Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2021
Exécuté par Antoine (administrateur) sur LAPTOP-Q22085FR (ASUSTeK COMPUTER INC. X705UA) (09-12-2021 23:43:28)
Exécuté depuis C:\Users\antoi\Downloads
Profils chargés: Antoine
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxext.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHeciSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807712 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-2240646537-3593129039-3528355518-1001\...\Run: [MicrosoftEdgeAutoLaunch_F70D1747ADA17DF9E373EB21A9A85F09] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0385551B-257B-41BD-9DA0-C84E9632226C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139656 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {18D0B2E4-C2A4-41E7-8D12-EA53726D3B59} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1B13B7F5-5170-425B-A8DD-D65C7426CE95} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {27B84D56-F382-4669-8EF1-57FF1C445772} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {325EA408-1F84-4A7F-90EA-EEE7A906C18C} - System32\Tasks\PCAT_Antoine_PCSpeedCat_RS_WeeklyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /a:rs /s (Pas de fichier)
Task: {351B06E5-8DF0-4E37-9AEA-2F3A7B06E3BB} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {35EDECB1-C2FE-46D3-B1F5-1025680D93A9} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-13] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {5AAB7EF5-62B0-41FA-97DB-224A340246C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {60187128-B3FF-4395-9866-EE74BDFB57C1} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {67A1CEE8-732F-4B2D-9B4E-E45055BC28F9} - System32\Tasks\SplendidTask => C:\ProgramData\ASUS\ASUS [Argument = Splendid\SplendidStartUp.exe]
Task: {9F6699E4-E046-4BE1-81B6-CF03A7DE1043} - System32\Tasks\PCAT_Antoine_PCSpeedCat_RS_DailyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /f /s (Pas de fichier)
Task: {D08B33C6-A9DD-4AB1-85E4-429ECDF29AAC} - System32\Tasks\PCAT_Antoine_PCSpeedCat_LogonTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /n /flt (Pas de fichier)
Task: {D3235077-406E-4B44-B7D1-FAB1442BABD8} - System32\Tasks\PCAT_Antoine_PCSpeedCat_LG_DailyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /a:lg /s (Pas de fichier)
Task: {DA95B507-3F75-401E-9290-CF42F1B338E9} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {DBA3D757-6DD3-4DB0-98DB-06395D61B11A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E4871E9A-C790-4E26-A005-0B46EB1C89DF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139656 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0ABB175-282C-4540-869F-C5E8C49DB7DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAE78DE3-03C4-4E63-8CC7-F579EEFA6868} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FC850509-49EA-4F8F-9B8F-BA285E8445A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FDCC5F55-9A6C-482F-919C-E09F13346F29} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF0E55A4-514A-4BB3-B696-9615F336A430} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a850dffa-095c-405c-adc9-111e32f9bc0e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cf1c54f4-2d6c-436a-8480-1cfe58c5ab74}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\antoi\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-09]
Edge DownloadDir: Default -> C:\Users\antoi\Downloads
Edge Notifications: Default -> hxxps://letribunaldunet.os.tc; hxxps://www.facebook.com; hxxps://www.football365.fr; hxxps://www.l-itineraire.com
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-11-30]
Edge Profile: C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-11-30]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-12-07] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2240646537-3593129039-3528355518-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\antoi\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129160 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [325456 2018-06-12] (ASUSTek Computer Inc. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-12-07] (McAfee, LLC -> McAfee, LLC)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2018-04-27] (Alcorlink Corp. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [113496 2021-01-14] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-09 23:42 - 2021-12-09 23:42 - 002019328 _____ (Farbar) C:\Users\antoi\Downloads\Non confirmé 52539.crdownload
2021-12-07 01:15 - 2021-12-07 01:15 - 000053127 _____ C:\Users\antoi\Downloads\Shortcut.txt
