Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-07-2021 Exécuté par moi (administrateur) sur MOI-PC (Gigabyte Technology Co., Ltd. M68MT-S2) (05-07-2021 11:05:37) Exécuté depuis C:\Users\moi\Downloads Profils chargés: moi & UpdatusUser Platform: Windows 10 Home Version 21H1 19043.1081 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () Q:\140061.fra\Office14\WINWORD.EXE (Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe (Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe (Microsoft Corporation -> ) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\OFFICEVIRT.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7> (NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Orange -> ) [Fichier non signé] C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe (RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe (RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-06-21] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [Combo Cleaner] => C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe [1701504 2021-06-10] (RCS LT, UAB -> RCS LT) HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Fichier non signé] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.) [Fichier non signé] HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [Opera Browser Assistant] => C:\Users\moi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4079824 2021-06-29] (Opera Software AS -> Opera Software) HKLM\Software\...\AppCompatFlags\Custom\chrome.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\...\AppCompatFlags\Custom\explorer.zza: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] -> HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0278EC9C-0BD6-4188-A436-6CA8074AF528} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {05685331-67F3-4233-A9B7-FB1ABB4FF737} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {05AE6109-A89C-4F82-B35A-72E75A52DF6A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {101E155B-4414-4E85-AA27-BF9CD0514D3E} - System32\Tasks\RealDownloader Update Check => c:\program files (x86)\real\RealDownloader\downloader2.exe Task: {1249C864-ED11-4273-B748-B8CA9E8614D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {14D639B0-F15E-4976-A8ED-00EFE850104E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software) Task: {15B8693F-1621-42E2-9AAD-3FF1EBD8CF6F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {15CB8862-40C8-4754-9235-32FB211801DE} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé] Task: {2506C499-6B09-449D-85C4-776CCBF56D8D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {28CBA467-23A2-4FA6-9B3E-EBEC4054D9DF} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {2E8130CA-89A5-45F8-A386-2B21A86A54F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC) Task: {2F1C3797-4A07-4AF9-889A-E7FCC45CE9A7} - System32\Tasks\Secure BrowserUpdateTaskMachineUA => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.) Task: {32A8CC5E-F00C-4265-AD32-3FFCC00D3CF6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-23] (Mozilla Corporation -> Mozilla Foundation) Task: {39E465DC-1CFA-4A58-9849-6395918CE7AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {62E904FE-32FF-455F-AB65-66B41278A202} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {68BC91F3-DB22-4359-893B-918326C5D5A3} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {6CD68257-D9CE-46C6-8760-89A1C26DB1B5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform) Task: {755CD19F-D247-432D-983F-02E9E4925613} - System32\Tasks\Opera scheduled Autoupdate 1571582613 => c:\users\moi\appdata\local\programs\opera\launcher.exe [2264784 2021-06-29] (Opera Software AS -> Opera Software) Task: {7A238231-F831-4D28-A4D9-C998DBEE9AE4} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7DDFF20F-58FA-436F-ADD5-53870073DAC8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {7EC84B97-F85C-4975-9DFB-6A9A6A7860E7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {82D46979-C5D9-4E27-93B7-B1C4557FB999} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [476760 2015-01-19] (Orange -> ) [Fichier non signé] Task: {891D8D62-64EF-4523-B87E-9C8C09AE561A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {8930A908-0AA8-4C7B-8130-5E6E4287026E} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {91989ABE-BBCB-4B7F-8032-18DE9522C7D6} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4903192 2021-06-21] (Avast Software s.r.o. -> AVAST Software) Task: {9F825A1D-6A51-46B4-AF86-2DE606A86BC2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A34B0A24-C433-4EBF-91F0-0BBD47C8FA1E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A5CD17AE-5C13-41D0-A266-F44F411FDF5F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-08-21] (Garmin International, Inc. -> ) Task: {A8AD99F4-BD3F-4DB2-8B4A-8A5315345FAD} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé] Task: {AE55F22F-D018-447C-9390-2FE53570CB1D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B1B3837B-B006-4811-8FB2-73F3B5ADF880} - System32\Tasks\Secure BrowserUpdateTaskMachineCore => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.) Task: {B2822E94-BC2E-45E6-A5F2-7F69CA5AB3A0} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {B71B459F-80D2-4E6C-90F4-763F41C9164F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B7F6C889-BD94-4581-B82B-ABE6B0EE8A4F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {BFC563E9-3BED-4D5F-A081-986A203EA24A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {C91CCADC-542D-44A7-8371-8537401F0CB7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CC702477-5015-4D22-9D7D-F655A44C20C2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D3FCB0F3-43E8-4764-8969-81FCCA487985} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {D5563374-5ECC-4174-B8E4-9D322C8DA31D} - System32\Tasks\Opera scheduled assistant Autoupdate 1582719313 => C:\Users\moi\AppData\Local\Programs\Opera\launcher.exe [2264784 2021-06-29] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\moi\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {D5BDD582-D3AC-4C1A-9E52-E96E6B0F7425} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D8881843-4654-4CF9-88C5-9B02029969EA} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION Task: {E31CEDC2-FD9F-4EAE-A75A-5C3E7B344731} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC) Task: {E6DBBF28-D23D-4AD4-A506-AC80B1E9934E} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {EAD573D9-F730-48A3-A992-6914C7A06F2C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION Task: {F5D0FE22-7958-44CF-9FBE-47EB461C73A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{CF0925DE-66AD-4B7A-BD28-10A491805895}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-05] Edge Extension: (Outlook) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-05] Edge Extension: (Word) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-05] Edge Extension: (Excel) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-05] Edge Extension: (PowerPoint) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-05] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 1mm71d5j.default-1504352958828 FF ProfilePath: C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 [2021-07-05] FF user.js: detected! => C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\user.js [2019-03-16] FF Homepage: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> hxxps://r.orange.fr/r/Oodc_oi_promoHP?ref=O_OI_defaultPage_FFe64_w10e64_promoHP FF NetworkProxy: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> type", 0 FF Session Restore: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> est activé. FF Extension: (Facebook Container) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@contain-facebook.xpi [2021-05-07] FF Extension: (Google Maps Sidebar) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@GoogleMaps.Sidebar.xpi [2020-12-13] FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@windscribeff.xpi [2021-05-19] FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-15] FF Extension: (AdBlocker for YouTube™) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-05-18] FF Extension: (uBlock Origin) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\uBlock0@raymondhill.net.xpi [2021-06-23] FF Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\wrc@avast.com.xpi [2021-02-17] FF Extension: (Malwarebytes Browser Guard) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-07-03] FF Extension: (GoogleMaps-IT) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{9eb970a1-335d-4af6-916c-ea5b38cef08b}.xpi [2020-12-13] FF Extension: (Flash and Video Download) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-06-09] FF Extension: (Video DownloadHelper) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-20] FF HKLM\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default [2021-07-04] CHR HomePage: Default -> hxxp://www.fr-gogo.com/ CHR StartupUrls: Default -> "hxxp://www.fr-gogo.com/" CHR Extension: (Slides) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-25] CHR Extension: (Docs) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-25] CHR Extension: (Google Drive) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-25] CHR Extension: (YouTube) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-25] CHR Extension: (McAfee® WebAdvisor) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-12-25] CHR Extension: (Gmail) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-25] CHR Extension: (Chrome Media Router) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-25] CHR HKU\S-1-5-21-7480761-4120596894-250065351-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable [2021-07-04] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2020-11-20] OPR Extension: (Rich Hints Agent) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-27] OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2021-05-19] Brave: ======= BRA Profile: C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-07-04] BRA Extension: (Brave Tracking