Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2022
Exécuté par Eisenstein Philippe (administrateur) sur LAPTOP-ODHLEOSP (ASUSTeK COMPUTER INC. X555QA) (05-04-2022 18:00:59)
Exécuté depuis C:\Users\Eisenstein Philippe\OneDrive\Bureau
Profils chargés: Eisenstein Philippe
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1586 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ->) (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\145.4.4921\QtWebEngineProcess.exe <2>
(C:\Program Files\AMD\CNext\CNext\amddvr.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WSSVPN\SCTBSvc.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\mmsshost\MMSSHOST.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atieclxx.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atiesrxx.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\csp\5.1.104.0\McCSPServiceHost.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <3>
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\VSCore_22_2\mcapexe.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.045.0227.0004\OneDriveUpdaterService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3256021485-2611887468-3113279675-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2619296 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3256021485-2611887468-3113279675-1001\...\Run: [MicrosoftEdgeAutoLaunch_78BA1E58A0D486DE1D563D46AD5DDE09] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3518880 2022-03-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.60\Installer\chrmstp.exe [2022-04-02] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06F0442E-E1EF-41DA-8814-DFF31FF2AC45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DA975D8-9A45-4ABE-BEC5-96BA959A8088} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {21F38EF1-B9EF-4621-B818-5074365CB208} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION
Task: {231AB0D1-1C38-4EDE-A5E4-C5B35292EE41} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {2360FF57-8CF1-4D8F-A3B3-FA9DEBF78C6E} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-01-07] (McAfee, Inc. -> McAfee, LLC.)
Task: {2B712112-CDB4-490B-AB4A-52BAC0687C62} - System32\Tasks\SplendidTask => C:\ProgramData\ASUS\ASUS [Argument = Splendid\SplendidStartUp.exe]
Task: {2D3C8ABD-F544-4BC2-BA27-078325895892} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {332EA6B7-3929-44F0-A755-20F049285AA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-07] (Google LLC -> Google LLC)
Task: {3DB7B0BB-D6DC-4D7C-AE36-E32A35A6CA82} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3256021485-2611887468-3113279675-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E76050D-2FB1-47FB-83EA-AF7C01D2D10C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8338896 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F349E14-8807-4D26-B600-DDBBCEFFDEF6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {4C0D533E-4F23-463A-8B0C-F7A95AB01AC2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F11FA5E-BE17-4B76-830F-40210FC7441C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F84E67C-2EFE-4F61-8526-04E3F33A08B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5BC3CAAA-4BE7-4020-A168-C78271BC8A25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-07] (Google LLC -> Google LLC)
Task: {5C176F84-5524-40C4-9E0D-57EF0063EE48} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {65BED7A6-22C8-41D9-9F27-E4FF119EB82A} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4089168 2022-02-08] (McAfee, LLC -> McAfee, LLC)
Task: {720C4089-FFFC-4B09-8FBA-7816117FD636} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {829CE1A7-5411-4452-A4D6-24CDF73C79A2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138680 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8355E3C8-A123-4F2F-A736-F291FFFA5765} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {8482C70E-D61F-452A-80DB-2845F10CBFFD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138680 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8630A72C-499A-4294-890B-AD9FED31036D} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {90BE76D8-593C-4CE9-AF73-41E6C0466E63} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C6FFE70-D3E1-4E69-9B35-031E4D82F338} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {9EABB21B-2E68-4E93-B2D0-AE92A00F499E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9FD781EE-7FAA-4B99-8B16-65777765617A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1F77CC0-D51E-483F-B807-D8AA999973CC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2019-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BC7A5E97-0C78-4EF3-B868-5599F94D5974} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3DAC455-8126-4FDC-B67E-97EAC50C8CA5} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4557960 2022-02-07] (McAfee, LLC -> McAfee, LLC)
Task: {C3E0F268-BAEB-4BCA-9D1A-717638E57123} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {CA8BF664-B894-4BCA-AB2B-51587AD53698} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8338896 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDC7AFF1-4506-4ED7-BF3D-A9AECB4CB128} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2019-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E40497AB-95F4-49B8-9180-D8058D61C59E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E47D6AB8-FB71-40ED-AC06-62836A27100E} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [761976 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {E81A7C03-05FF-48AC-A060-39137A95A1D5} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2d93eeec-8920-4045-9fa0-90de0776d5e8}: [DhcpNameServer] 10.66.16.1