2021-12-07 01:13 - 2021-12-07 01:15 - 000038548 _____ C:\Users\antoi\Downloads\Addition.txt
2021-12-07 01:10 - 2021-12-09 23:44 - 000017287 _____ C:\Users\antoi\Downloads\FRST.txt
2021-12-07 01:10 - 2021-12-07 01:10 - 000000000 ____D C:\Users\antoi\Downloads\FRST-OlderVersion
2021-12-07 01:09 - 2021-12-09 23:44 - 000000000 ____D C:\FRST
2021-12-07 01:09 - 2021-12-07 01:10 - 002311168 _____ (Farbar) C:\Users\antoi\Downloads\FRST64.exe
2021-12-06 21:44 - 2021-12-06 21:44 - 002019328 _____ (Farbar) C:\Users\antoi\Downloads\Non confirmé 761962.crdownload
2021-12-06 21:21 - 2021-12-06 21:21 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\ZHPSuite (2).exe
2021-12-06 21:21 - 2021-12-06 21:21 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\Non confirmé 241194.crdownload
2021-12-06 21:20 - 2021-12-06 21:20 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\Non confirmé 121678.crdownload
2021-12-02 23:46 - 2021-12-02 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-12-02 20:30 - 2021-12-02 20:30 - 000017671 _____ C:\Users\antoi\Downloads\Planning SCHAEFFLER écembre 2021 (1).pdf
2021-12-01 19:23 - 2021-12-01 19:23 - 000382616 _____ C:\Users\antoi\Downloads\facture_610400342369.pdf
2021-11-30 19:54 - 2021-11-30 19:54 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021 (2).pdf
2021-11-30 19:53 - 2021-11-30 19:53 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021 (1).pdf
2021-11-30 19:52 - 2021-11-30 19:52 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021.pdf
2021-11-30 19:13 - 2021-11-30 19:13 - 000017671 _____ C:\Users\antoi\Downloads\Planning SCHAEFFLER écembre 2021.pdf
2021-11-30 01:23 - 2021-11-30 01:23 - 042762464 _____ C:\Users\antoi\Downloads\vlc-3.0.16-win64 (1).exe
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-11-29 11:01 - 2021-11-29 11:01 - 000187514 _____ C:\Users\antoi\Downloads\Planning THOMAS décembre 2021.pdf
2021-11-28 22:45 - 2021-11-28 22:45 - 000018669 _____ C:\Users\antoi\Downloads\Message vocal déposé par le 03 88 78 19 58.zip
2021-11-14 11:42 - 2021-11-14 11:42 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-14 11:42 - 2021-11-14 11:42 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-14 11:41 - 2021-11-14 11:41 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-14 11:41 - 2021-11-14 11:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-13 19:18 - 2021-11-13 19:18 - 000000000 ___HD C:\$WinREAgent
2021-11-13 19:14 - 2021-11-13 19:14 - 008553680 _____ (Malwarebytes) C:\Users\antoi\Downloads\adwcleaner_8.3.0 (1).exe
2021-11-12 22:40 - 2021-11-12 22:40 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3 (2).exe
2021-11-12 22:39 - 2021-11-12 22:39 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3.exe
2021-11-12 22:39 - 2021-11-12 22:39 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3 (1).exe
2021-11-11 18:57 - 2021-11-13 16:12 - 000004582 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_RS_WeeklyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004412 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_RS_DailyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004158 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_LG_DailyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004026 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_LogonTask
2021-11-11 18:57 - 2021-11-11 18:57 - 000000000 ____D C:\ProgramData\DumpFiles
2021-11-11 18:56 - 2021-11-11 18:56 - 002729352 _____ ( ) C:\Users\antoi\Downloads\speedcat.setup.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-09 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-09 19:19 - 2019-06-29 10:54 - 000000000 ____D C:\Program Files\Microsoft Office
2021-12-09 19:14 - 2020-06-21 13:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-09 18:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-08 00:24 - 2020-06-21 14:01 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-08 00:24 - 2019-12-07 15:49 - 000757872 _____ C:\WINDOWS\system32\perfh00C.dat
2021-12-08 00:24 - 2019-12-07 15:49 - 000142626 _____ C:\WINDOWS\system32\perfc00C.dat
2021-12-08 00:24 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-08 00:20 - 2020-04-22 18:05 - 000000000 ____D C:\Program Files\Common Files\logishrd
2021-12-07 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-12-06 21:36 - 2020-06-21 12:33 - 000000000 ____D C:\Users\antoi\AppData\Roaming\ZHP
2021-12-06 21:22 - 2020-06-21 12:33 - 000000000 ____D C:\Users\antoi\AppData\Local\ZHP
