche.pdf
2024-12-03 21:48 - 2024-12-03 21:48 - 000032757 _____ C:\Users\ericp\Downloads\20SXTCAM3B-LISTE_SUCCINCTE_STAGIAIRES (1).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 16:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-01 16:25 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-01-01 16:15 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2025-01-01 16:06 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-30 22:49 - 2024-10-19 21:35 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-12-30 17:19 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-30 17:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-30 16:48 - 2021-06-15 15:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-12-30 16:40 - 2024-04-01 08:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-12-30 16:37 - 2021-11-14 08:17 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-12-29 07:58 - 2022-01-30 21:32 - 000000000 ____D C:\Program Files\CCleaner
2024-12-27 18:32 - 2024-10-19 21:35 - 001774664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-27 18:28 - 2024-10-19 21:30 - 000000730 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2024-12-27 18:28 - 2021-11-13 20:33 - 000000000 __SHD C:\Users\ericp\IntelGraphicsProfiles
2024-12-27 18:28 - 2021-06-15 15:29 - 000000000 ___HD C:\Intel
2024-12-27 18:27 - 2024-10-19 21:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-27 18:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2024-12-27 18:27 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-27 18:27 - 2021-06-15 15:00 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-27 17:05 - 2022-09-02 16:36 - 000000000 ____D C:\ProgramData\Avira
2024-12-27 17:02 - 2024-10-18 16:03 - 000000000 ___DC C:\WINDOWS\Panther
2024-12-27 16:55 - 2023-03-05 06:48 - 003388912 _____ C:\WINDOWS\system32\rtp.db
2024-12-27 16:44 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-12-23 19:34 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-22 00:45 - 2021-11-13 20:33 - 000000000 ____D C:\Users\ericp\AppData\Local\D3DSCache
2024-12-22 00:33 - 2024-10-19 21:24 - 000505880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-22 00:33 - 2022-09-20 19:15 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2024-12-21 18:15 - 2021-06-15 15:03 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-21 18:09 - 2024-10-19 21:27 - 003337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-21 08:07 - 2024-10-19 21:35 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-21 08:07 - 2024-10-19 21:35 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-11 21:47 - 2024-10-19 21:35 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-12-08 19:02 - 2021-11-14 17:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-12-08 19:00 - 2021-11-14 17:33 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-12-06 17:45 - 2021-12-13 18:25 - 000000000 ____D C:\Users\ericp\AppData\LocalLow\Temp
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par ericp (administrateur) sur LAPTOP-J1FSLULU (Packard Bell B315-34) (01-01-2025 16:25:32)
Exécuté depuis C:\Users\ericp\Downloads\FRST64.exe
Profils chargés: ericp
Plate-forme: Microsoft Windows 11 Famille Version 24H2 26100.2605 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\PCProtect\SecurityService.exe ->) (Protected Antivirus Limited -> PCProtect) C:\Program Files (x86)\PCProtect\PCProtect.exe
(C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxEM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <47>
(explorer.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAConsole.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe
(Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(services.exe ->) (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad4654f43fda305f\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_db7985d30b50e28f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7b69d1dcf2ed050c\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4a3ae74cfa6c37d6\esif_uf.exe
(services.exe ->) (Intel(R) pGFX -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(services.exe ->) (Panda Security S.L. -> Panda Security, S.L.U.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(services.exe ->) (Protected Antivirus Limited -> PCProtect) C:\Program Files (x86)\PCProtect\SecurityService.exe <2>
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d19142d5a057a7c\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> chrome.exe
Impossible d'accéder au processus -> msedge.exe