Tcpip\..\Interfaces\{3dc8d444-72d1-4929-bcea-349370049a65}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{6944EB97-DB0C-49AF-968E-B1E9312D0A1E}: [NameServer] 10.0.4.0 10.0.4.1
Tcpip\..\Interfaces\{7a987001-319f-4d46-8495-5a168e00f6ec}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{ed35c0ec-ff81-42ca-89d6-7c45dff3b0cd}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Eisenstein Philippe\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-05]
Edge Notifications: Default -> hxxps://fr-fr.wyylde.com; hxxps://www.coco.fr; hxxps://www.facebook.com; hxxps://www.wyylde.com; hxxps://wyylde.com
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 3bgbaxrz.default
FF ProfilePath: C:\Users\Eisenstein Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\3bgbaxrz.default [2020-10-05]
FF ProfilePath: C:\Users\Eisenstein Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\buqdf87p.default-release [2022-04-04]
FF Notifications: Mozilla\Firefox\Profiles\buqdf87p.default-release -> hxxps://www.wyylde.com
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2022-02-22] (McAfee, LLC -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2022-02-22] (McAfee, LLC -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default [2022-04-04]
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E211FR885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Slides) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-14]
CHR Extension: (Docs) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-14]
CHR Extension: (Google Drive) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-14]
CHR Extension: (YouTube) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-14]
CHR Extension: (Sheets) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-14]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-04-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-04]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-04]
CHR Extension: (McAfee® Web Boost) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\klekeajafkkpokaofllcadenjdckhinm [2022-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-14]
CHR Extension: (Gmail) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-14]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 0182741649172843mcinstcleanup; C:\ProgramData\McInstTemp0182741649172843\mcinst.exe [913112 2022-02-18] (McAfee, LLC -> McAfee, LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [325456 2018-06-12] (ASUSTek Computer Inc. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileSyncHelper.exe [3382176 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [218272 2022-03-21] (HP Inc. -> HP Inc.)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-11] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-04-02] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_2\McApExe.exe [816296 2022-02-18] (McAfee, LLC -> McAfee, LLC)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2018-07-16] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.1.104.0\\McCSPServiceHost.exe [3378048 2022-02-17] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1546144 2022-02-18] (McAfee, LLC -> McAfee, LLC)
R3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\OneDriveUpdaterService.exe [3861400 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4235968 2022-02-19] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 UIUService; %SystemRoot%\system32\UIUSrv.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [72224 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-11] (Malwarebytes Inc -> Malwarebytes)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [469528 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [344088 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83400 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [439320 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [911904 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [645656 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [111136 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [107040 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [228888 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [439544 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-05 18:00 - 2022-04-05 18:01 - 000000000 ____D C:\FRST
2022-04-05 17:45 - 2022-04-05 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2022-04-05 17:34 - 2022-04-05 17:34 - 000000000 ____D C:\ProgramData\McInstTemp0182741649172843
2022-04-05 17:01 - 2022-04-05 17:01 - 000000676 _____ C:\RstHosts.txt
2022-04-05 17:00 - 2022-04-05 17:01 - 000353632 _____ C:\Users\Eisenstein Philippe\Downloads\rsthosts_2.0.exe
2022-04-04 18:54 - 2022-04-04 18:54 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\ZHP
2022-04-02 19:18 - 2022-04-02 20:18 - 1466552730 _____ C:\Users\Eisenstein Philippe\Downloads\Moonfall.2022.TRUEFRENCH.HDRip.XviD-Wawacity.blue.avi
2022-03-30 14:43 - 2022-03-30 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-03-26 18:35 - 2022-03-26 18:41 - 727308802 _____ C:\Users\Eisenstein Philippe\Downloads\The.Adam.Project.2022.FRENCH.HDRip.XviD-Wawacity.blue.avi