2021-12-04 17:38 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-03 21:34 - 2020-05-16 23:22 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-03 19:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-02 23:48 - 2020-02-03 16:36 - 000000000 ____D C:\Users\antoi\AppData\Local\Dropbox
2021-12-02 23:47 - 2020-02-03 16:36 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-12-01 21:07 - 2020-06-21 14:05 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-01 21:07 - 2020-06-21 14:05 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-01 19:27 - 2020-06-21 14:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-01 19:27 - 2020-06-21 13:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-01 19:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-01 19:27 - 2019-11-22 00:59 - 000000000 ___HD C:\Intel
2021-12-01 19:26 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-30 01:25 - 2021-07-07 09:21 - 000000000 ____D C:\Users\antoi\AppData\Roaming\vlc
2021-11-28 12:19 - 2020-02-09 09:35 - 000000000 ____D C:\Users\antoi\AppData\Local\D3DSCache
2021-11-28 10:32 - 2019-11-22 02:01 - 000000000 ____D C:\Users\antoi\AppData\Local\Packages
2021-11-24 18:59 - 2020-02-03 15:40 - 000000000 ____D C:\ProgramData\Packages
2021-11-18 19:02 - 2020-06-21 14:05 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2240646537-3593129039-3528355518-1001
2021-11-18 19:02 - 2020-06-21 13:33 - 000002423 _____ C:\Users\antoi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-14 12:02 - 2020-06-21 13:58 - 000436448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-14 12:02 - 2020-02-03 16:36 - 000001216 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-11-14 12:02 - 2020-02-03 16:36 - 000001212 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-14 12:01 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-13 19:16 - 2021-10-08 08:58 - 000000000 ____D C:\AdwCleaner
2021-11-13 19:15 - 2020-02-03 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-13 19:05 - 2020-02-03 23:58 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-12 16:09 - 2020-06-21 14:05 - 000004174 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-11-12 16:09 - 2020-06-21 14:05 - 000003942 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Antoine (administrateur) sur LAPTOP-Q22085FR (ASUSTeK COMPUTER INC. X705UA) (09-12-2021 23:43:28)
Exécuté depuis C:\Users\antoi\Downloads
Profils chargés: Antoine
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxext.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\IntelCpHeciSvc.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807712 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-2240646537-3593129039-3528355518-1001\...\Run: [MicrosoftEdgeAutoLaunch_F70D1747ADA17DF9E373EB21A9A85F09] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0385551B-257B-41BD-9DA0-C84E9632226C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139656 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {18D0B2E4-C2A4-41E7-8D12-EA53726D3B59} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1B13B7F5-5170-425B-A8DD-D65C7426CE95} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {27B84D56-F382-4669-8EF1-57FF1C445772} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {325EA408-1F84-4A7F-90EA-EEE7A906C18C} - System32\Tasks\PCAT_Antoine_PCSpeedCat_RS_WeeklyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /a:rs /s (Pas de fichier)
Task: {351B06E5-8DF0-4E37-9AEA-2F3A7B06E3BB} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {35EDECB1-C2FE-46D3-B1F5-1025680D93A9} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143672 2019-04-13] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {5AAB7EF5-62B0-41FA-97DB-224A340246C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {60187128-B3FF-4395-9866-EE74BDFB57C1} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {67A1CEE8-732F-4B2D-9B4E-E45055BC28F9} - System32\Tasks\SplendidTask => C:\ProgramData\ASUS\ASUS [Argument = Splendid\SplendidStartUp.exe]
Task: {9F6699E4-E046-4BE1-81B6-CF03A7DE1043} - System32\Tasks\PCAT_Antoine_PCSpeedCat_RS_DailyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /f /s (Pas de fichier)
Task: {D08B33C6-A9DD-4AB1-85E4-429ECDF29AAC} - System32\Tasks\PCAT_Antoine_PCSpeedCat_LogonTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /n /flt (Pas de fichier)
Task: {D3235077-406E-4B44-B7D1-FAB1442BABD8} - System32\Tasks\PCAT_Antoine_PCSpeedCat_LG_DailyTask => C:\Program Files (x86)\SpeedCat\PCSpeedCat\PCSpeedCat.exe /a:lg /s (Pas de fichier)
