Serveur d'impression

"L'abonnement Norton a expiré aujourd'hui" Popups – Serveur d’impression

Le 27 mai 2020 - 39 minutes de lecture

J'ai récemment utilisé YtMp3 (https://ytmp3.cc/en13/) pour convertir de la musique YouTube en MP3 afin de pouvoir jouer dans ma voiture. Depuis lors, je reçois des pop-ups continus disant que mon abonnement Norton a expiré. Je n'ai pas installé Nortons Antivuris sur cet ordinateur.

Quelqu'un peut-il m'aider à supprimer ce virus?

Merci beaucoup, journaux ci-dessous ….

Mike

Résultat de l'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2020

Géré par HP (administrateur) sur HP-PC (Hewlett-Packard HP Compaq 8000 Elite SFF PC) (29-04-2020 17:08:47)

Exécution à partir de F: Virus Cleanup

Profils chargés: HP (Profils disponibles: HP)

Plateforme: Windows 7 Professional Service Pack 1 (X64) Langue: anglais (États-Unis)

Internet Explorer version 11 (navigateur par défaut: Chrome)

Mode de démarrage: Normal

==================== Processus (liste blanche) =================

(Si une entrée est incluse dans la liste de correctifs, le processus sera fermé. Le fichier ne sera pas déplacé.)

() [File not signed] C: Program Files (x86) TP-LINK TP-LINK Wireless Configuration Utility TWCU.exe

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C: Program Files (x86) Common Files Adobe ARM 1.0 armsvc.exe

(Apple Inc. -> Apple Inc.) C: Program Files Bonjour mDNSResponder.exe

(Apple Inc. -> Apple Inc.) C: Program Files Fichiers communs Apple Mobile Device Support AppleMobileDeviceService.exe

(Apple Inc. -> Apple Inc.) C: Program Files iPod bin iPodService.exe

(Apple Inc. -> Apple Inc.) C: Program Files iTunes iTunesHelper.exe

(AVAST Software s.r.o. -> AVAST Software) C: Program Files (x86) AVAST Software Browser Update 1.4.141.333 AvastBrowserCrashHandler.exe

(AVAST Software s.r.o. -> AVAST Software) C: Program Files (x86) AVAST Software Browser Update 1.4.141.333 AvastBrowserCrashHandler64.exe

(Avast Software s.r.o. -> AVAST Software) C: Program Files AVAST Software Avast aswEngSrv.exe

(Avast Software s.r.o. -> AVAST Software) C: Program Files AVAST Software Avast aswidsagent.exe

(Avast Software s.r.o. -> AVAST Software) C: Program Files AVAST Software Avast AvastSvc.exe

(Avast Software s.r.o. -> AVAST Software) C: Program Files AVAST Software Avast AvastUI.exe <2>

(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 Brother BrStMonW.exe

(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 BrYNSvc.exe

(DÉVELOPPEUR DANS UNE BOÎTE (THE PLAYFUL GROUP PTY LTD) -> DeveloperInABox) C: Program Files Agent Agent.exe

(Google LLC -> Google LLC) C: Program Files (x86) Google Chrome Application chrome.exe <32>

(Intel Corporation -> Intel Corporation) C: Program Files (x86) Fichiers communs Intel Privacy Icon PrivacyIconClient.exe

(Intel Corporation -> Intel Corporation) C: Program Files (x86) Fichiers communs Intel Privacy Icon UNS UNS.exe

(Intel Corporation -> Intel Corporation) C: Program Files (x86) Intel AMT LMS.exe

(Intel Corporation -> Intel Corporation) C: Program Files (x86) Intel Intel® Rapid Storage Technology IAStorDataMgrSvc.exe

(Intel Corporation -> Intel Corporation) C: Program Files (x86) Intel Intel® Rapid Storage Technology IAStorIcon.exe

(IO3O LLC -> IO3O LLC) C: Program Files (x86) IO3O LLC Qui est sur mon Wifi mywifi.exe

(Liebert Corporation) [File not signed] C: MultiLink bin LiebertM.exe

(Microsoft Corporation -> Microsoft Corporation) C: Windows System32 WirelessKB850NotificationService.exe

(Microsoft Windows -> Microsoft Corporation) C: Windows System32 dllhost.exe

(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C: Program Files (x86) TeamViewer TeamViewer_Service.exe

(Wondershare Technology Co., Ltd -> Wondershare) C: Program Files (x86) Fichiers communs Wondershare Wondershare Helper Compact WSHelper.exe

==================== Registre (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM … Run: [picon] => C: Program Files (x86) Fichiers communs Intel Privacy Icon PrivacyIconClient.exe [796696 2009-07-24] (Intel Corporation -> Intel Corporation)

HKLM … Run: [AvastUI.exe] => C: Program Files AVAST Software Avast AvLaunch.exe [108216 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

HKLM … Run: [Wondershare Helper Compact.exe] => C: Program Files Fichiers communs Wondershare Wondershare Helper Compact WSHelper.exe

HKLM … Run: [iTunesHelper] => C: Program Files iTunes iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)

HKLM-x32 … Exécuter: [Adobe ARM] => C: Program Files (x86) Common Files Adobe ARM 1.0 AdobeARM.exe [1021128 2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

HKLM-x32 … Exécuter: [IAStorIcon] => C: Program Files (x86) Intel Intel® Rapid Storage Technology IAStorIcon.exe [283160 2010-11-05] (Intel Corporation -> Intel Corporation)

HKLM-x32 … Exécuter: [BrStsMon00] => C: Program Files (x86) Browny02 Brother BrStMonW.exe [4513792 2013-12-19] (Brother Industries, Ltd.) [File not signed]

HKLM-x32 … Exécuter: [Wondershare Helper Compact.exe] => C: Program Files (x86) Fichiers communs Wondershare Wondershare Helper Compact WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co., Ltd -> Wondershare)

HKLM SOFTWARE Policies Microsoft Windows Defender: Restriction <==== ATTENTION

HKU S-1-5-21-1548130179-1602390836-4294383159-1000 … Run: [Wechat] => C: Program Files (x86) Tencent WeChat WeChat.exe [492744 2018-01-29] (Tencent Technology (Shenzhen) Company Limited -> Tencent)

HKU S-1-5-21-1548130179-1602390836-4294383159-1000 … Run: [AvastBrowserAutoLaunch_CD25923D89FD4B0FA75FB09F702B8316] => C: Program Files (x86) AVAST Software Browser Application AvastBrowser.exe [1875592 2020-04-02] (Avast Software s.r.o. -> AVAST Software)