Protection Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-01-11] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-01-11] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-01-11] BRA Extension: (Brave Ad Block Updater (FRA: EasyList Liste FR)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2019-01-11] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-01-11] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8249936 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [625432 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [373528 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé] R2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [141440 2021-06-10] (RCS LT, UAB -> RCS LT) R2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [150144 2021-06-10] (RCS LT, UAB -> RCS LT) S3 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] (NVIDIA Corporation -> ) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7462200 2021-07-02] (Malwarebytes Inc -> Malwarebytes) R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] (NVIDIA Corporation -> ) R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13921616 2021-07-01] (Adlice -> ) S2 Secure Browser; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.) S3 Secure Browserm; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\NisSrv.exe [2169576 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\MsMpEng.exe [128376 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-21] (Avast Software s.r.o. -> AVAST Software) S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-21] (Avast Software s.r.o. -> AVAST Software) R3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL -> BitDefender LLC) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-07-02] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-28] (Malwarebytes Inc -> Malwarebytes) R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-07-05] (Adlice -> ) R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL -> Bitdefender) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [78232 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [430312 2020-07-22] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98544 2020-07-22] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-05 01:09 - 2021-07-05 01:09 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys 2021-07-04 19:33 - 2021-07-04 20:09 - 000000000 ____D C:\ProgramData\RogueKiller 2021-07-04 19:33 - 2021-07-04 19:33 - 000000859 _____ C:\Users\Public\Desktop\RogueKiller.lnk 2021-07-04 19:33 - 2021-07-04 19:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2021-07-04 19:33 - 2021-07-04 19:33 - 000000000 ____D C:\Program Files\RogueKiller 2021-07-04 19:29 - 2021-07-04 19:30 - 041835344 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup(1).exe 2021-07-04 15:26 - 2021-07-04 19:20 - 000000361 _____ C:\Users\moi\Downloads\Search.txt 2021-07-04 15:13 - 2021-07-04 15:14 - 002301440 _____ (Farbar) C:\Users\moi\Downloads\FRST64.exe 2021-07-03 20:33 - 2021-07-03 20:33 - 000432483 _____ C:\Users\moi\Downloads\ZHP Suite résultats.html 2021-07-03 20:25 - 2021-07-03 20:25 - 000432483 _____ C:\Users\moi\Desktop\ZHPDiag.html 2021-07-03 20:09 - 2021-07-03 20:09 - 003472536 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPSuite.exe 2021-07-03 19:57 - 2021-07-03 19:57 - 000086263 _____ C:\Users\moi\Downloads\ZHPDiag. Résultats.html 2021-07-03 19:49 - 2021-07-03 19:49 - 003277976 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPDiag3(1).exe 2021-07-03 19:48 - 2021-07-03 19:48 - 000000863 _____ C:\Users\moi\Desktop\ZHPDiag.lnk 2021-07-03 18:43 - 2021-07-03 18:43 - 000002773 _____ C:\Users\Public\Desktop\ZHPCleaner (S).txt 2021-07-03 18:17 - 2021-07-03 18:17 - 003258008 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPCleaner.exe 2021-07-03 18:09 - 2021-07-03 20:34 - 000000751 _____ C:\Users\Public\Desktop\ZHPDiag.txt 2021-07-03 16:41 - 2021-07-03 16:43 - 105752944 _____ (AO Kaspersky Lab) C:\Users\moi\Downloads\kvrt(1).exe 2021-07-02 22:00 - 2021-07-02 22:00 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-07-01 09:32 - 2021-07-04 22:41 - 000003708 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582719313 2021-06-29 17:47 - 2021-06-29 17:48 - 000000000 ____D C:\Users\moi\Downloads\Epreuve d'effort HD 29 juin 2021 2021-06-28 18:02 - 2021-06-28 18:02 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-06-28 13:02 - 2021-07-03 16:33 - 000000000 ____D C:\KVRT2020_Data 2021-06-28 12:56 - 2021-06-28 12:58 - 105350512 _____ (AO Kaspersky Lab) C:\Users\moi\Downloads\KVRT.exe 2021-06-26 13:10 - 2021-06-26 13:11 - 000124428 _____ C:\Users\moi\Downloads\Conditions générales d'utilisation du service E-Documents.pdf 2021-06-25 01:51 - 2021-07-04 15:26 - 000060105 _____ C:\Users\moi\Downloads\Shortcut.txt 2021-06-25 01:40 - 2021-07-05 11:07 - 000031951 _____ C:\Users\moi\Downloads\FRST.txt 2021-06-23 23:31 - 2021-06-23 23:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-06-23 21:58 - 2021-06-24 10:52 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-06-23 01:21 - 2021-06-23 01:21 - 000000000 ____D C:\Users\moi\AppData\Local\RCS_LT 2021-06-23 01:20 - 2021-06-23 01:30 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner 2021-06-23 01:20 - 2021-06-23 01:20 - 000001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk 2021-06-23 01:20 - 2021-06-23 01:20 - 000001949 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk 2021-06-23 01:16 - 2021-06-23 01:16 - 003590288 _____ (RCS LT) C:\Users\moi\Downloads\CCSetup(1).exe 2021-06-22 23:22 - 2021-06-22 23:22 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-06-22 23:22 - 2021-06-22 23:22 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-06-22 23:22 - 2021-06-22 23:22 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-06-22 23:22 - 2021-06-22 23:22 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-06-22 23:22 - 2021-06-22 23:22 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-06-22 23:21 - 2021-06-22 23:21 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-06-22 23:21 - 2021-06-22 23:21 - 000011333 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-06-22 23:20 - 2021-06-22 23:20 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-06-22 23:20 - 2021-06-22 23:20 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-06-22 23:20 - 2021-06-22 23:20 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-06-22 23:20 - 2021-06-22 23:20 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-06-22 23:20 - 2021-06-22 23:20 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-06-21 22:02 - 2021-06-21 22:02 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2021-06-21 22:02 - 2021-06-21 22:02 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2021-06-14 13:20 - 2021-06-14 13:21 - 041840176 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup (1).exe 2021-06-13 00:07 - 2021-06-13 00:07 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2(2).exe 2021-06-13 00:02 - 2021-06-13 00:08 - 000000000 ____D C:\Users\moi\Downloads\inc ca 2021-06-11 22:37 - 2021-06-11 22:39 - 047622883 _____ (Oleg N. Scherbakov) C:\Users\moi\Downloads\captvty-2.9.3.2-autoextract.exe 2021-06-10 10:35 - 2021-06-10 10:35 - 000711203 _____ C:\Users\moi\Downloads\Déclaration de sinistre .docx.pdf 2021-06-10 09:50 - 2021-06-10 09:50 - 000163095 _____ C:\Users\moi\Downloads\Déclaration de sinistre-LOYERS IMPAYES.docx.pdf 2021-06-09 16:48 - 2021-06-09 16:48 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2.exe 2021-06-09 13:06 - 2021-06-09 13:06 - 000366745 _____ C:\Users\moi\Downloads\AXA mutuelle pieces jointes_09_06_2021.zip 2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-06-08 08:04 - 2021-06-08 08:04 - 000088906 _____ C:\Users\moi\Downloads\CANAL+ LETTRE CHANGEMENT DE CONFIGURATION AVEC CONTRAT - 2021-06-05.pdf 2021-06-05 23:02 - 2021-06-05 23:02 - 000001399 _____ C:\Users\Public\Desktop\Music Search MP3.lnk 2021-06-05 23:02 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL 2021-06-05 22:56 - 2021-06-05 23:02 - 000001255 _____ C:\Users\Public\Desktop\aTube Catcher.lnk 2021-06-05 22:56 - 2021-06-05 22:56 - 000000000 ____D C:\Program Files (x86)\DsNET Corp 2021-06-05 22:49 - 2021-07-04 22:41 - 000003442 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineUA 2021-06-05 22:49 - 2021-07-04 22:41 - 000003218 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineCore 2021-06-05 22:49 - 2021-06-07 00:20 - 000000000 ____D C:\Program Files (x86)\Secure Browser 2021-06-05 22:44 - 2021-06-05 22:44 - 026194208 _____ (DsNET Corp ) C:\Users\moi\Downloads\aTube_Catcher.exe ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-05 11:06 - 2021-06-04 19:34 - 000000000 ____D C:\FRST 2021-07-05 11:05 - 2020-07-27 18:46 - 000000000 ____D C:\Program Files\CCleaner 2021-07-05 10:53 - 2020-06-01 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-07-05 10:21 - 2018-03-27 16:23 - 000000000 ____D C:\Users\moi\AppData\Local\AVAST Software 2021-07-05 10:19 - 2014-10-29 12:43 - 000000000 ____D C:\Users\moi\Documents\1Fichiers Word 2021-07-05 09:53 - 2019-01-30 15:00 - 000000000 ____D C:\ProgramData\Mozilla 2021-07-05 09:51 - 2020-01-30 23:29 - 000000000 ____D C:\Users\moi\AppData\LocalLow\Mozilla 2021-07-05 09:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-05 01:11 - 2020-07-22 14:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-07-05 01:10 - 2014-10-29 11:22 - 000000000 ____D C:\ProgramData\AVAST Software 2021-07-05 01:08 - 2020-06-01 23:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-07-05 01:08 - 2020-06-01 22:56 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-04 22:50 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-07-04 22:50 - 2014-10-29 11:29 - 000000000 ____D C:\Users\moi\AppData\Roaming\SoftGrid Client 2021-07-04 22:41 - 2021-05-26 11:52 - 000003516 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-07-04 22:41 - 2021-05-26 11:52 - 000003292 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-04 22:41 - 2020-08-06 11:13 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-07-04 22:41 - 2020-08-06 11:13 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-07-04 