Task: {DA95B507-3F75-401E-9290-CF42F1B338E9} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {DBA3D757-6DD3-4DB0-98DB-06395D61B11A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {E4871E9A-C790-4E26-A005-0B46EB1C89DF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139656 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0ABB175-282C-4540-869F-C5E8C49DB7DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAE78DE3-03C4-4E63-8CC7-F579EEFA6868} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FC850509-49EA-4F8F-9B8F-BA285E8445A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FDCC5F55-9A6C-482F-919C-E09F13346F29} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF0E55A4-514A-4BB3-B696-9615F336A430} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2020-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a850dffa-095c-405c-adc9-111e32f9bc0e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cf1c54f4-2d6c-436a-8480-1cfe58c5ab74}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\antoi\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-09]
Edge DownloadDir: Default -> C:\Users\antoi\Downloads
Edge Notifications: Default -> hxxps://letribunaldunet.os.tc; hxxps://www.facebook.com; hxxps://www.football365.fr; hxxps://www.l-itineraire.com
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-11-30]
Edge Profile: C:\Users\antoi\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2020-11-30]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-12-07] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2240646537-3593129039-3528355518-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\antoi\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129160 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [325456 2018-06-12] (ASUSTek Computer Inc. -> )
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-12-07] (McAfee, LLC -> McAfee, LLC)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2018-04-27] (Alcorlink Corp. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [113496 2021-01-14] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-09 23:42 - 2021-12-09 23:42 - 002019328 _____ (Farbar) C:\Users\antoi\Downloads\Non confirmé 52539.crdownload
2021-12-07 01:15 - 2021-12-07 01:15 - 000053127 _____ C:\Users\antoi\Downloads\Shortcut.txt
2021-12-07 01:13 - 2021-12-07 01:15 - 000038548 _____ C:\Users\antoi\Downloads\Addition.txt
2021-12-07 01:10 - 2021-12-09 23:44 - 000017287 _____ C:\Users\antoi\Downloads\FRST.txt
2021-12-07 01:10 - 2021-12-07 01:10 - 000000000 ____D C:\Users\antoi\Downloads\FRST-OlderVersion
2021-12-07 01:09 - 2021-12-09 23:44 - 000000000 ____D C:\FRST
2021-12-07 01:09 - 2021-12-07 01:10 - 002311168 _____ (Farbar) C:\Users\antoi\Downloads\FRST64.exe
2021-12-06 21:44 - 2021-12-06 21:44 - 002019328 _____ (Farbar) C:\Users\antoi\Downloads\Non confirmé 761962.crdownload
2021-12-06 21:21 - 2021-12-06 21:21 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\ZHPSuite (2).exe
2021-12-06 21:21 - 2021-12-06 21:21 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\Non confirmé 241194.crdownload
2021-12-06 21:20 - 2021-12-06 21:20 - 003477656 _____ (Nicolas Coolman) C:\Users\antoi\Downloads\Non confirmé 121678.crdownload
2021-12-02 23:46 - 2021-12-02 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-12-02 20:30 - 2021-12-02 20:30 - 000017671 _____ C:\Users\antoi\Downloads\Planning SCHAEFFLER écembre 2021 (1).pdf
2021-12-01 19:23 - 2021-12-01 19:23 - 000382616 _____ C:\Users\antoi\Downloads\facture_610400342369.pdf
2021-11-30 19:54 - 2021-11-30 19:54 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021 (2).pdf
2021-11-30 19:53 - 2021-11-30 19:53 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021 (1).pdf
2021-11-30 19:52 - 2021-11-30 19:52 - 000041109 _____ C:\Users\antoi\Downloads\Planning THOMAS P. année 2021.pdf
2021-11-30 19:13 - 2021-11-30 19:13 - 000017671 _____ C:\Users\antoi\Downloads\Planning SCHAEFFLER écembre 2021.pdf
2021-11-30 01:23 - 2021-11-30 01:23 - 042762464 _____ C:\Users\antoi\Downloads\vlc-3.0.16-win64 (1).exe
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-11-29 16:10 - 2021-11-29 16:10 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-11-29 11:01 - 2021-11-29 11:01 - 000187514 _____ C:\Users\antoi\Downloads\Planning THOMAS décembre 2021.pdf
2021-11-28 22:45 - 2021-11-28 22:45 - 000018669 _____ C:\Users\antoi\Downloads\Message vocal déposé par le 03 88 78 19 58.zip
2021-11-14 11:42 - 2021-11-14 11:42 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-14 11:42 - 2021-11-14 11:42 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-14 11:41 - 2021-11-14 11:41 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-14 11:41 - 2021-11-14 11:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-13 19:18 - 2021-11-13 19:18 - 000000000 ___HD C:\$WinREAgent