HKU S-1-5-21-1548130179-1602390836-4294383159-1000 Control Panel Desktop \ SCRNSAVE.EXE -> C: Windows system32 Mystify.scr [242688 2010-11-21] (Microsoft Windows -> Microsoft Corporation)

HKLM Software Microsoft Active Setup Installed Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C: Program Files (x86) Google Chrome Application 81.0.4044.122 Installer chrmstp.exe [2020-04-23] (Google LLC -> Google LLC)

HKLM Software Wow6432Node Microsoft Active Setup Installed Components: [30C521FB-255B-46C8-9F0D-EE5AE371C9AA] -> C: Program Files (x86) AVAST Software Browser Application 80.1.3901.162 Installer chrmstp.exe [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

Démarrage: C: ProgramData Microsoft Windows Menu Démarrer Programmes Démarrage TP-LINK Wireless Configuration Utility.lnk [2017-03-22]

ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C: Program Files (x86) TP-LINK TP-LINK Wireless Configuration Utility TWCU.exe () [File not signed]

Démarrage: C: ProgramData Microsoft Windows Menu Démarrer Programmes Démarrage Qui est sur mon Wifi.lnk [2019-01-27]

ShortcutTarget: Qui est sur mon Wifi.lnk -> C: Program Files (x86) IO3O LLC Qui est sur mon Wifi mywifi.exe (IO3O LLC -> IO3O LLC)

FF HKLM SOFTWARE Policies Mozilla Firefox: Restriction <==== ATTENTION

CHR HKLM SOFTWARE Policies Google: Restriction <==== ATTENTION

==================== Tâches planifiées (liste blanche) ============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Tâche: 05F0A718-89D4-44C8-B278-10DF2C73FAD4 – System32 Tasks AvastUpdateTaskMachineCore => C: Program Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-06-16] (AVAST Software s.r.o. -> AVAST Software)

Tâche: 172A6D4A-E23D-4793-BC9C-F3AA75EC6317 – System32 Tasks GoogleUpdateTaskMachineCore => C: Program Files (x86) Google Update GoogleUpdate.exe [153752 2016-11-05] (Google Inc -> Google Inc.)

Tâche: 1F58BF7F-D0CB-4DE1-B5E9-709E13AB0F6F – System32 Tasks Avast Secure Browser Heartbeat Task (Logon) => C: Program Files (x86) AVAST Software Browser Application AvastBrowser.exe [1875592 2020-04-02] (Avast Software s.r.o. -> AVAST Software)

Tâche: 2C468BA4-E3BC-4F04-BC78-2FCBB1673DA7 – System32 Tasks Avast Emergency Update => C: Program Files AVAST Software Avast AvEmUpdate.exe [3325032 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

Tâche: 8A622CC2-7B22-45C2-AFD6-1EBE2814B566 – Sauvegarde des paramètres System32 Tasks AVAST Software Avast => C: Program Files Common Files AV avast! Antivirus backup.exe

Tâche: 9286B44A-BAAC-49B5-82A1-09490054C501 – System32 Tasks AvastUpdateTaskMachineUA => C: Program Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-06-16] (AVAST Software s.r.o. -> AVAST Software)

Tâche: 94D76972-D96D-49AE-B9EA-FADE9BDA7AA0 – System32 Tasks GoogleUpdateTaskMachineUA => C: Program Files (x86) Google Update GoogleUpdate.exe [153752 2016-11-05] (Google Inc -> Google Inc.)

Tâche: BC5C3A55-321C-4CFB-B34A-EBFC48C62FD4 – System32 Tasks Avast Secure Browser Heartbeat Task (horaire) => C: Program Files (x86) AVAST Software Browser Application AvastBrowser.exe [1875592 2020-04-02] (Avast Software s.r.o. -> AVAST Software)

Tâche: EE6D4EE1-3BCD-45C3-B0D1-85E0DE45E0F3 – System32 Tasks Avast Software Overseer => C: Program Files Common Files Avast Software Overseer overseer.exe [1660520 2020-03-08] (Avast Software s.r.o. -> Avast Software)

(Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (liste blanche) ====================

(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément du registre, il sera supprimé ou restauré par défaut.)

Winsock: Catalog5 07 C: Program Files (x86) Bonjour mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)

Winsock: Catalog5-x64 07 C: Program Files Bonjour mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)

Tcpip Paramètres: [DhcpNameServer] 192.168.1.1 192.168.1.1

Tcpip .. Interfaces 1A49C37C-95B7-4B2D-9254-B4D5D233BDDE: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:

==================

DPF: HKLM-x32 ADACAA8F-3595-47FE-9C31-9C7471B9BEC7 hxxp: //125.236.220.200/cab/OCXChecker_8570.cab

FireFox:

========

FF DefaultProfile: m4semc2r.default

FF ProfilePath: C: Users HP AppData Roaming Mozilla Firefox Profiles m4semc2r.default [2020-04-18]

Page d'accueil de FF: Mozilla Firefox Profiles m4semc2r.default -> hxxps: //www.tvnz.co.nz/one-news

Extension FF: (Avast SafePrice | Comparaison, offres, coupons) – C: Users HP AppData Roaming Mozilla Firefox Profiles m4semc2r.default Extensions [email protected] [2019-02-21]

Extension FF: (Avast Online Security) – C: Users HP AppData Roaming Mozilla Firefox Profiles m4semc2r.default Extensions [email protected] [2018-07-19]

Plugin FF: @ microsoft.com / GENUINE -> désactivé [No File]

FF Plugin-x32: @ microsoft.com / GENUINE -> désactivé [No File]

FF Plugin-x32: @ videolan.org / vlc, version = 2.2.2 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)

FF Plugin-x32: Adobe Reader -> C: Program Files (x86) Adobe Reader 11.0 Reader AIR nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:

=======

Profil CHR: C: Users HP AppData Local Google Chrome User Data Default [2020-04-29]

Notifications CHR: Par défaut -> hxxps: //sell.trademe.co.nz; hxxps: //www.euspares.co.uk; hxxps: //www.facebook.com; hxxps: //www.vidtomp3.com; hxxps: //www.youtube.com

CHR HomePage: Par défaut -> hxxp: //www.stuff.co.nz/

CHR StartupUrls: Par défaut -> "hxxps: //www.stuff.co.nz/"

CHR NewTab: Par défaut -> Non actif: "chrome-extension: //acpinmhgkdfbnfogeeeeocffmckpehmk/web_page_home.html"

CHR DefaultSearchURL: Default -> hxxp: //www.searcheasyplus.com/search.html? Type = search & id = MTE3NDU # q = searchTerms