22:41 - 2020-07-27 18:46 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-07-04 22:41 - 2020-07-27 18:46 - 000002230 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-07-04 22:41 - 2020-06-01 23:20 - 000003574 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1571582613 2021-07-04 22:41 - 2020-06-01 23:20 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-07-04 22:41 - 2020-06-01 23:20 - 000002846 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-7480761-4120596894-250065351-1000 2021-07-04 22:41 - 2020-06-01 23:20 - 000002744 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2021-07-04 22:41 - 2020-06-01 23:20 - 000002494 _____ C:\WINDOWS\system32\Tasks\RealDownloader Update Check 2021-07-04 22:41 - 2020-06-01 23:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-07-04 21:07 - 2021-06-04 19:38 - 000033052 _____ C:\Users\moi\Downloads\Addition.txt 2021-07-04 20:07 - 2014-10-29 14:24 - 000000000 ____D C:\Users\moi\Documents\Articles scannés récents 2021-07-04 13:13 - 2020-06-01 21:33 - 000000000 ____D C:\Users\UpdatusUser.000 2021-07-04 13:12 - 2020-06-01 21:33 - 000000000 ____D C:\Users\moi 2021-07-03 20:34 - 2021-06-04 17:52 - 000000000 ____D C:\Users\moi\AppData\Roaming\ZHP 2021-07-03 17:59 - 2017-04-13 12:58 - 000000000 ____D C:\Users\moi\AppData\Local\ZHP 2021-07-03 11:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-07-03 11:19 - 2020-08-06 11:13 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-03 11:19 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-02 22:00 - 2020-09-03 17:04 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-07-02 22:00 - 2020-09-03 17:04 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-07-02 11:49 - 2015-08-05 16:19 - 000000000 ____D C:\Users\moi\AppData\Local\ElevatedDiagnostics 2021-07-01 13:55 - 2019-10-20 16:43 - 000001395 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2021-06-30 23:51 - 2014-10-29 11:43 - 000000000 ____D C:\Users\moi\AppData\Roaming\vlc 2021-06-30 23:50 - 2018-03-13 19:54 - 000000876 _____ C:\Users\Public\Desktop\VLC media player.lnk 2021-06-30 23:39 - 2017-09-22 20:04 - 000000000 ____D C:\Users\moi\AppData\Local\CrashDumps 2021-06-28 11:00 - 2021-02-28 12:02 - 000002407 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-06-28 11:00 - 2020-02-03 18:45 - 000000000 ___RD C:\Users\moi\OneDrive 2021-06-24 18:24 - 2017-05-13 13:16 - 000000000 ____D C:\ProgramData\IObit 2021-06-24 10:52 - 2017-11-15 18:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-24 02:04 - 2017-05-03 17:54 - 000001039 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2021-06-24 02:04 - 2017-05-03 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2021-06-24 00:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-06-23 23:31 - 2014-10-29 11:14 - 000001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-06-23 01:54 - 2020-06-01 23:11 - 001924704 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-23 01:54 - 2019-12-07 16:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat 2021-06-23 01:54 - 2019-12-07 16:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat 2021-06-23 01:20 - 2014-10-29 11:05 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-06-23 00:11 - 2020-06-01 22:57 - 000388248 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-06-22 23:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-06-21 22:02 - 2020-10-13 12:13 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2021-06-21 22:02 - 2020-07-22 14:29 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2021-06-21 22:02 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-06-21 22:01 - 2020-07-22 14:28 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2021-06-21 22:01 - 2020-07-22 14:28 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2021-06-21 22:01 - 2020-07-22 14:28 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2021-06-21 22:01 - 2020-07-22 14:28 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2021-06-18 23:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-06-18 20:12 - 2021-02-19 22:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-06-11 22:42 - 2017-06-14 12:48 - 000000000 ____D C:\Users\moi\Desktop\Captvty 2021-06-10 17:33 - 2014-10-29 11:50 - 000000434 _____ C:\WINDOWS\BRWMARK.INI 2021-06-10 08:33 - 2017-04-12 12:17 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-06-08 21:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-06-08 20:18 - 2014-10-29 12:42 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-06-08 20:11 - 2014-10-29 12:42 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-06-05 23:02 - 2020-02-07 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher ==================== Fichiers à la racine de certains dossiers ======== 2014-11-06 16:13 - 2014-11-06 16:13 - 000003584 _____ () C:\Users\moi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-12-26 16:21 - 2019-12-26 16:21 - 000000017 _____ () C:\Users\moi\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================