Posté le 5 janvier
Télécharger | Reposter | Largeur fixe

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04.01.2024
Exécuté par mapet (administrateur) sur DESKTOP-EDV0KCE (Acer Aspire A115-32) (04-01-2024 19:08:50)
Exécuté depuis C:\Users\mapet\Downloads\FRST64 (1).exe
Profils chargés: mapet
Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2861 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avpui.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe <6>
(DriverStore\FileRepository\cui_dch.inf_amd64_b578901fbed94a8e\igfxCUIServiceN.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b578901fbed94a8e\igfxEMN.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe
(services.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_0225de91048d4909\IgoAudioService_x64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b578901fbed94a8e\igfxCUIServiceN.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_3d18534d52d73f63\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f67fa80490208ab5\IntelCpHDCPSvc.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c60facea9c32a6cb\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2310.10002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2349.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_0225de91048d4909\iGoSwServer.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c60facea9c32a6cb\RtkAudUService64.exe [3380320 2021-11-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-2469716238-1864472917-533279858-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2469716238-1864472917-533279858-1001\...\Run: [MicrosoftEdgeAutoLaunch_E87E2EBFE98EFAFD6C5C363E9FA05D0D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2469716238-1864472917-533279858-1001\...\Run: [Opera GX Stable] => C:\Users\mapet\AppData\Local\Programs\Opera GX\launcher.exe [2296224 2023-12-21] (Opera Norway AS -> Opera Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-28] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {88341F1F-6FFC-4C27-BBF6-07E42B08F4B2} - System32\Tasks\App Explorer S => C:\Users\mapet\AppData\Local\Microsoft\WindowsApps\AppsExplorer.exe [0 2023-08-08] () [symlink -> ]
Task: {66E2AD28-707E-4650-896C-3F177DA28BE8} - System32\Tasks\Apps Explorer Update Messenger => C:\Users\mapet\AppData\Local\Apps Explorer Update Messenger\UpdateMessenger.exe [13240176 2023-08-05] (SweetLabs Inc -> SweetLabs, Inc) <==== ATTENTION
Task: {191C3D24-8F66-44F6-8F94-01DCA8B959D8} - System32\Tasks\GoogleUpdateTaskMachineCore{BBCCEE65-0EE4-46CD-935B-D5ACC4A50B70} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-10] (Google LLC -> Google LLC)
Task: {0366C1EB-ED45-4C52-906B-77A1AF7E6A9D} - System32\Tasks\GoogleUpdateTaskMachineUA{6AE5D632-7B25-4DA0-A2E2-9F0C85B51061} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-10] (Google LLC -> Google LLC)
Task: {ABCAF594-FEEF-4A29-86E4-6A843DE57757} - System32\Tasks\iGoAudioTask => C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_0225de91048d4909\iGoSwServer.exe [478144 2023-04-18] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {BB40B46B-9284-4E39-B54D-7D5D624175F3} - System32\Tasks\iGoAudioTaskSession => C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_0225de91048d4909\iGoSwServer.exe [478144 2023-04-18] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {C764741D-1382-4239-97B6-1D9B737C6EDB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9C07B51-9ECA-4385-9F28-609C383A5AE6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {37DAB50B-2E14-40A4-B586-1349683713C1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {36E5F147-31F7-482D-81CE-0759B1E6F552} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2024-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD1814C3-A218-465F-AFD1-1919E270B569} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {815AC8B3-1225-410E-BCE0-BCCB78BE390B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EC8DCB8-71D2-44CD-9439-3E9753D682E3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {46CEA64B-31A2-4BB5-8988-7094982B5D35} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1C24E78-D9CC-465B-87BB-74D1752CB20D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D6EAF8A3-0A37-4EBD-9E1D-0EB2511E4756} - System32\Tasks\Oem\AcerJumpstartSwitchTask => C:\OEM\Amundsen2\AJ3\hermes.exe [65064 2020-03-16] (Acer Incorporated -> Acer)
Task: {8B43C15B-5F06-4C14-9C37-CC702D267227} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {20B8395A-B6E6-4201-83B8-44FEE6D8964A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2469716238-1864472917-533279858-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {780901F3-CAE2-4018-B4AF-E492F4113249} - System32\Tasks\Opera GX scheduled Autoupdate 1704311998 => C:\Users\mapet\AppData\Local\Programs\Opera GX\launcher.exe [2296224 2023-12-21] (Opera Norway AS -> Opera Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{956f62e0-9ef0-4cbd-9d26-f9c860c7da0c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{956f62e0-9ef0-4cbd-9d26-f9c860c7da0c}\356425F514332303: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\mapet\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-04]
Edge Notifications: Default -> hxxps://flonalicks.co.in
Edge Extension: (Google Docs hors connexion) - C:\Users\mapet\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-30]
Edge Extension: (Edge relevant text changes) - C:\Users\mapet\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-19]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-09] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default [2024-01-04]
CHR Notifications: Default -> hxxps://www.ocu.org; hxxps://www.wyylde.com
CHR HomePage: Default -> hxxp://www.google.fr/
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Appel Skype) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2023-03-25]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-11-29]
CHR Extension: (Global Ad Blocker) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\eklanaffifkpfdpnkngfilpcgodfdimb [2023-03-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-10]
CHR Extension: (AliRadar Shopping Assistant) - C:\Users\mapet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfjibkklgpfcfdlhijfglamdnkjnpdeg [2023-03-25]

Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-2469716238-1864472917-533279858-1001) Opera GXStable - "C:\Users\mapet\AppData\Local\Programs\Opera GX\Launcher.exe"

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AVP21.15; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\avp.exe [32008 2023-10-12] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-24] (Microsoft Corporation -> Microsoft Corporation)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
R2 IgoAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_0225de91048d4909\IgoAudioService_x64.exe [36496 2023-04-18] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
S3 klvssbridge64_21.15; C:\Program Files (x86)\Kaspersky Lab\Kaspersky 21.15\x64\vssbridge64.exe [544680 2023-10-12] (AO Kaspersky Lab -> AO Kaspersky Lab)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-09] (Microsoft Corporation -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36784 2022-06-08] (Acer Incorporated -> Acer Incorporated)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2023-04-19] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-04-19] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [245088 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 klbackupdisk.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klbackupdisk.sys [83504 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt.K4W-21-15; C:\WINDOWS\System32\DRIVERS\K4W-21-15\klbackupflt.sys [214568 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\kldisk.sys [101936 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [53576 2023-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klflt.sys [551344 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse.K4W-21-15; C:\WINDOWS\System32\DRIVERS\K4W-21-15\klgse.sys [824128 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klhk.sys [1952056 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF.K4W-21-15; C:\WINDOWS\System32\DRIVERS\K4W-21-15\klif.sys [1154480 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [70680 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klkbdflt.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klkbdflt.sys [93720 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klmouflt.sys [89536 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd.K4W-21-15; C:\WINDOWS\System32\DRIVERS\K4W-21-15\klpd.sys [55216 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klpnpflt.sys [77760 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_K4W-21-15_arkmon; C:\WINDOWS\System32\Drivers\klupd_K4W-21-15_arkmon.sys [384656 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_K4W-21-15_klark; C:\WINDOWS\System32\Drivers\klupd_K4W-21-15_klark.sys [354640 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_K4W-21-15_klbg; C:\WINDOWS\System32\Drivers\klupd_K4W-21-15_klbg.sys [183120 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_K4W-21-15_mark; C:\WINDOWS\System32\Drivers\klupd_K4W-21-15_mark.sys [262712 2024-01-04] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klwfp.sys [152000 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\klwtp.sys [394800 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps.K4W-21-15; C:\WINDOWS\system32\DRIVERS\K4W-21-15\kneps.sys [327216 2023-10-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-12] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2024-01-04 19:08 - 2024-01-04 19:09 - 000023240 _____ C:\Users\mapet\Downloads\FRST.txt
2024-01-04 19:07 - 2024-01-04 19:09 - 000000000 ____D C:\FRST
2024-01-04 19:04 - 2024-01-04 19:05 - 002387968 _____ (Farbar) C:\Users\mapet\Downloads\FRST64 (1).exe
2024-01-04 19:01 - 2024-01-04 19:01 - 000809482 _____ C:\WINDOWS\system32\perfh00C.dat
2024-01-04 19:01 - 2024-01-04 19:01 - 000156934 _____ C:\WINDOWS\system32\perfc00C.dat
2024-01-04 18:33 - 2024-01-04 18:33 - 000004128 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3ADF1171-AF79-42CB-BF86-08C785383232}
2024-01-04 17:55 - 2024-01-04 17:55 - 000000000 ____D C:\Program Files\Common Files\AV
2024-01-04 17:54 - 2024-01-04 17:54 - 000002431 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky.lnk
2024-01-04 17:53 - 2024-01-04 18:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\K4W-21-15
2024-01-04 17:53 - 2024-01-04 17:53 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2024-01-04 17:53 - 2024-01-04 17:53 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2024-01-04 17:51 - 2024-01-04 17:51 - 004439416 _____ (Kaspersky) C:\Users\mapet\Downloads\startup.exe
2024-01-03 21:00 - 2024-01-03 21:00 - 000004244 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1704311998
2024-01-03 21:00 - 2024-01-03 21:00 - 000001432 _____ C:\Users\mapet\OneDrive\Bureau\Navigateur Opera GX.lnk
2024-01-03 21:00 - 2024-01-03 21:00 - 000001432 _____ C:\Users\mapet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera GX.lnk
2024-01-03 21:00 - 2024-01-03 21:00 - 000000000 ____D C:\Users\mapet\AppData\Local\Opera Software
2024-01-03 20:59 - 2024-01-03 20:59 - 000000000 ____D C:\Users\mapet\AppData\Roaming\Opera Software
2023-12-29 19:15 - 2023-12-29 19:15 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15
2023-12-29 19:14 - 2023-12-29 19:14 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15 (2)
2023-12-29 19:14 - 2023-12-29 19:14 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15 (1)
2023-12-29 19:08 - 2023-12-29 19:08 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15 (5)
2023-12-29 19:04 - 2023-12-29 19:07 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15 (4)
2023-12-29 18:53 - 2023-12-29 19:03 - 000000000 ____D C:\Users\mapet\Downloads\OneDrive-2023-11-15 (3)
2023-12-21 19:45 - 2023-12-21 19:45 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-21 10:01 - 2024-01-04 18:55 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2023-12-09 17:08 - 2023-12-09 17:08 - 000000000 ____D C:\Program Files\Common Files\DESIGNER