CHR DefaultSearchKeyword: Par défaut -> Yahoo

CHR DefaultSuggestURL: Default -> hxxp: //www.searcheasyplus.com/sugg/ie? Output = fxjson & command = searchTerms & nResults = 10

Extension CHR: (Vérifiez la météo aujourd'hui) – C: Users HP AppData Local Google Chrome User Data Default Extensions acpinmhgkdfbnfogeeeeocffmckpehmk [2018-04-16]

Extension CHR: (Docs) – C: Users HP AppData Local Google Chrome User Data Default Extensions aohghmighlieiainnegkcijnfilokake [2017-10-13]

Extension CHR: (Avast Online Security) – C: Users HP AppData Local Google Chrome User Data Default Extensions gomekmidlodglbbmalcneegieacbdmki [2020-03-08]

Extension CHR: (Paiements Chrome Web Store) – C: Users HP AppData Local Google Chrome User Data Default Extensions nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]

Extension CHR: (Web) – C: Users HP AppData Local Google Chrome User Data Default Extensions odfkmcgoekmeaefkeockmfgnghppockc [2018-09-25]

Extension CHR: (Chrome Media Router) – C: Users HP AppData Local Google Chrome User Data Default Extensions pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-19]

CHR HKLM-x32 … Chrome Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

CHR HKLM-x32 … Chrome Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Agent R2; C: Program Files Agent Agent.exe [1861720 2018-10-30] (DEVELOPPEUR DANS UNE BOITE (THE PLAYFUL GROUP PTY LTD) -> DeveloperInABox)

R2 Apple Mobile Device Service; C: Program Files Common Files Apple Mobile Device Support AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)

R3 aswbIDSAgent; C: Program Files AVAST Software Avast aswidsagent.exe [5504928 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

S2 avast; C: Program Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-06-16] (AVAST Software s.r.o. -> AVAST Software)

R2 avast! Antivirus; C: Program Files AVAST Software Avast AvastSvc.exe [345384 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

S3 avastm; C: Program Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-06-16] (AVAST Software s.r.o. -> AVAST Software)

S3 AvastSecureBrowserElevationService; C: Program Files (x86) AVAST Software Browser Application 80.1.3901.162 elevation_service.exe [973760 2020-04-02] (Avast Software s.r.o. -> AVAST Software)

R3 BrYNSvc; C: Program Files (x86) Browny02 BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed]

R2 LiebertM; C: MultiLink bin LiebertM.exe [93696 2013-01-24] (Liebert Corporation) [File not signed]

R2 LMS; C: Program Files (x86) Intel AMT LMS.exe [174616 2009-07-24] (Intel Corporation -> Intel Corporation)

R2 TeamViewer; C: Program Files (x86) TeamViewer TeamViewer_Service.exe [13216784 2020-04-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

R2 UNS; C: Program Files (x86) Common Files Intel Privacy Icon UNS UNS.exe [2066968 2009-07-24] (Intel Corporation -> Intel Corporation)

S3 WinDefend; C: Program Files Windows Defender mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

R2 WirelessKB850NotificationService; C: Windows system32 WirelessKB850NotificationService.exe [174256 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (sur liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera déplacé que s'il est répertorié séparément.)

R0 aswArDisk; C: Windows System32 drivers aswArDisk.sys [37856 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswArPot; C: Windows System32 drivers aswArPot.sys [206120 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswbidsdriver; C: Windows System32 drivers aswbidsdriver.sys [234776 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R0 aswbidsh; C: Windows System32 drivers aswbidsh.sys [178968 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R0 aswbuniv; C: Windows System32 drivers aswbuniv.sys [60696 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswKbd; C: Windows System32 drivers aswKbd.sys [42984 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R2 aswMonFlt; C: Windows System32 drivers aswMonFlt.sys [175920 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswNetHub; C: Windows System32 drivers aswNetHub.sys [500960 2020-04-21] (Avast Software s.r.o. -> AVAST Software)

R3 aswNetNd6; C: Windows System32 DRIVERS aswNetNd6.sys [38152 2020-04-17] (AVAST Software s.r.o. -> AVAST Software)

R1 aswRdr; C: Windows System32 drivers aswRdr2.sys [109480 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R0 aswRvrt; C: Windows System32 drivers aswRvrt.sys [85056 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswSnx; C: Windows System32 drivers aswSnx.sys [851808 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R1 aswSP; C: Windows System32 drivers aswSP.sys [459408 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R2 aswStm; C: Windows System32 drivers aswStm.sys [235696 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

R0 aswVmm; C: Windows System32 drivers aswVmm.sys [317280 2020-04-17] (Avast Software s.r.o. -> AVAST Software)

S3 DCamUSBEMPIA; C: Windows System32 DRIVERS emDevice64.sys [215040 2009-12-22] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

R3 e1kexpress; C: Windows System32 DRIVERS e1k60x64.sys [220672 2009-06-11] (Microsoft Windows -> Intel Corporation)

S3 emAudio; C: Windows System32 drivers emAudio64.sys [34304 2009-09-17] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

S3 FiltUSBEMPIA; C: Windows System32 DRIVERS emFilter64.sys [7552 2009-12-22] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

R2 npf; C: Windows system32 drivers npf.sys [36600 2018-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)

R3 RtlWlanu; C: Windows System32 DRIVERS rtwlanu.sys [3741960 2015-06-19] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)

S3 ScanUSBEMPIA; C: Windows System32 DRIVERS emScan64.sys [7040 2009-12-22] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

S3 USB28xxBGA; C: Windows System32 DRIVERS emBDA64.sys [654720 2010-08-20] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

S3 USB28xxOEM; C: Windows System32 DRIVERS emOEM64.sys [943872 2010-08-20] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology, Inc.)

S3 USBAAPL64; C: Windows System32 Drivers usbaapl64.sys [54784 2018-08-22] (Éditeur de compatibilité matérielle Microsoft Windows -> Apple, Inc.)

==================== NetSvcs (liste blanche) ====================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

==================== Un mois (créé) ===================

(Si une entrée est incluse dans la liste de correctifs, le fichier / dossier sera déplacé.)

