Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-04-2021 Exécuté par rené (administrateur) sur PC_À_RENÉ (ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ) (10-04-2021 15:40:48) Exécuté depuis C:\Users\rené\Desktop Profils chargés: rené Platform: Windows 8.1 (Update) (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3> (Huawei Software Technologies Co., LTD. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Intel Corporation - pGFX -> Intel Corporation) C:\windows\System32\igfxCUIService.exe (Intel Corporation - pGFX -> Intel Corporation) C:\windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\windows\System32\igfxHK.exe (Intel Corporation - pGFX -> Intel Corporation) C:\windows\System32\igfxTray.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\windows\System32\SkyDrive.exe (Microsoft Windows -> Microsoft Corporation) C:\windows\System32\wlanext.exe (Mozilla Corporation -> Mozilla Foundation) C:\Program Files (x86)\Mozilla Firefox\pingsender.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2014-10-23] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117472 2021-03-24] (Avast Software s.r.o. -> AVAST Software) HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\Users\rené\AppData\Local\Temp\~DFF580E9FD81E4293A.TMP" /F /Q <==== ATTENTION HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\rené\AppData\Roaming\ZHP\ZHPCleaner.txt [10048 2021-04-10] () [Fichier non signé] HKLM-x32\...\RunOnce: [ZHPCleaner_Key1] => REG delete "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player NPAPI Notifier" /F /reg:64 HKLM-x32\...\RunOnce: [ZHPCleaner_Key2] => REG delete "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" /F /reg:64 HKU\S-1-5-21-3706135539-436373825-2087619660-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [27152888 2018-06-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3706135539-436373825-2087619660-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3706135539-436373825-2087619660-1001\...\MountPoints2: {0c72544a-94f1-11e7-8289-d8fc930e6e55} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3706135539-436373825-2087619660-1001\...\MountPoints2: {5a1f4f9c-4310-11e6-8274-d8fc930e6e55} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3706135539-436373825-2087619660-1001\...\MountPoints2: {5a1f4fd2-4310-11e6-8274-d8fc930e6e55} - "D:\HiSuiteDownLoader.exe" HKLM\...\Windows x64\Print Processors\Canon MG5600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCA.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5600 series: C:\windows\system32\CNMLMCA.DLL [406016 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\89.1.8954.114\Installer\chrmstp.exe [2021-04-08] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-04-02] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7844.104\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {14369A78-1C20-419F-BD41-D913D1C64420} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software) Task: {1F8FA12E-7663-40F5-AC8C-D3C0A0800B86} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [39848 2018-06-28] (Garmin International, Inc. -> ) Task: {31A002B3-E794-4739-9C07-1E41D7D392C3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {3592EB86-530C-43C8-B531-0D9E257851D8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {363CF11C-15B0-4242-9AF4-BA12379F057C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) Task: {46269FE4-9982-4F56-BEFC-BFA22C83D0A7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2256960 2021-03-31] (Avast Software s.r.o. -> AVAST Software) Task: {4C88FE45-1A05-4A1B-9F5B-742559D66588} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-13] (Google Inc -> Google Inc.) Task: {54089D88-3B93-4572-A22C-0D15E21E1753} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {6C2256E5-96A1-4650-A1EE-A54D6F6ED480} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4686560 2021-03-24] (Avast Software s.r.o. -> AVAST Software) Task: {6C293F75-0C96-4EE8-A5CE-6ED0F73225FA} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [696816 2021-03-29] (Mozilla Corporation -> Mozilla Foundation) Task: {746956E6-306C-4B3A-8017-DAD2DE1AE231} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-13] (Google Inc -> Google Inc.) Task: {761557C8-A37F-40A7-9119-6F72BC331AB8} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-02-20] (Adobe Inc. -> Adobe) Task: {7A7FC758-11E3-4BA1-BB61-7F0437BB0C7C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform) Task: {A86B51CA-2BF3-4BE8-8CCB-CDAEBD181964} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2256960 2021-03-31] (Avast Software s.r.o. -> AVAST Software) Task: {B8AC6050-1FCA-4F82-B2FB-10D5B8ADBB57} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [131005360 2021-03-11] (Microsoft Windows -> Microsoft Corporation) Task: {BBF0E579-96C9-4BE1-93B2-DD5E41FD8B14} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) Task: {DE0EF8C1-1883-4EB9-BEC0-B7F0DA383D53} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{376D1A08-38C3-413F-98A4-92F49FBB3D8D}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{8758F410-D8AB-4F64-A2EA-409F8B98AAD7}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Profile: C:\Users\rené\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-10] FireFox: ======== FF DefaultProfile: duajpvnz.default FF ProfilePath: C:\Users\rené\AppData\Roaming\Mozilla\Firefox\Profiles\duajpvnz.default [2021-04-10] FF NewTab: Mozilla\Firefox\Profiles\duajpvnz.default -> about:newtab FF Notifications: Mozilla\Firefox\Profiles\duajpvnz.default -> hxxps://www.eltrecetv.com.ar; hxxps://www.bricomarche.com FF HomepageOverride: Mozilla\Firefox\Profiles\duajpvnz.default -> Enabled: web@00022358-d56d-4f5e-a89c-d4534d7c5565 FF HomepageOverride: Mozilla\Firefox\Profiles\duajpvnz.default -> Disabled: _8iMembers_@download.audiotoaudio.com FF NewTabOverride: Mozilla\Firefox\Profiles\duajpvnz.default -> Enabled: web@00022358-d56d-4f5e-a89c-d4534d7c5565 FF NewTabOverride: Mozilla\Firefox\Profiles\duajpvnz.default -> Disabled: _8iMembers_@download.audiotoaudio.com FF SearchPlugin: C:\Users\rené\AppData\Roaming\Mozilla\Firefox\Profiles\duajpvnz.default\searchplugins\yahoo-avast.xml [2019-02-08] FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2021-02-20] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2021-02-20] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default [2021-04-10] CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://www.gstatic.com/youtube/img/branding/favicon/favicon_144x144.png CHR Extension: (Slides) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-29] CHR Extension: (YouTube) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\agimnkijcaahngcdmfeangaknmldooml [2021-04-06] CHR Extension: (Docs) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-29] CHR Extension: (Google Drive) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-05] CHR Extension: (YouTube) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-25] CHR Extension: (Recherche Google) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-19] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-12-05] CHR Extension: (Sheets) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-29] CHR Extension: (Google Docs hors connexion) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-21] CHR Extension: (Avast Online Security) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-03-21] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-21] CHR Extension: (Gmail) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-04] CHR Extension: (Chrome Media Router) - C:\Users\rené\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-24] CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-02-20] (Adobe Inc. -> Adobe) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7888408 2021-03-29] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [623216 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [353504 2021-03-24] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\89.1.8954.114\elevation_service.exe [1504864 2021-03-31] (Avast Software s.r.o. -> AVAST Software) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] (Huawei Software Technologies Co., LTD. -> ) R2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [125168 2014-12-12] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-03-21] (Malwarebytes Inc -> Malwarebytes) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [35680 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [208552 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [365520 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [250328 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [99288 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [41304 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [177872 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [524416 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [107808 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [83368 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [850120 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\windows\System32\drivers\aswSP.sys [466696 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\windows\System32\drivers\aswStm.sys [216376 2021-03-24] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [326976 2021-03-24] (Avast Software s.r.o. -> AVAST Software) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 ITECIRfilter; C:\windows\system32\DRIVERS\ITECIRfilter.sys [18064 2012-06-20] (ITE Tech. Inc. -> ITE Tech. Inc.) R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [220752 2021-04-08] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248992 