2021-11-13 19:14 - 2021-11-13 19:14 - 008553680 _____ (Malwarebytes) C:\Users\antoi\Downloads\adwcleaner_8.3.0 (1).exe
2021-11-12 22:40 - 2021-11-12 22:40 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3 (2).exe
2021-11-12 22:39 - 2021-11-12 22:39 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3.exe
2021-11-12 22:39 - 2021-11-12 22:39 - 020566640 _____ (Corel Corporation) C:\Users\antoi\Downloads\SimpleDriverUpdaterSetup_ppc3 (1).exe
2021-11-11 18:57 - 2021-11-13 16:12 - 000004582 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_RS_WeeklyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004412 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_RS_DailyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004158 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_LG_DailyTask
2021-11-11 18:57 - 2021-11-13 16:12 - 000004026 _____ C:\WINDOWS\system32\Tasks\PCAT_Antoine_PCSpeedCat_LogonTask
2021-11-11 18:57 - 2021-11-11 18:57 - 000000000 ____D C:\ProgramData\DumpFiles
2021-11-11 18:56 - 2021-11-11 18:56 - 002729352 _____ ( ) C:\Users\antoi\Downloads\speedcat.setup.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-12-09 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-09 19:19 - 2019-06-29 10:54 - 000000000 ____D C:\Program Files\Microsoft Office
2021-12-09 19:14 - 2020-06-21 13:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-09 18:54 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-08 00:24 - 2020-06-21 14:01 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-08 00:24 - 2019-12-07 15:49 - 000757872 _____ C:\WINDOWS\system32\perfh00C.dat
2021-12-08 00:24 - 2019-12-07 15:49 - 000142626 _____ C:\WINDOWS\system32\perfc00C.dat
2021-12-08 00:24 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-08 00:20 - 2020-04-22 18:05 - 000000000 ____D C:\Program Files\Common Files\logishrd
2021-12-07 00:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-12-06 21:36 - 2020-06-21 12:33 - 000000000 ____D C:\Users\antoi\AppData\Roaming\ZHP
2021-12-06 21:22 - 2020-06-21 12:33 - 000000000 ____D C:\Users\antoi\AppData\Local\ZHP
2021-12-04 17:38 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-03 21:34 - 2020-05-16 23:22 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-03 19:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-02 23:48 - 2020-02-03 16:36 - 000000000 ____D C:\Users\antoi\AppData\Local\Dropbox
2021-12-02 23:47 - 2020-02-03 16:36 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-12-01 21:07 - 2020-06-21 14:05 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-01 21:07 - 2020-06-21 14:05 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-01 19:27 - 2020-06-21 14:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-01 19:27 - 2020-06-21 13:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-01 19:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-01 19:27 - 2019-11-22 00:59 - 000000000 ___HD C:\Intel
2021-12-01 19:26 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-30 01:25 - 2021-07-07 09:21 - 000000000 ____D C:\Users\antoi\AppData\Roaming\vlc
2021-11-28 12:19 - 2020-02-09 09:35 - 000000000 ____D C:\Users\antoi\AppData\Local\D3DSCache
2021-11-28 10:32 - 2019-11-22 02:01 - 000000000 ____D C:\Users\antoi\AppData\Local\Packages
2021-11-24 18:59 - 2020-02-03 15:40 - 000000000 ____D C:\ProgramData\Packages
2021-11-18 19:02 - 2020-06-21 14:05 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2240646537-3593129039-3528355518-1001
2021-11-18 19:02 - 2020-06-21 13:33 - 000002423 _____ C:\Users\antoi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-14 12:02 - 2020-06-21 13:58 - 000436448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-14 12:02 - 2020-02-03 16:36 - 000001216 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-11-14 12:02 - 2020-02-03 16:36 - 000001212 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-14 12:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-14 12:01 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-13 19:16 - 2021-10-08 08:58 - 000000000 ____D C:\AdwCleaner
2021-11-13 19:15 - 2020-02-03 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-13 19:05 - 2020-02-03 23:58 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-12 16:09 - 2020-06-21 14:05 - 000004174 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-11-12 16:09 - 2020-06-21 14:05 - 000003942 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================