2020-04-29 17:08 – 2020-04-29 17:09 – 000000000 ____D C: FRST

2020-04-19 10:20 – 2020-04-19 10:32 – 000008192 _____ C: Users HP AppData Local DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2020-04-18 18:57 – 2020-04-17 18:55 – 000337048 _____ (logiciel AVAST) C: Windows system32 aswBoot.exe

2020-04-17 18:56 – 2020-04-21 10:57 – 000500960 _____ (logiciel AVAST) C: Windows system32 Drivers aswNetHub.sys

2020-04-17 18:56 – 2020-04-17 18:55 – 000235696 _____ (logiciel AVAST) C: Windows system32 Drivers aswStm.sys

2020-04-17 18:56 – 2020-04-17 18:55 – 000175920 _____ (logiciel AVAST) C: Windows system32 Drivers aswMonFlt.sys

2020-04-17 18:55 – 2020-04-17 18:55 – 000038152 _____ (logiciel AVAST) C: Windows system32 Drivers aswNetNd6.sys

==================== Un mois (modifié) ==================

(Si une entrée est incluse dans la liste de correctifs, le fichier / dossier sera déplacé.)

2020-04-29 16:56 – 2009-07-14 16:45 – 000038240 ____H C: Windows system32 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2020-04-29 16:56 – 2009-07-14 16:45 – 000038240 ____H C: Windows system32 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2020-04-23 17:19 – 2016-11-05 12:48 – 000002224 _____ C: ProgramData Microsoft Windows Start Menu Programs Google Chrome.lnk

2020-04-23 17:19 – 2016-11-05 12:48 – 000002183 _____ C: Users Public Desktop Google Chrome.lnk

2020-04-23 17:19 – 2016-11-05 12:48 – 000002183 _____ C: ProgramData Desktop Google Chrome.lnk

2020-04-21 11:02 – 2018-01-21 12:26 – 000000000 ____D C: Program Files (x86) TeamViewer

2020-04-19 15:20 – 2009-07-14 17:13 – 000781790 _____ C: Windows system32 PerfStringBackup.INI

2020-04-19 15:20 – 2009-07-14 15:20 – 000000000 ____D C: Windows inf

2020-04-19 10:44 – 2018-06-16 16:01 – 000000000 ____D C: Users HP AppData Local AVAST Software

2020-04-19 10:43 – 2019-01-27 12:04 – 000000000 ____D C: wifidata

2020-04-19 10:43 – 2018-09-04 09:48 – 000000000 ____D C: Users HP Documents WeChat Files

2020-04-19 10:40 – 2019-11-14 02:20 – 000002003 _____ C: Users Public Desktop Avast Free Antivirus.lnk

2020-04-19 10:40 – 2019-11-14 02:20 – 000002003 _____ C: ProgramData Desktop Avast Free Antivirus.lnk

2020-04-19 10:40 – 2009-07-14 17:08 – 000000006 ____H C: Windows Tasks SA.DAT

2020-04-19 10:37 – 2018-02-11 18:19 – 000000000 ____D C: Users HP AppData Roaming vlc

2020-04-18 18:57 – 2017-03-15 23:44 – 000003910 _____ C: Windows system32 Tasks Avast Emergency Update

2020-04-18 15:10 – 01-01-2017 21:14 – 000000000 ____D C: Windows system32 Tasks AVAST Software

2020-04-18 15:10 – 2016-11-05 12:47 – 000003334 _____ C: Windows system32 Tasks GoogleUpdateTaskMachineUA

2020-04-18 15:10 – 2016-11-05 12:47 – 000003206 _____ C: Windows system32 Tasks GoogleUpdateTaskMachineCore

2020-04-17 19:06 – 2019-04-18 14:00 – 000003732 _____ C: Windows system32 Tasks Avast Secure Browser Heartbeat Task (horaire)

2020-04-17 19:06 – 2019-04-18 14:00 – 000003150 _____ C: Windows system32 Tasks Avast Secure Browser Heartbeat Task (Connexion)

2020-04-17 19:06 – 2018-06-16 16:01 – 000002429 _____ C: ProgramData Microsoft Windows Menu Démarrer Programmes Avast Secure Browser.lnk

2020-04-17 19:06 – 2018-06-16 16:01 – 000002386 _____ C: Users Public Desktop Avast Secure Browser.lnk

2020-04-17 19:06 – 2018-06-16 16:01 – 000002386 _____ C: ProgramData Desktop Avast Secure Browser.lnk

2020-04-17 18:56 – 2017-01-06 21:14 – 000459408 _____ (logiciel AVAST) C: Windows system32 Drivers aswSP.sys

2020-04-17 18:55 – 2019-10-30 14:40 – 000037856 _____ (logiciel AVAST) C: Windows system32 Drivers aswArDisk.sys

2020-04-17 18:55 – 2019-02-11 19:57 – 000234776 _____ (logiciel AVAST) C: Windows system32 Drivers aswbidsdriver.sys

2020-04-17 18:55 – 2019-01-18 16:03 – 000178968 _____ (logiciel AVAST) C: Windows system32 Drivers aswbidsh.sys

2020-04-17 18:55 – 2019-01-18 16:03 – 000060696 _____ (logiciel AVAST) C: Windows system32 Drivers aswbuniv.sys

2020-04-17 18:55 – 2018-10-22 22:43 – 000042984 _____ (logiciel AVAST) C: Windows system32 Drivers aswKbd.sys

2020-04-17 18:55 – 2017-11-18 02:01 – 000206120 _____ (logiciel AVAST) C: Windows system32 Drivers aswArPot.sys

2020-04-17 18:55 – 2017-01-06 21:14 – 000851808 _____ (logiciel AVAST) C: Windows system32 Drivers aswSnx.sys

2020-04-17 18:55 – 2017-01-06 21:14 – 000317280 _____ (logiciel AVAST) C: Windows system32 Drivers aswVmm.sys

2020-04-17 18:55 – 2017-01-06 21:14 – 000109480 _____ (logiciel AVAST) C: Windows system32 Drivers aswRdr2.sys

2020-04-17 18:55 – 2017-01-06 21:14 – 000085056 _____ (logiciel AVAST) C: Windows system32 Drivers aswRvrt.sys

2020-04-06 14:19 – 2019-12-05 19:55 – 000000000 ____D C: Users HP AppData Local TeamViewer

==================== Fichiers à la racine de certains répertoires ========

2020-04-19 10:20 – 2020-04-19 10:32 – 000008192 _____ () C: Users HP AppData Local DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(Il n'y a pas de correctif automatique pour les fichiers qui ne passent pas la vérification.)

LastRegBack: 2020-04-27 11:28

==================== Fin de FRST.txt =========================

Résultat d'analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28-04-2020

Ran by HP (29-04-2020 17:09:44)

Exécution à partir de F: Virus Cleanup

Windows 7 Professional Service Pack 1 (X64) (2016-11-05 00:05:19)

Mode de démarrage: Normal

================================================== ========

==================== Comptes: ============================ =

Administrateur (S-1-5-21-1548130179-1602390836-4294383159-500 – Administrateur – désactivé)

Invité (S-1-5-21-1548130179-1602390836-4294383159-501 – limité – activé)

Groupe résidentielUtilisateur $ (S-1-5-21-1548130179-1602390836-4294383159-1006 – limité – activé)

HP (S-1-5-21-1548130179-1602390836-4294383159-1000 – Administrateur – Activé) => C: Users HP

==================== Security Center ========================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée.)