2021-04-08] (Malwarebytes Inc -> Malwarebytes) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-04-10 15:36 - 2021-04-10 15:36 - 000010048 _____ C:\Users\rené\Desktop\ZHPCleaner (R).txt 2021-04-10 15:32 - 2021-04-10 15:32 - 000010646 _____ C:\ProgramData\Desktop\ZHPCleaner (S).txt 2021-04-10 15:17 - 2021-04-10 15:36 - 000000000 ____D C:\Users\rené\AppData\Roaming\ZHP 2021-04-10 15:17 - 2021-04-10 15:17 - 000000884 _____ C:\Users\rené\Desktop\ZHPCleaner.lnk 2021-04-10 15:17 - 2021-04-10 15:17 - 000000000 ____D C:\Users\rené\AppData\Local\ZHP 2021-04-10 15:16 - 2021-04-10 15:16 - 003325592 _____ (Nicolas Coolman) C:\Users\rené\Desktop\ZHPCleaner.exe 2021-04-10 15:06 - 2021-04-10 15:08 - 000010180 _____ C:\Users\rené\Desktop\Fixlog.txt 2021-04-10 15:02 - 2021-04-10 15:05 - 000000000 ____D C:\Users\rené\Desktop\FRST-OlderVersion 2021-04-10 15:02 - 2021-04-10 15:02 - 000000000 ___HD C:\$AV_ASW 2021-04-09 11:27 - 2021-04-09 11:36 - 000000000 ____D C:\Users\rené\Desktop\les bitumes gigoudens 2021-04-08 21:29 - 2021-04-08 21:29 - 000248992 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys 2021-04-08 21:29 - 2021-04-08 21:29 - 000220752 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys 2021-04-06 18:54 - 2021-04-06 18:54 - 000000000 ____D C:\Users\rené\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2021-04-01 19:07 - 2021-04-01 19:07 - 000080879 _____ C:\Users\rené\Downloads\COMPTE_RENDU.pdf 2021-04-01 18:55 - 2021-04-01 18:55 - 001772633 _____ C:\Users\rené\Downloads\bc7cec06-ed84-41dd-a891-23b93d234721.pdf 2021-04-01 18:51 - 2021-04-01 18:51 - 001516327 _____ C:\Users\rené\Downloads\63351455-f0c2-4982-a24c-4f7e945abf63.pdf 2021-04-01 18:51 - 2021-04-01 18:51 - 001516327 _____ C:\Users\rené\Downloads\63351455-f0c2-4982-a24c-4f7e945abf63 (2).pdf 2021-04-01 18:51 - 2021-04-01 18:51 - 001516327 _____ C:\Users\rené\Downloads\63351455-f0c2-4982-a24c-4f7e945abf63 (1).pdf 2021-04-01 18:47 - 2021-04-01 18:47 - 000015369 _____ C:\Users\rené\Downloads\justificatif_reglement_avis_33337582720931.pdf 2021-04-01 18:47 - 2021-04-01 18:47 - 000015369 _____ C:\Users\rené\Desktop\justificatif_reglement_avis_33337582720931.pdf 2021-03-29 04:02 - 2021-03-29 04:02 - 000000000 ____D C:\windows\system32\Tasks\Mozilla 2021-03-24 18:29 - 2021-03-24 18:29 - 000339680 _____ (AVAST Software) C:\windows\system32\aswBoot.exe 2021-03-24 18:29 - 2021-03-24 18:29 - 000216376 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys 2021-03-22 20:10 - 2021-03-22 20:13 - 000000000 ____D C:\Users\rené\Downloads\livres rené 2021-03-22 19:14 - 2021-03-22 14:11 - 000674518 ____N C:\Users\rené\Desktop\downloadfile-2.bin 2021-03-21 16:23 - 2021-03-21 16:30 - 000030070 _____ C:\Users\rené\Desktop\Addition.txt 2021-03-21 16:21 - 2021-04-10 15:41 - 000022946 _____ C:\Users\rené\Desktop\FRST.txt 2021-03-21 16:20 - 2021-04-10 15:41 - 000000000 ____D C:\FRST 2021-03-21 16:17 - 2021-04-10 15:02 - 002297856 _____ (Farbar) C:\Users\rené\Desktop\FRST64.exe 2021-03-21 15:40 - 2021-03-21 15:40 - 000001983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-03-21 15:40 - 2021-03-21 15:40 - 000001971 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-03-21 15:40 - 2021-03-21 15:40 - 000000000 ____D C:\Users\rené\AppData\Local\mbam 2021-03-21 15:39 - 2021-04-08 21:28 - 000199128 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys 2021-03-21 15:39 - 2021-03-21 15:39 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-21 15:38 - 2021-03-21 15:38 - 002084016 _____ (Malwarebytes) C:\Users\rené\Desktop\MBSetup.exe 2021-03-21 15:38 - 2021-03-21 15:38 - 000000000 ____D C:\Program Files\Malwarebytes 2021-03-15 09:16 - 2021-04-01 18:43 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-03-11 05:20 - 2021-02-13 04:47 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx 2021-03-11 05:20 - 2021-02-13 04:26 - 002132992 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl 2021-03-11 05:20 - 2021-02-13 04:24 - 000073728 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx 2021-03-11 05:20 - 2021-02-13 04:12 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-04-10 15:41 - 2018-04-15 19:42 - 000000000 ____D C:\Users\rené\AppData\Local\AVAST Software 2021-04-10 15:40 - 2016-11-21 08:48 - 000000000 ____D C:\Users\rené\AppData\LocalLow\Mozilla 2021-04-10 15:40 - 2015-07-19 09:41 - 000000000 ____D C:\ProgramData\Mozilla 2021-04-10 15:24 - 2013-08-22 17:36 - 000000000 ____D C:\windows\AppReadiness 2021-04-10 15:20 - 2015-07-19 09:47 - 000000000 ____D C:\ProgramData\AVAST Software 2021-04-10 15:15 - 2014-11-21 00:46 - 001817064 _____ C:\windows\system32\PerfStringBackup.INI 2021-04-10 15:15 - 2014-11-21 00:03 - 000805600 _____ C:\windows\system32\perfh00C.dat 2021-04-10 15:15 - 2014-11-21 00:03 - 000156456 _____ C:\windows\system32\perfc00C.dat 