Impossible d'accéder au processus -> msedge.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d19142d5a057a7c\RtkAudUService64.exe [3403400 2021-12-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [186984 2022-11-02] (Panda Security S.L. -> Panda Security, S.L.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45381424 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [MicrosoftEdgeAutoLaunch_821C582780A49E40AE845C17844149C6] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911240 2024-12-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3543104612-4165526015-2249563598-1001\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.205\Installer\chrmstp.exe [2024-12-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {456E722C-FFD6-44B7-9386-D1C060C6D407} - System32\Tasks\App Explorer S => C:\Users\ericp\AppData\Local\Microsoft\WindowsApps\AppsExplorer.exe [0 0] () [symlink -> ]
Task: {7F45968D-9DE8-420C-ABE8-0CF6EB7D8052} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {97B9D9F1-A881-4076-8966-8386058B7658} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "b0fb2dd8-4e21-4df5-8403-6c67262b9f83" --version "6.31.11415" --silent
Task: {882A58F4-3861-44D4-BF16-178F50EB4EEA} - System32\Tasks\CCleanerSkipUAC - ericp => C:\Program Files\CCleaner\CCleaner.exe [39151920 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {6EE72CDE-0FFB-4F88-8945-CEC24498F53C} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{E71844C6-8814-4A5E-A5F9-D94D517A88E1} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {647D3E2B-2022-4A33-B52B-4E5555F1D0F0} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3543104612-4165526015-2249563598-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2150.23.211.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2192632 2024-09-13] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Pas de fichier)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {DE5AFFFF-B74D-4504-B4DA-EC9E4ACC84D6} - System32\Tasks\Microsoft\Windows\Security\Pwdless\IntelligentPwdlessTask => {8702A841-D5CA-47C3-812D-9CEDC304C200} C:\WINDOWS\system32\IntelligentPwdlessTask.dll [139264 2024-12-21] (Microsoft Windows -> Microsoft Corporation)
Task: {6A3E3CBB-A4D3-4464-9D50-826CB62DF117} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Pas de fichier)
Task: {AE1926A6-0B9A-46AC-BDB2-482DAF2DF67C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Pas de fichier)
Task: {00C97EF6-8FEE-46B2-B04D-55A404FF1804} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Pas de fichier)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {683104D9-F094-47CD-9D15-4E3DD38D2491} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> )
Task: {378723E3-BBF7-4AA5-B051-D9685E5ABB72} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-12] (Acer Incorporated -> )
Task: {5EEF1D72-FFF7-492E-B13E-EC9360897F66} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3543104612-4165526015-2249563598-1003 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {54D9185B-29EB-4216-9E6B-80D360A2A4FB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3543104612-4165526015-2249563598-1003 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {42657387-408C-4DBF-88C1-7A6E8C06EDD8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3543104612-4165526015-2249563598-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {006148FB-37AD-4D4A-8902-9CBCCE7B5132} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2020-09-17] (Acer Incorporated -> Microsoft)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{5fcbbb18-bf2c-470e-bb53-85c6c3fe41e0}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{90637dea-1842-4d9e-9477-0a1cdb4b49d5}: [DhcpNameServer] 172.24.248.17 172.24.248.18
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-01]
Edge HomePage: Default -> hxxp://www.msn.com/?pc=ACTE
Edge Extension: (Avira Safe Shopping) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-09-03]
Edge Extension: (Avira Password Manager) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-10-22]
Edge Extension: (Google Docs hors connexion) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-23]
Edge Extension: (Edge relevant text changes) - C:\Users\ericp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Chrome:
=======
CHR Profile: C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default [2025-01-01]
CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
CHR StartupUrls: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp"
CHR Extension: (Protection Web Avira) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ericp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-14]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-10-11] (HP Inc. -> HP Inc.)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [119560 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] (AnchorFree Inc -> )
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.)
R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [195736 2023-04-13] (Panda Security S.L. -> Panda Security S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [81424 2023-10-05] (Panda Security S.L. -> Panda Security, S.L.U.)