AV: Avast Antivirus (activé – à jour) EB19B86E-3998-C706-90EF-92B41EB091AF

AS: Windows Defender (désactivé – obsolète) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

AS: Avast Antivirus (activé – à jour) 5078598A-1FA2-C888-AA5F-A9C66537DB12

==================== Programmes installés ======================

(Seuls les programmes publicitaires avec le drapeau "Caché" peuvent être ajoutés à la liste de correctifs pour les afficher. Les programmes publicitaires doivent être désinstallés manuellement.)

Adobe Reader XI (11.0.10) (HKLM-x32 … AC76BA86-7AD7-1033-7B44-AB0000000001) (Version: 11.0.10 – Adobe Systems Incorporated)

Prise en charge des applications Apple (32 bits) (HKLM-x32 … 5A659BE5-849B-484E-A83B-DCB78407F3A4) (Version: 7.3 – Apple Inc.)

Prise en charge des applications Apple (64 bits) (HKLM … F8060941-C0AB-4BCE-88AC-F2FDA2E9F286) (Version: 7.3 – Apple Inc.)

Prise en charge des appareils mobiles Apple (HKLM … 5FA8C4BE-8C74-4B9C-9B49-EBF759230189) (Version: 12.1.0.25 – Apple Inc.)

Mise à jour du logiciel Apple (HKLM-x32 … A30EA700-5515-48F0-88B0-9E99DC356B88) (Version: 2.6.0.1 – Apple Inc.)

Avast Free Antivirus (HKLM-x32 … Avast Antivirus) (Version: 20.2.2401 – Avast Software)

Navigateur sécurisé Avast (HKLM-x32 … Navigateur sécurisé Avast) (Version: 80.1.3901.162 – Logiciel AVAST)

Aide à la mise à jour Avast (HKLM-x32 … A92DAB39-4E2C-4304-9AB6-BC44E68B55E2) (Version: 1.4.141.333 – Logiciel AVAST) Masqué

Bonjour (HKLM … 56DDDFB8-7F79-4480-89D5-25E1F52AB28F) (Version: 3.1.0.1 – Apple Inc.)

Eudora (HKLM-x32 … AB58CC47-25BB-4E5B-83B3-FCC69BFAEB7C) (Version: 7.0 -)

Logiciel de gravure de disque Express Burn (HKLM-x32 … ExpressBurn) (Version: 7.09 – NCH Software)

Convertisseur Golden Videos VHS vers DVD (HKLM-x32 … GoldenVideos) (Version: 3.04 – NCH Software)

Google Chrome (HKLM-x32 … Google Chrome) (Version: 81.0.4044.122 – Google LLC)

Aide à la mise à jour Google (HKLM-x32 … 60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) Masqué

Série HL-L2360D (HKLM-x32 … 46B58839-2405-48D6-A59D-F8246158A6ED) (Version: 0.0.13.0 – Brother Industries, Ltd.)

HP Softpaq SP45367 (HKLM-x32 … SP45367) (Version: -)

HP Softpaq SP45411 (HKLM-x32 … SP45411) (Version: -)

Interface du moteur de gestion Intel® (HKLM … HECI) (Version: – Intel Corporation)

Technologie de stockage rapide Intel® (HKLM-x32 … 3E29EE6C-963A-4aae-86C1-DC237C4A49FC) (Version: 10.1.0.1008 – Intel Corporation)

Technologie Intel® Active Management (HKLM … MESOL) (Version: – Intel Corporation)

IrfanView 4.51 (64 bits) (HKLM … IrfanView64) (Version: 4.51 – Irfan Skiljan)

iSpy (HKLM-x32 … 50B1A3A0-3F87-44B3-9FF5-C97A50034BF6) (Version: 7.1.8.0 – DeveloperInABox)

Programme d'installation du package iSpy (HKLM-x32 … a72b41a4-9cd1-4973-9783-83de69e05832) (Version: 7.1.8.0 – DeveloperInABox)

iTunes (HKLM … D9D08A8F-5A03-486A-AD4D-3A438D521F8B) (Version: 12.9.3.3 – Apple Inc.)

Liebert MultiLink (HKLM-x32 … Liebert MultiLink) (Version: 4.2.4 – Liebert Corporation)

Microsoft .NET Framework 4.8 (HKLM … 92FB6C44-E685-45AD-9B20-CADF4CABA132 – 1033) (Version: 4.8.03761 – Microsoft Corporation)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32 … 91120000-002F-0000-0000-0000000FF1CE _HOMESTUDENTR_ 6E107EB7-8B55-48BF-ACCB-199F86A2CD93) (Version: – Microsoft)

Complément de validation de fichier Microsoft Office (HKLM-x32 … 90140000-2005-0000-0000-0000000FF1CE) (Version: 14.0.5130.5003 – Microsoft Corporation)

Microsoft Office Famille et Étudiant 2007 (HKLM-x32 … HOMESTUDENTR) (Version: 12.0.6612.1000 – Microsoft Corporation)

Microsoft Visual C ++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM … 5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)

Microsoft Visual C ++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32 … 9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)

mIRC (HKU S-1-5-21-1548130179-1602390836-4294383159-1000 … mIRC) (Version: 7.55 – mIRC Co. Ltd.)