2022-03-26 11:29 - 2022-03-26 11:29 - 000074329 _____ C:\Users\Eisenstein Philippe\Downloads\302541699367-3127835679-billet.pdf
2022-03-19 16:39 - 2022-03-19 16:46 - 1470069460 _____ C:\Users\Eisenstein Philippe\Downloads\Spider-Man.No.Way.Home.2021.TRUEFRENCH.BDRip.XviD-Wawacity.blue.avi
2022-03-17 16:58 - 2022-03-29 14:46 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\DropboxElectron
2022-03-12 19:36 - 2022-03-12 19:38 - 346836950 _____ C:\Users\Eisenstein Philippe\Downloads\ORELSAN.Montre.Jamais.Ca.a.Personne.S01E05.FRENCH.WEBRip.x264-Wawacity.one.mp4
2022-03-11 16:44 - 2022-03-11 16:44 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-11 16:44 - 2022-03-11 16:44 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-11 16:43 - 2022-03-11 16:43 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-11 16:43 - 2022-03-11 16:43 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-11 16:43 - 2022-03-11 16:43 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-11 16:21 - 2022-03-11 16:21 - 000000000 ___HD C:\$WinREAgent
2022-03-06 11:54 - 2022-03-06 11:55 - 383199089 _____ C:\Users\Eisenstein Philippe\Downloads\ORELSAN.Montre.Jamais.Ca.a.Personne.S01E04.FRENCH.WEBRip.x264-Wawacity.one.mp4
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-05 17:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-05 17:43 - 2021-04-20 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-05 17:34 - 2019-06-27 13:26 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-04-05 17:31 - 2021-04-20 18:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2022-04-05 17:11 - 2020-03-07 21:48 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-05 17:04 - 2021-04-20 17:58 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-05 17:04 - 2019-12-07 16:49 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2022-04-05 17:04 - 2019-12-07 16:49 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2022-04-05 17:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-05 16:59 - 2020-03-12 07:07 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2022-04-05 16:59 - 2020-03-07 15:06 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\Dropbox
2022-04-05 16:58 - 2019-06-27 14:27 - 000000000 ___RD C:\Users\Eisenstein Philippe\OneDrive
2022-04-05 16:56 - 2021-04-20 18:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-04-05 16:56 - 2021-04-20 17:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-05 16:56 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-04-05 16:56 - 2019-06-27 13:18 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2022-04-04 19:43 - 2020-03-07 21:54 - 000000000 ____D C:\ProgramData\Mozilla
2022-04-04 19:42 - 2020-03-07 21:54 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\LocalLow\Mozilla
2022-04-04 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-04-04 19:11 - 2020-08-05 17:52 - 000000135 _____ C:\Users\Eisenstein
2022-04-04 19:11 - 2020-08-05 17:47 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\ZHP
2022-04-04 19:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-04 19:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-04 18:52 - 2020-03-07 22:18 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\vlc
2022-04-04 17:33 - 2021-04-20 17:50 - 000000000 ____D C:\Users\Eisenstein Philippe
2022-04-02 09:45 - 2019-12-07 11:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2022-04-02 09:41 - 2020-03-08 18:13 - 000000000 ____D C:\Program Files\Microsoft Office
2022-04-02 09:23 - 2021-04-23 22:30 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d735fd495f199b
2022-04-02 09:23 - 2021-04-20 18:02 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-30 14:43 - 2020-03-07 15:06 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-03-28 15:34 - 2019-06-27 14:25 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\D3DSCache
2022-03-28 15:16 - 2020-06-06 20:51 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-27 15:43 - 2021-06-11 22:05 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-03-27 15:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-24 20:15 - 2021-12-12 14:35 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3256021485-2611887468-3113279675-1001
2022-03-24 20:15 - 2021-04-20 18:02 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-03-24 20:15 - 2020-03-22 16:29 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-22 19:39 - 2021-05-10 19:17 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-03-21 19:30 - 2021-04-20 18:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-03-16 16:29 - 2018-12-07 09:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-11 23:27 - 2021-04-20 17:46 - 000439136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-11 23:27 - 2020-03-07 15:06 - 000001244 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2022-03-11 23:27 - 2020-03-07 15:06 - 000001240 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-11 23:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-11 18:34 - 2019-06-27 13:26 - 000000000 ____D C:\Program Files\Common Files\mcafee