R2 SecurityService; C:\Program Files (x86)\PCProtect\SecurityService.exe [275144 2023-10-31] (Protected Antivirus Limited -> PCProtect)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-12-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\DriverStore\FileRepository\acerairplanemodecontroller.inf_amd64_36869d4d52526b5b\AcerAirplaneModeController.sys [36200 2024-06-03] (Acer Incorporated -> Acer Incorporated)
R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [209088 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2023-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [146184 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [215264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [128744 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [146664 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S4 NNSNHWFP; C:\WINDOWS\system32\DRIVERS\NNSNHWFP.sys [211208 2022-12-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [164568 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [137960 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [407264 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [575720 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [125672 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [335064 2022-11-06] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 ProtectedELAM; C:\WINDOWS\System32\drivers\protected_elam.sys [18912 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> TODO:
R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198376 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [37424 2024-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.)
R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [176360 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [218856 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [150760 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [162536 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130280 2022-11-02] (WatchGuard Technologies, Inc. -> Panda Security, S.L.)
U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [63360 2023-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Panda Security, S.L.U.)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_350fa1f1d5f73524\rt68cx21x64.sys [652256 2022-08-25] (Realtek Semiconductor Corp. -> Realtek)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-10-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-12-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-12-30] (Microsoft Windows -> Microsoft Corporation)
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 16:25 - 2025-01-01 16:27 - 000021963 _____ C:\Users\ericp\Downloads\FRST.txt
2025-01-01 16:24 - 2025-01-01 16:26 - 000000000 ____D C:\FRST
2025-01-01 16:23 - 2025-01-01 16:23 - 002403840 _____ (Farbar) C:\Users\ericp\Downloads\FRST64.exe
2025-01-01 16:14 - 2022-12-06 11:53 - 000211208 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsnhwfp.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000575720 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000407264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000335064 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000215264 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000164568 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000146664 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000146184 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000137960 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000128744 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys
2025-01-01 16:14 - 2022-11-06 11:24 - 000125672 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000218856 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000198376 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000176360 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINFile.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000162536 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000150760 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProc.sys
2025-01-01 16:14 - 2022-11-03 00:33 - 000130280 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys
2025-01-01 16:13 - 2025-01-01 16:16 - 000000000 ____D C:\Program Files (x86)\Panda Security
2025-01-01 16:13 - 2025-01-01 16:13 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk
2025-01-01 16:13 - 2025-01-01 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome
2025-01-01 16:03 - 2025-01-01 16:16 - 000000000 ____D C:\ProgramData\Panda Security
2025-01-01 16:02 - 2025-01-01 16:03 - 003369480 _____ (Panda Security, S.L.) C:\Users\ericp\Downloads\PANDAFREEAV.exe
2024-12-28 20:48 - 2023-10-31 16:01 - 000209088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2024-12-28 20:48 - 2023-10-31 16:01 - 000199312 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2024-12-28 20:48 - 2023-10-31 16:01 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2024-12-27 18:32 - 2024-12-27 18:32 - 000793494 _____ C:\WINDOWS\system32\perfh00C.dat
2024-12-27 18:32 - 2024-12-27 18:32 - 000159190 _____ C:\WINDOWS\system32\perfc00C.dat
2024-12-27 18:27 - 2024-12-27 18:27 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-12-27 18:08 - 2024-12-27 18:08 - 000000000 ____D C:\Users\ericp\AppData\Local\Total_Security