Mozilla Firefox 68.0.1 (x64 en-US) (HKLM … Mozilla Firefox 68.0.1 (x64 en-US)) (Version: 68.0.1 – Mozilla)

Service de maintenance de Mozilla (HKLM-x32 … MozillaMaintenanceService) (Version: 68.0.1.7137 – Mozilla)

Mozilla Thunderbird 60.5.0 (x86 en-US) (HKLM-x32 … Mozilla Thunderbird 60.5.0 (x86 en-US)) (Version: 60.5.0 – Mozilla)

NAPS2 5.3.3 (HKLM-x32 … NAPS2 (Pas un autre scanner PDF 2) _is1) (Version: – Ben Olden-Cooligan)

OpenOffice 4.1.2 (HKLM-x32 … E6AD67BB-1C33-4AB3-A387-E0D48137AB70) (Version: 4.12.9782 – Apache Software Foundation)

TeamViewer (HKLM-x32 … TeamViewer) (Version: 15.4.8332 – TeamViewer)

Pilote TL-WN725N_WN723N (HKLM-x32 … 3C3F9CEB-2C5A-4A47-8EAA-DA76037546BA) (Version: 1.3.1 – TP-LINK)

Utilitaire de configuration sans fil TP-LINK (HKLM-x32 … 319D91C6-3D44-436C-9F79-36C0D22372DC) (Version: 1.3.1 – TP-LINK)

Mise à jour pour Microsoft Office System 2007 (KB967642) (HKLM-x32 … 91120000-002F-0000-0000-0000000FF1CE _HOMESTUDENTR_ C444285D-5E4F-48A4-91DD-47AAAA68E92D) (Version: – Microsoft)

Pilote de périphérique audio / vidéo USB (HKLM-x32 … CFB75739-90E3-4D26-83B5-25CA8262A991) (Version: 1.00.0000 – EETI)

Périphérique de capture USB2.0 (HKLM-x32 … E337B156-DF81-48D8-8977-B1574EE87BCF) (Version: 1.0.3.0 -)

Téléchargement vidéo Capture V6.3.6 (HKLM-x32 … b3336f66-e079-4ff6-abdb-51e2fab781d5 _is1) (Version: 6.3.6 – APOWERSOFT LIMITED)

VideoPad Video Editor (HKLM-x32 … VideoPad) (Version: – NCH Software)

Lecteur multimédia VLC (HKLM-x32 … Lecteur multimédia VLC) (Version: 2.2.2 – VideoLAN)

WeChat (HKLM-x32 … WeChat) (Version: 2.6.2.27 – 腾讯 科技 (深圳) 有限公司)

Qui est sur mon Wifi version 4.0.5 (HKLM-x32 … 010D45A1-093D-4534-8147-4E10E80F81CC _is1) (Version: 4.0.5 – IO3O LLC)

Wondershare Filmora (Build 8.7.1) (HKLM … Wondershare Filmora_is1) (Version: – Logiciel Wondershare)

Wondershare Helper Compact 2.6.0 (HKLM-x32 … 5363CE84-5F09-48A1-8B6C-6BB590FFEDF2 _is1) (Version: 2.6.0 – Wondershare)

==================== CLSID personnalisé (liste blanche): ==============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

HKU S-1-5-21-1548130179-1602390836-4294383159-1000 … ChromeHTML: -> <==== ATTENTION

ShellIconOverlayIdentifiers: [00asw] -> 472083B0-C522-11CF-8763-00608CC02F24 => C: Program Files AVAST Software Avast ashShell.dll [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

ShellIconOverlayIdentifiers: [00avast] -> 472083B0-C522-11CF-8763-00608CC02F24 => C: Program Files AVAST Software Avast ashShell.dll [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

ContextMenuHandlers1: [avast] -> 472083B0-C522-11CF-8763-00608CC02F24 => C: Program Files AVAST Software Avast ashShell.dll [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

ContextMenuHandlers3: [00asw] -> 472083B0-C522-11CF-8763-00608CC02F24 => C: Program Files AVAST Software Avast ashShell.dll [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

ContextMenuHandlers6: [avast] -> 472083B0-C522-11CF-8763-00608CC02F24 => C: Program Files AVAST Software Avast ashShell.dll [2020-04-17] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (sur liste blanche) =====================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM … Drivers32: [VIDC.I420] => C: Windows SysWOW64 emYUV.dll [42496 2009-12-22] (Éditeur de compatibilité matérielle Microsoft Windows -> eMPIA Technology Inc.)

==================== Raccourcis et WMI =========================

(Les entrées peuvent être répertoriées pour être restaurées ou supprimées.)

WMI: abonnement __ FilterToConsumerBinding-> CommandLineEventConsumer.Name = "BVTConsumer " ", Filter =" __ EventFilter.Name = "BVTFilter " ::

WMI: abonnement __ EventFilter-> BVTFilter ::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA « Win32_Processor » AND TargetInstance.LoadPercentage > 99]

WMI: abonnement CommandLineEventConsumer-> BVTConsumer ::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\tools\kernrate]

Raccourci: C: Users HP Favorites NCH Software Download.lnk -> hxxp: //www.nchsoftware.com/index.htm

==================== Modules chargés (sur liste blanche) =============

2018-06-16 16:15 – 2009-02-27 16:38 – 000139264 ____R () [File not signed] C: Program Files (x86) Brother BrUtilities BrLogAPI.dll

2016-11-05 13:25 – 2009-07-24 10:29 – 000077824 _____ () [File not signed] C: Program Files (x86) Common Files Intel Privacy Icon UNS DTMessageLib.dll

2018-07-29 14:37 – 2016-07-21 10:54 – 000137728 _____ () [File not signed] C: Program Files (x86) Fichiers communs Wondershare Wondershare Helper Compact CBSCreateVC.dll

2018-07-29 14:37 – 2017-09-12 10:34 – 001506304 _____ () [File not signed] C: Program Files (x86) Fichiers communs Wondershare Wondershare Helper Compact DAQExp.dll

2016-11-05 13:17 – 2010-11-05 22:50 – 000058880 _____ () [File not signed] C: Program Files (x86) Intel Intel® Rapid Storage Technology IsdiInterop.dll

2019-01-27 12:04 – 2015-07-09 11:26 – 000839680 _____ () [File not signed] C: Program Files (x86) IO3O LLC Qui est sur mon Wifi System.Data.SQLite.dll

2017-03-22 22:37 – 2015-03-20 15:16 – 000192000 _____ () [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityDC_WFF.dll

2017-03-22 22:37 – 2015-03-23 16:33 – 001411072 _____ () [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilitynicLan.dll

2017-03-22 22:37 – 2015-03-20 15:36 – 001693696 _____ () [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityWJRtl.dll

2018-11-04 13:14 – 2017-02-28 08:34 – 031053312 _____ () [File not signed] C:Program FilesAgentdllsx64cvextern.DLL

2018-11-04 13:14 – 2018-01-04 11:32 – 009397248 _____ () [File not signed] C:Program FilesAgentdllsx64WebRtcNative.dll

2019-05-16 17:50 – 2019-05-16 17:50 – 000169984 _____ () [File not signed] C:WindowsassemblyNativeImages_v2.0.50727_32IsdiInterop6ac716341e20c0459e03ef1c3151953fIsdiInterop.ni.dll

2016-11-05 13:25 – 2009-07-24 10:29 – 001892352 _____ (Apache Software Foundation) [File not signed] C:Program Files (x86)Common FilesIntelPrivacy IconUNSxerces-c_2_7.dll