2021-04-10 15:15 - 2013-08-22 15:36 - 000000000 ____D C:\windows\Inf 2021-04-10 15:11 - 2020-08-16 19:30 - 000000000 ____D C:\Program Files\CCleaner 2021-04-10 15:10 - 2015-07-19 09:36 - 000000000 ___DO C:\Users\rené\OneDrive 2021-04-10 15:10 - 2015-07-19 09:28 - 000000000 __SHD C:\Users\rené\IntelGraphicsProfiles 2021-04-10 15:09 - 2013-08-22 16:45 - 000000006 ____H C:\windows\Tasks\SA.DAT 2021-04-10 15:08 - 2015-07-19 09:27 - 000000000 ____D C:\Users\rené 2021-04-09 11:25 - 2015-07-19 23:02 - 000000000 ____D C:\Users\rené\Desktop\Numérisations 2021-04-08 18:27 - 2015-07-19 09:34 - 000003598 _____ C:\windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3706135539-436373825-2087619660-1001 2021-04-08 17:57 - 2019-04-17 19:49 - 000003732 _____ C:\windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2021-04-08 17:57 - 2018-04-15 19:49 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2021-04-08 00:31 - 2020-08-16 19:31 - 000004128 _____ C:\windows\system32\Tasks\CCleaner Update 2021-04-08 00:31 - 2020-08-16 19:31 - 000002808 _____ C:\windows\system32\Tasks\CCleanerSkipUAC 2021-04-08 00:31 - 2020-07-13 11:38 - 000003534 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-08 00:31 - 2020-07-13 11:38 - 000003406 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-04-08 00:31 - 2018-08-09 20:34 - 000003556 _____ C:\windows\system32\Tasks\GarminUpdaterTask 2021-04-08 00:31 - 2015-12-13 03:24 - 000003502 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-04-08 00:31 - 2015-12-13 03:24 - 000003374 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-04-08 00:31 - 2015-12-12 22:41 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software 2021-04-08 00:31 - 2015-07-19 16:43 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2021-04-07 06:57 - 2019-07-07 23:47 - 000000000 ____D C:\Users\rené\AppData\Local\CrashDumps 2021-04-01 18:43 - 2015-07-19 09:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-03-29 04:02 - 2015-07-19 09:41 - 000001154 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-03-24 18:30 - 2017-03-10 05:40 - 000003910 _____ C:\windows\system32\Tasks\Avast Emergency Update 2021-03-24 18:29 - 2020-10-14 09:36 - 000177872 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys 2021-03-24 18:29 - 2020-04-15 09:45 - 000524416 _____ (AVAST Software) C:\windows\system32\Drivers\aswNetHub.sys 2021-03-24 18:29 - 2019-01-04 13:03 - 000250328 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys 2021-03-24 18:29 - 2019-01-04 13:03 - 000099288 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys 2021-03-24 18:29 - 2018-10-20 18:23 - 000041304 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys 2021-03-24 18:29 - 2015-07-19 09:51 - 000466696 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys 2021-03-24 18:29 - 2015-07-19 09:51 - 000326976 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys 2021-03-24 18:29 - 2015-07-19 09:51 - 000107808 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys 2021-03-24 18:29 - 2015-07-19 09:51 - 000083368 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys 2021-03-24 18:28 - 2019-01-14 17:03 - 000365520 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys 2021-03-24 18:28 - 2019-01-04 13:03 - 000035680 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys 2021-03-24 18:28 - 2017-11-16 19:00 - 000208552 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys 2021-03-24 18:28 - 2015-07-19 09:51 - 000850120 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys 2021-03-24 11:33 - 2013-08-22 17:36 - 000000000 ____D C:\windows\LiveKernelReports 2021-03-22 20:15 - 2015-07-21 21:45 - 000000000 ____D C:\Users\rené\Desktop\rene 2021-03-21 16:18 - 2020-12-13 18:23 - 000000000 ____D C:\Users\rené\AppData\Local\Molotov 2021-03-21 16:18 - 2020-11-19 21:23 - 000000000 ____D C:\Users\rené\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov 2021-03-20 18:51 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-15 09:58 - 2020-11-19 21:23 - 000000000 ____D C:\Users\rené\AppData\Roaming\Molotov 2021-03-15 09:41 - 2013-08-22 16:44 - 000362680 _____ C:\windows\system32\FNTCACHE.DAT 2021-03-15 09:38 - 2013-08-22 17:36 - 000000000 ___RD C:\windows\ToastData 2021-03-15 09:38 - 2013-08-22 17:36 - 000000000 ____D C:\windows\SysWOW64\setup 2021-03-15 09:38 - 2013-08-22 17:36 - 000000000 ____D C:\windows\system32\setup 2021-03-12 21:37 - 2017-04-14 01:02 - 000002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-03-11 22:48 - 2013-08-22 17:20 - 000000000 ____D C:\windows\CbsTemp 2021-03-11 22:44 - 2015-06-10 11:29 - 000000000 ____D C:\windows\system32\MRT 2021-03-11 22:38 - 2015-06-10 11:29 - 131005360 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2015-11-25 06:29 ==================== Fin de FRST.txt ========================