2024-12-27 18:07 - 2024-12-27 18:08 - 000000000 ____D C:\ProgramData\TotalAV
2024-12-27 18:07 - 2024-12-27 18:07 - 000000000 ____D C:\Program Files (x86)\TotalAV
2024-12-27 18:05 - 2024-12-27 18:05 - 000218472 _____ C:\Users\ericp\Downloads\TotalAV_Setup.exe
2024-12-27 16:56 - 2024-12-27 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2024-12-27 16:49 - 2024-12-27 16:49 - 000000000 ____D C:\Users\ericp\OneDrive\Documents\PCProtect
2024-12-27 16:44 - 2024-12-28 20:48 - 000000000 ____D C:\Program Files (x86)\PCProtect
2024-12-27 16:44 - 2024-12-27 18:28 - 000001190 _____ C:\Users\ericp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PCProtect.lnk
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\Users\ericp\AppData\Local\GUI
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\ProgramData\SecuritySuite
2024-12-27 16:44 - 2024-12-27 16:44 - 000000000 ____D C:\ProgramData\PCProtect
2024-12-27 16:43 - 2024-12-27 16:44 - 057417608 _____ C:\Users\ericp\Downloads\PCProtect_Setup.exe
2024-12-21 18:21 - 2024-12-31 07:16 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-21 18:10 - 2024-12-21 18:10 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2024-12-21 18:09 - 2024-12-21 18:09 - 000027132 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-21 18:09 - 2024-12-21 18:09 - 000027132 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-12-20 18:33 - 2024-12-20 18:33 - 000069847 _____ C:\Users\ericp\Downloads\20SXTCAM3B-AT-4617898-PERRIN_2024-12-16_101722.pdf
2024-12-20 18:31 - 2024-12-20 18:31 - 007269295 _____ C:\Users\ericp\Downloads\VIDEO-2024-10-17-18-58-54.mp4
2024-12-20 18:29 - 2024-12-20 18:29 - 003208335 _____ C:\Users\ericp\Downloads\CalculFuturesRetraites.mp4
2024-12-12 21:30 - 2024-12-12 21:30 - 000024155 _____ C:\Users\ericp\Downloads\AA2_54750587_DX-132-RS_99664358 (1).pdf
2024-12-12 19:16 - 2024-12-12 19:16 - 000739773 _____ C:\Users\ericp\Downloads\Effets de différents revêtements sur la température au sein de la ruche.pdf
2024-12-03 21:48 - 2024-12-03 21:48 - 000032757 _____ C:\Users\ericp\Downloads\20SXTCAM3B-LISTE_SUCCINCTE_STAGIAIRES (1).pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2025-01-01 16:28 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-01 16:25 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-01-01 16:15 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2025-01-01 16:06 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-30 22:49 - 2024-10-19 21:35 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-12-30 17:19 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-30 17:19 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-30 16:48 - 2021-06-15 15:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-12-30 16:40 - 2024-04-01 08:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-12-30 16:37 - 2021-11-14 08:17 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-12-29 07:58 - 2022-01-30 21:32 - 000000000 ____D C:\Program Files\CCleaner
2024-12-27 18:32 - 2024-10-19 21:35 - 001774664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-27 18:28 - 2024-10-19 21:30 - 000000730 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2024-12-27 18:28 - 2021-11-13 20:33 - 000000000 __SHD C:\Users\ericp\IntelGraphicsProfiles
2024-12-27 18:28 - 2021-06-15 15:29 - 000000000 ___HD C:\Intel
2024-12-27 18:27 - 2024-10-19 21:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-27 18:27 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2024-12-27 18:27 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-27 18:27 - 2021-06-15 15:00 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-27 17:05 - 2022-09-02 16:36 - 000000000 ____D C:\ProgramData\Avira
2024-12-27 17:02 - 2024-10-18 16:03 - 000000000 ___DC C:\WINDOWS\Panther
2024-12-27 16:55 - 2023-03-05 06:48 - 003388912 _____ C:\WINDOWS\system32\rtp.db
2024-12-27 16:44 - 2024-04-01 08:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-12-23 19:34 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-22 00:45 - 2021-11-13 20:33 - 000000000 ____D C:\Users\ericp\AppData\Local\D3DSCache
2024-12-22 00:33 - 2024-10-19 21:24 - 000505880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-22 00:33 - 2022-09-20 19:15 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-22 00:31 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-22 00:30 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2024-12-21 18:15 - 2021-06-15 15:03 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-21 18:09 - 2024-10-19 21:27 - 003337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-21 08:07 - 2024-10-19 21:35 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-21 08:07 - 2024-10-19 21:35 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-11 21:47 - 2024-10-19 21:35 - 000003382 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-12-08 19:02 - 2021-11-14 17:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-12-08 19:00 - 2021-11-14 17:33 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-12-06 17:45 - 2021-12-13 18:25 - 000000000 ____D C:\Users\ericp\AppData\LocalLow\Temp
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================