2018-06-16 16:15 – 2013-06-12 19:06 – 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrMonitor.dll

2018-06-16 16:15 – 2010-09-29 17:07 – 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BroSNMP.dll

2018-06-16 16:15 – 2011-02-28 11:32 – 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrFirmUpdateCheck.dll

2018-06-16 16:15 – 2013-10-10 21:55 – 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrStMonWRes.dll

2017-01-13 10:52 – 2014-10-31 04:07 – 000463360 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRDIM13A.DLL

2017-01-13 10:52 – 2014-10-31 04:07 – 000510464 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRENM13A.DLL

2017-01-13 10:52 – 2014-10-31 04:07 – 000263680 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRFTM13A.DLL

2017-01-13 10:52 – 2014-10-31 04:07 – 000378880 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRPRM13A.DLL

2017-01-13 10:52 – 2014-10-31 04:07 – 000138240 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRRIM13A.DLL

2017-01-13 10:52 – 2014-10-31 04:07 – 002768896 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRUIM13A.DLL

2018-11-04 13:14 – 2018-06-18 14:21 – 046781952 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64avcodec-58.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 002429440 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64avdevice-58.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 007131648 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64avfilter-7.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 006124544 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64avformat-58.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 000654848 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64avutil-56.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 000126976 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64postproc-55.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 000376832 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64swresample-3.dll

2018-11-04 13:14 – 2018-06-18 14:21 – 000539136 _____ (FFmpeg Project) [File not signed] C:Program FilesAgentdllsx64swscale-5.dll

2019-05-16 17:50 – 2019-05-16 17:50 – 000014336 _____ (Intel Corp.) [File not signed] C:WindowsassemblyNativeImages_v2.0.50727_32IAStorCommone291b9fca9075d4bb3bb14576935a70cIAStorCommon.ni.dll

2016-11-05 13:25 – 2009-07-24 10:29 – 000012800 _____ (Intel Corporation) [File not signed] C:Program Files (x86)Common FilesIntelPrivacy IconenPrivacyIconClient.resources.dll

2016-11-05 13:25 – 2009-07-24 10:29 – 000069632 _____ (Intel Corporation) [File not signed] C:Program Files (x86)Common FilesIntelPrivacy IconUNSStatusStrings.dll

2016-11-05 13:17 – 2010-11-05 22:50 – 000164864 _____ (Intel Corporation) [File not signed] C:Program Files (x86)IntelIntel® Rapid Storage TechnologyIAStorUIHelper.dll

2016-11-05 13:17 – 2010-11-05 22:50 – 001109504 _____ (Intel Corporation) [File not signed] C:Program Files (x86)IntelIntel® Rapid Storage TechnologyIntelVisualDesign.dll

2016-11-05 13:17 – 2010-11-05 22:46 – 000275456 _____ (Intel Corporation) [File not signed] C:Program Files (x86)IntelIntel® Rapid Storage TechnologyISDI.dll

2020-01-16 02:11 – 2020-01-16 02:11 – 000219136 _____ (Intel Corporation) [File not signed] C:WindowsassemblyNativeImages_v2.0.50727_32IAStorDataMgr8d9dd45066aef9dc54a7f38a933b2dabIAStorDataMgr.ni.dll

2020-01-16 02:11 – 2020-01-16 02:11 – 000475648 _____ (Intel Corporation) [File not signed] C:WindowsassemblyNativeImages_v2.0.50727_32IAStorUtile4da073bd55348a8691e5f02377b263bIAStorUtil.ni.dll

2019-01-27 12:04 – 2018-08-02 09:28 – 000013824 _____ (IO3O LLC) [File not signed] C:Program Files (x86)IO3O LLCWho Is On My Wifishared.dll

2018-01-21 15:16 – 2013-01-24 15:59 – 000153600 _____ (Liebert Corporation) [File not signed] C:MultiLinkbinLxCUpsHid.dll

2018-01-21 15:16 – 2013-01-24 15:59 – 000085504 _____ (Liebert Corporation) [File not signed] C:MultiLinkbinLxNative.dll

2018-01-21 15:16 – 2013-01-24 15:59 – 000077824 _____ (Liebert Corporation) [File not signed] C:MultiLinkbinLxSnmp.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000348160 _____ (Microsoft Corporation) [File not signed] C:MultiLinkjrebinMSVCR71.dll

2016-11-05 12:14 – 2016-11-05 12:14 – 000225280 _____ (Microsoft Corporation) [File not signed] C:WindowsWinSxSx86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57msvcm90.dll

2019-01-27 12:04 – 2015-07-09 11:26 – 000422912 _____ (Newtonsoft) [File not signed] C:Program Files (x86)IO3O LLCWho Is On My WifiNewtonsoft.Json.dll

2017-03-22 22:37 – 2015-03-17 10:27 – 000528384 _____ (Realtek Semiconductor Corp.) [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRtlLib.dll

2017-03-22 22:37 – 2015-03-17 10:27 – 000200704 _____ (Realtek) [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityIpLib.dll

2017-03-22 22:37 – 2015-03-17 10:27 – 000272384 _____ (Realtek) [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRtlIhvOid.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 001130496 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinawt.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 002359296 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinclientjvm.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000339968 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinfontmanager.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000015872 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinhpi.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000126976 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinjava.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000077824 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinnet.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000020480 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinnio.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000031744 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinverify.dll

2012-04-04 14:40 – 2012-04-04 14:40 – 000047104 _____ (Sun Microsystems, Inc.) [File not signed] C:MultiLinkjrebinzip.dll

2017-03-22 22:37 – 2015-03-17 10:27 – 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityLIBEAY32.dll

2018-07-29 14:37 – 2017-09-12 10:36 – 000708608 _____ (Wondershare) [File not signed] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactCBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 14:34 – 2019-01-04 23:28 – 000000824 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKUS-1-5-21-1548130179-1602390836-4294383159-1000Control PanelDesktop\Wallpaper -> C:UsersHPAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper.jpg

DNS Servers: 192.168.1.1

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%system32sppsvc.exe No File

FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%system32sppsvc.exe No File

FirewallRules: [473B9A98-6F75-4FBF-8283-63EF36A1F152] => (Allow) C:Program Files (x86)Mozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [2F1FF358-A167-4FE9-B751-E229606F0434] => (Allow) C:Program Files (x86)Mozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [223E0AD0-5E9E-4A88-A051-EAB162BFE72E] => (Allow) C:MultiLinkbinLiebertM.exe (Liebert Corporation) [File not signed]