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2024-01-04 19:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-04 19:02 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-01-04 19:01 - 2023-04-24 12:35 - 001803986 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-04 19:01 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-01-04 18:58 - 2022-11-10 19:14 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-04 18:58 - 2022-11-10 18:53 - 000000000 ___RD C:\Users\mapet\OneDrive
2024-01-04 18:57 - 2023-04-13 15:04 - 000000000 ____D C:\Users\mapet\AppData\Local\Apps Explorer Update Messenger
2024-01-04 18:56 - 2023-04-19 20:08 - 000003312 _____ C:\WINDOWS\system32\Tasks\iGoAudioTask
2024-01-04 18:56 - 2022-11-10 18:51 - 000000000 __SHD C:\Users\mapet\IntelGraphicsProfiles
2024-01-04 18:56 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-04 18:55 - 2023-04-19 20:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-04 18:55 - 2022-11-10 19:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-01-04 18:55 - 2022-06-19 11:49 - 000000000 ___HD C:\Intel
2024-01-04 18:55 - 2022-06-19 11:37 - 000012288 ___SH C:\DumpStack.log.tmp
2024-01-04 18:55 - 2022-05-07 06:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-01-04 18:29 - 2023-04-19 20:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-04 18:06 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-01-04 18:05 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-01-04 17:54 - 2022-11-10 18:51 - 000000000 ____D C:\Users\mapet\AppData\Local\Packages
2024-01-04 17:54 - 2022-11-10 18:51 - 000000000 ____D C:\ProgramData\Packages
2024-01-04 17:54 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2024-01-04 17:53 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-01-04 15:49 - 2022-11-10 19:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-01-04 14:57 - 2022-11-10 18:51 - 000000000 ____D C:\Users\mapet\AppData\Local\D3DSCache
2024-01-03 20:54 - 2022-11-10 18:53 - 000000000 ____D C:\Users\mapet\AppData\Local\PlaceholderTileLogoFolder
2024-01-02 12:53 - 2022-06-19 12:30 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-29 22:46 - 2022-11-11 14:36 - 000000000 ____D C:\Users\mapet\AppData\Roaming\Microsoft\Excel
2023-12-29 17:17 - 2022-11-10 19:23 - 000001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-12-28 17:43 - 2023-07-09 12:59 - 000000000 ____D C:\Users\mapet\OneDrive\Bureau\sauve clef rouge
2023-12-28 14:56 - 2022-06-19 11:38 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-28 14:53 - 2023-01-26 15:26 - 000000000 ____D C:\Users\mapet\AppData\Roaming\vlc
2023-12-21 19:46 - 2023-09-19 17:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-21 19:46 - 2023-04-19 20:02 - 000504520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-21 19:45 - 2023-10-19 18:37 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-21 19:45 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-21 19:45 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2023-12-21 15:07 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-21 15:02 - 2023-04-19 20:07 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-21 14:25 - 2023-01-07 20:11 - 000000000 ____D C:\Users\mapet\OneDrive\Documents\en cours
2023-12-12 11:32 - 2022-06-19 11:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-09 17:08 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-12-09 16:53 - 2023-01-07 20:17 - 000000000 ____D C:\Users\mapet\AppData\Roaming\Microsoft\Word
2023-12-09 16:48 - 2023-04-19 20:08 - 000003960 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{6AE5D632-7B25-4DA0-A2E2-9F0C85B51061}
2023-12-09 16:48 - 2023-04-19 20:08 - 000003836 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{BBCCEE65-0EE4-46CD-935B-D5ACC4A50B70}
2023-12-09 16:47 - 2023-09-19 17:39 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-09 16:47 - 2023-09-19 17:39 - 000002174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-09 16:47 - 2023-04-19 20:08 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2469716238-1864472917-533279858-1001

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.