2022-03-11 18:33 - 2021-04-20 18:02 - 000003354 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2022-03-11 18:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-11 16:50 - 2020-08-23 17:10 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 16:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-11 16:43 - 2021-04-20 17:47 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-11 16:20 - 2020-03-07 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-11 16:19 - 2021-04-20 18:02 - 000004202 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2022-03-11 16:19 - 2021-04-20 18:02 - 000003970 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2022-03-11 16:14 - 2020-03-07 14:59 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2021-02-14 14:55 - 2021-02-14 14:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2020-12-10 15:50 - 2020-12-10 15:50 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2021-01-13 22:56 - 2021-01-13 22:56 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2021-01-13 22:56 - 2021-01-13 22:56 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2021-01-13 22:57 - 2021-01-13 22:57 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051068 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051016 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000070644 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000067324 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051272 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000073232 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8814ae_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000064048 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000038012 _____ C:\WINDOWS\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
2020-08-12 15:23 - 2020-08-12 15:23 - 002813864 _____ (kernel-panik) C:\Users\Eisenstein Philippe\Downloads\kprm_2.8.exe
2022-04-05 17:00 - 2022-04-05 17:01 - 000353632 _____ C:\Users\Eisenstein Philippe\Downloads\rsthosts_2.0.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Eisenstein Philippe (administrateur) sur LAPTOP-ODHLEOSP (ASUSTeK COMPUTER INC. X555QA) (05-04-2022 18:00:59)
Exécuté depuis C:\Users\Eisenstein Philippe\OneDrive\Bureau
Profils chargés: Eisenstein Philippe
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1586 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ->) (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\145.4.4921\QtWebEngineProcess.exe <2>
(C:\Program Files\AMD\CNext\CNext\amddvr.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WSSVPN\SCTBSvc.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\mmsshost\MMSSHOST.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\mfeav\MfeAVSvc.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atieclxx.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0338630.inf_amd64_165f5c35fcd738bf\B338239\atiesrxx.exe
(services.exe ->) (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\x40plmwa.inf_amd64_0fe274d0aafd5420\ICEsoundService64.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\csp\5.1.104.0\McCSPServiceHost.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <3>
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\VSCore_22_2\mcapexe.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.045.0227.0004\OneDriveUpdaterService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe <6>
(svchost.exe ->) (ASUSTek Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20858.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-3256021485-2611887468-3113279675-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2619296 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3256021485-2611887468-3113279675-1001\...\Run: [MicrosoftEdgeAutoLaunch_78BA1E58A0D486DE1D563D46AD5DDE09] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3518880 2022-03-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\100.0.4896.60\Installer\chrmstp.exe [2022-04-02] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06F0442E-E1EF-41DA-8814-DFF31FF2AC45} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1DA975D8-9A45-4ABE-BEC5-96BA959A8088} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {21F38EF1-B9EF-4621-B818-5074365CB208} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION
Task: {231AB0D1-1C38-4EDE-A5E4-C5B35292EE41} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {2360FF57-8CF1-4D8F-A3B3-FA9DEBF78C6E} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-01-07] (McAfee, Inc. -> McAfee, LLC.)
Task: {2B712112-CDB4-490B-AB4A-52BAC0687C62} - System32\Tasks\SplendidTask => C:\ProgramData\ASUS\ASUS [Argument = Splendid\SplendidStartUp.exe]
Task: {2D3C8ABD-F544-4BC2-BA27-078325895892} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [926064 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {332EA6B7-3929-44F0-A755-20F049285AA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-07] (Google LLC -> Google LLC)
Task: {3DB7B0BB-D6DC-4D7C-AE36-E32A35A6CA82} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3256021485-2611887468-3113279675-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E76050D-2FB1-47FB-83EA-AF7C01D2D10C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8338896 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F349E14-8807-4D26-B600-DDBBCEFFDEF6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {4C0D533E-4F23-463A-8B0C-F7A95AB01AC2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61336 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F11FA5E-BE17-4B76-830F-40210FC7441C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F84E67C-2EFE-4F61-8526-04E3F33A08B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5BC3CAAA-4BE7-4020-A168-C78271BC8A25} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-07] (Google LLC -> Google LLC)