FirewallRules: [4C7E1E15-D044-46BE-97DA-E65953817661] => (Allow) C:MultiLinkbinLiebertM.exe (Liebert Corporation) [File not signed]

FirewallRules: [30EBE84C-0D8D-442E-A7AC-08FBED4B908D] => (Allow) C:MultiLinkbinLiebertM.exe (Liebert Corporation) [File not signed]

FirewallRules: [E5FD1783-343E-4AF9-8D93-E67FD01DF13D] => (Allow) C:MultiLinkbinLiebertM.exe (Liebert Corporation) [File not signed]

FirewallRules: [EF9F1AE8-1E42-4341-B913-A05990599A32] => (Allow) C:Program Files (x86)ApowersoftVideo Download Capture 6Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft)

FirewallRules: [49913285-9B70-4546-BE59-F45F57C958A3] => (Allow) C:Program Files (x86)ApowersoftVideo Download Capture 6Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft)

FirewallRules: [EB34805A-7796-4E13-8C81-8BA4023DF9ED] => (Allow) C:Program Files (x86)ApowersoftVideo Download Capture 6rtmpsrv.exe (Apowersoft Ltd -> )

FirewallRules: [8E08CFA8-159F-4849-B11D-239A7D7B4460] => (Allow) C:Program Files (x86)ApowersoftVideo Download Capture 6rtmpsrv.exe (Apowersoft Ltd -> )

FirewallRules: [69853618-12BA-43C8-A545-40C26AD9B062] => (Allow) C:Program Files (x86)TencentWeChatWeChat.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)

FirewallRules: [7960AD2F-B744-4CDC-9F0F-14F19459E5F3] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [54B22669-9B00-4242-9379-485F8CF35450] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [93E6BE8D-B035-420F-9AB1-8F57038BA9C9] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [1E30D472-DFAC-4755-AD6E-2F59E60E0B8E] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [4F3155E3-2B46-4597-847E-20376CDD425D] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [E832D024-43BC-4CB6-92D1-E7FD734CC3A9] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [C1FB01A2-70E1-4EB1-B17C-90343E2B7CC8] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [FB9D8092-DFC7-44F5-977F-0800AC785240] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [B9460164-0463-4C49-B7F8-C37A88F23B0D] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [3FB1606C-CB9A-4BE9-9219-2BB6686F562D] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [3DAC695E-5D7A-4CE6-BB09-00E374605CAF] => (Allow) C:Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

FirewallRules: [67B55E1C-C3D9-42B4-B04E-78B647E617C0] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [C77052C5-31E6-4897-8634-0387D1786612] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [BBC64AC8-0068-4D52-B3F1-71A59D609F8F] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [13167EED-7D0D-4F2F-8356-ACC5FBF0B0C2] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [26061C6F-9859-4413-8402-19E66D75A4C4] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

23-04-2020 20:01:40 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: PS/2 Compatible Mouse

Description: PS/2 Compatible Mouse

Class Guid: 4d36e96f-e325-11ce-bfc1-08002be10318

Manufacturer: Microsoft

Service: i8042prt

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Standard PS/2 Keyboard

Description: Standard PS/2 Keyboard

Class Guid: 4d36e96b-e325-11ce-bfc1-08002be10318

Manufacturer: (Standard keyboards)

Service: i8042prt

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: ========================

Application errors:

==================

Error: (04/27/2020 07:35:12 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 13329365

Error: (04/27/2020 07:35:12 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 13329365

Error: (04/27/2020 07:35:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/27/2020 07:35:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 13328226

Error: (04/27/2020 07:35:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 13328226

Error: (04/27/2020 07:35:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/27/2020 03:53:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2340

Error: (04/27/2020 03:53:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 2340

System errors:

=============

Error: (04/29/2020 02:15:39 PM) (Source: Tcpip) (EventID: 4199) (User: )

Description: The system detected an address conflict for IP address 192.168.1.10 with the system

having network hardware address 88-41-FC-30-C7-3A. Network operations on this system may

be disrupted as a result.

Error: (04/23/2020 05:19:24 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (04/19/2020 10:40:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)

Description: WLAN Extensibility Module has failed to start.

Module Path: C:Windowssystem32Rtlihvs.dll

Error Code: 126

Error: (04/18/2020 07:07:40 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (04/10/2020 10:23:58 PM) (Source: Server) (EventID: 2505) (User: )

Description: The server could not bind to the transport DeviceNetBT_Tcpip_1A49C37C-95B7-4B2D-9254-B4D5D233BDDE because another computer on the network has the same name.  The server could not start.

Error: (03/14/2020 11:01:59 AM) (Source: Tcpip) (EventID: 4199) (User: )

Description: The system detected an address conflict for IP address 2407:7000:9837:4500::3 with the system

having network hardware address BC-85-56-9F-8E-FA. Network operations on this system may

be disrupted as a result.

Error: (03/11/2020 02:35:00 PM) (Source: volsnap) (EventID: 36) (User: )

Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (03/09/2020 08:39:37 PM) (Source: Tcpip) (EventID: 4199) (User: )

Description: The system detected an address conflict for IP address 2407:7000:9837:4500::4 with the system

having network hardware address 98-DE-D0-1F-BC-7D. Network operations on this system may

be disrupted as a result.

==================== Memory info ===========================

BIOS: Hewlett-Packard 786G7 v01.02 10/22/2009

Motherboard: Hewlett-Packard 3646h

Processor: Intel® Core™2 Duo CPU E8400 @ 3.00GHz

Percentage of memory in use: 61%

Total physical RAM: 8063.25 MB

Available physical RAM: 3141.36 MB

Total Virtual: 16124.64 MB

Available Virtual: 10274.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:20.44 GB) NTFS

Drive d: (Robert) (Fixed) (Total:74.46 GB) (Free:0 GB) NTFS

Drive f: () (Fixed) (Total:51.39 GB) (Free:10.48 GB) NTFS

\?Volume1e337ba9-a2ea-11e6-8ec9-806e6f6e6963 (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 1F9FFD33)

Partition 1: (Active) – (Size=101 MB) – (Type=07 NTFS)

Partition 2: (Not Active) – (Size=97.6 GB) – (Type=07 NTFS)

Partition 3: (Not Active) – (Size=51.4 GB) – (Type=07 NTFS)

==========================================================

Disk: 1 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: D0F4738C)

Partition 1: (Not Active) – (Size=31 MB) – (Type=DE)

Partition 2: (Active) – (Size=74.5 GB) – (Type=07 NTFS)

==================== End of Addition.txt =======================

Commentaires

Laisser un commentaire

Votre commentaire sera révisé par les administrateurs si besoin.