Task: {5C176F84-5524-40C4-9E0D-57EF0063EE48} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {65BED7A6-22C8-41D9-9F27-E4FF119EB82A} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4089168 2022-02-08] (McAfee, LLC -> McAfee, LLC)
Task: {720C4089-FFFC-4B09-8FBA-7816117FD636} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
Task: {829CE1A7-5411-4452-A4D6-24CDF73C79A2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138680 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8355E3C8-A123-4F2F-A736-F291FFFA5765} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {8482C70E-D61F-452A-80DB-2845F10CBFFD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138680 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {8630A72C-499A-4294-890B-AD9FED31036D} - System32\Tasks\Microsoft\Windows\Conexant\AFA => C:\Program Files\CONEXANT\cAudioFilterAgent\SACpl.exe [1823232 2016-07-05] (Conexant Systems, Inc.) [Fichier non signé]
Task: {90BE76D8-593C-4CE9-AF73-41E6C0466E63} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C6FFE70-D3E1-4E69-9B35-031E4D82F338} - System32\Tasks\Microsoft\Windows\Conexant\SA2 => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {9EABB21B-2E68-4E93-B2D0-AE92A00F499E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9FD781EE-7FAA-4B99-8B16-65777765617A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1F77CC0-D51E-483F-B807-D8AA999973CC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2019-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BC7A5E97-0C78-4EF3-B868-5599F94D5974} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200344 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {C3DAC455-8126-4FDC-B67E-97EAC50C8CA5} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4557960 2022-02-07] (McAfee, LLC -> McAfee, LLC)
Task: {C3E0F268-BAEB-4BCA-9D1A-717638E57123} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [609592 2018-07-10] (ASUSTek Computer Inc. -> )
Task: {CA8BF664-B894-4BCA-AB2B-51587AD53698} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8338896 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDC7AFF1-4506-4ED7-BF3D-A9AECB4CB128} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2019-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {E40497AB-95F4-49B8-9180-D8058D61C59E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MpCmdRun.exe [979568 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E47D6AB8-FB71-40ED-AC06-62836A27100E} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [761976 2022-02-18] (McAfee, LLC -> McAfee, LLC)
Task: {E81A7C03-05FF-48AC-A060-39137A95A1D5} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2d93eeec-8920-4045-9fa0-90de0776d5e8}: [DhcpNameServer] 10.66.16.1
Tcpip\..\Interfaces\{3dc8d444-72d1-4929-bcea-349370049a65}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{6944EB97-DB0C-49AF-968E-B1E9312D0A1E}: [NameServer] 10.0.4.0 10.0.4.1
Tcpip\..\Interfaces\{7a987001-319f-4d46-8495-5a168e00f6ec}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{ed35c0ec-ff81-42ca-89d6-7c45dff3b0cd}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Eisenstein Philippe\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-05]
Edge Notifications: Default -> hxxps://fr-fr.wyylde.com; hxxps://www.coco.fr; hxxps://www.facebook.com; hxxps://www.wyylde.com; hxxps://wyylde.com
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 3bgbaxrz.default
FF ProfilePath: C:\Users\Eisenstein Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\3bgbaxrz.default [2020-10-05]
FF ProfilePath: C:\Users\Eisenstein Philippe\AppData\Roaming\Mozilla\Firefox\Profiles\buqdf87p.default-release [2022-04-04]
FF Notifications: Mozilla\Firefox\Profiles\buqdf87p.default-release -> hxxps://www.wyylde.com
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2022-02-22] (McAfee, LLC -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2022-02-22] (McAfee, LLC -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default [2022-04-04]
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E211FR885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Slides) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-14]
CHR Extension: (Docs) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-14]
CHR Extension: (Google Drive) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-14]
CHR Extension: (YouTube) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-14]
CHR Extension: (Sheets) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-14]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-04-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-04]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-04]
CHR Extension: (McAfee® Web Boost) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\klekeajafkkpokaofllcadenjdckhinm [2022-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-14]
CHR Extension: (Gmail) - C:\Users\Eisenstein Philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-14]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 0182741649172843mcinstcleanup; C:\ProgramData\McInstTemp0182741649172843\mcinst.exe [913112 2022-02-18] (McAfee, LLC -> McAfee, LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-02] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-03-27] (Dropbox, Inc -> Dropbox, Inc.)
S2 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [325456 2018-06-12] (ASUSTek Computer Inc. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\FileSyncHelper.exe [3382176 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [302416 2018-06-29] (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [218272 2022-03-21] (HP Inc. -> HP Inc.)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-11] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [972936 2022-04-02] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_2\McApExe.exe [816296 2022-02-18] (McAfee, LLC -> McAfee, LLC)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2018-07-16] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.1.104.0\\McCSPServiceHost.exe [3378048 2022-02-17] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1217800 2022-02-04] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1546144 2022-02-18] (McAfee, LLC -> McAfee, LLC)
R3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.045.0227.0004\OneDriveUpdaterService.exe [3861400 2022-03-24] (Microsoft Corporation -> Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4235968 2022-02-19] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 UIUService; %SystemRoot%\system32\UIUSrv.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [72224 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-11] (Malwarebytes Inc -> Malwarebytes)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [469528 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [344088 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83400 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [439320 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [911904 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [645656 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [111136 2022-02-10] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [107040 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [228888 2022-02-09] (McAfee, Inc. -> McAfee, LLC)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [439544 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-16] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-05 18:00 - 2022-04-05 18:01 - 000000000 ____D C:\FRST
2022-04-05 17:45 - 2022-04-05 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2022-04-05 17:34 - 2022-04-05 17:34 - 000000000 ____D C:\ProgramData\McInstTemp0182741649172843
2022-04-05 17:01 - 2022-04-05 17:01 - 000000676 _____ C:\RstHosts.txt
2022-04-05 17:00 - 2022-04-05 17:01 - 000353632 _____ C:\Users\Eisenstein Philippe\Downloads\rsthosts_2.0.exe
2022-04-04 18:54 - 2022-04-04 18:54 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\ZHP
2022-04-02 19:18 - 2022-04-02 20:18 - 1466552730 _____ C:\Users\Eisenstein Philippe\Downloads\Moonfall.2022.TRUEFRENCH.HDRip.XviD-Wawacity.blue.avi
2022-03-30 14:43 - 2022-03-30 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-03-27 19:52 - 2022-03-27 19:52 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-03-26 18:35 - 2022-03-26 18:41 - 727308802 _____ C:\Users\Eisenstein Philippe\Downloads\The.Adam.Project.2022.FRENCH.HDRip.XviD-Wawacity.blue.avi
2022-03-26 11:29 - 2022-03-26 11:29 - 000074329 _____ C:\Users\Eisenstein Philippe\Downloads\302541699367-3127835679-billet.pdf
2022-03-19 16:39 - 2022-03-19 16:46 - 1470069460 _____ C:\Users\Eisenstein Philippe\Downloads\Spider-Man.No.Way.Home.2021.TRUEFRENCH.BDRip.XviD-Wawacity.blue.avi
2022-03-17 16:58 - 2022-03-29 14:46 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\DropboxElectron
2022-03-12 19:36 - 2022-03-12 19:38 - 346836950 _____ C:\Users\Eisenstein Philippe\Downloads\ORELSAN.Montre.Jamais.Ca.a.Personne.S01E05.FRENCH.WEBRip.x264-Wawacity.one.mp4
2022-03-11 16:44 - 2022-03-11 16:44 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-11 16:44 - 2022-03-11 16:44 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-11 16:43 - 2022-03-11 16:43 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-11 16:43 - 2022-03-11 16:43 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-11 16:43 - 2022-03-11 16:43 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-11 16:21 - 2022-03-11 16:21 - 000000000 ___HD C:\$WinREAgent
2022-03-06 11:54 - 2022-03-06 11:55 - 383199089 _____ C:\Users\Eisenstein Philippe\Downloads\ORELSAN.Montre.Jamais.Ca.a.Personne.S01E04.FRENCH.WEBRip.x264-Wawacity.one.mp4
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-05 17:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-05 17:43 - 2021-04-20 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-05 17:34 - 2019-06-27 13:26 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-04-05 17:31 - 2021-04-20 18:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2022-04-05 17:11 - 2020-03-07 21:48 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-05 17:04 - 2021-04-20 17:58 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-05 17:04 - 2019-12-07 16:49 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2022-04-05 17:04 - 2019-12-07 16:49 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2022-04-05 17:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-05 16:59 - 2020-03-12 07:07 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2022-04-05 16:59 - 2020-03-07 15:06 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\Dropbox
2022-04-05 16:58 - 2019-06-27 14:27 - 000000000 ___RD C:\Users\Eisenstein Philippe\OneDrive
2022-04-05 16:56 - 2021-04-20 18:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-04-05 16:56 - 2021-04-20 17:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-05 16:56 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-04-05 16:56 - 2019-06-27 13:18 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2022-04-04 19:43 - 2020-03-07 21:54 - 000000000 ____D C:\ProgramData\Mozilla
2022-04-04 19:42 - 2020-03-07 21:54 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\LocalLow\Mozilla
2022-04-04 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-04-04 19:11 - 2020-08-05 17:52 - 000000135 _____ C:\Users\Eisenstein
2022-04-04 19:11 - 2020-08-05 17:47 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\ZHP
2022-04-04 19:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-04 19:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-04 18:52 - 2020-03-07 22:18 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Roaming\vlc
2022-04-04 17:33 - 2021-04-20 17:50 - 000000000 ____D C:\Users\Eisenstein Philippe
2022-04-02 09:45 - 2019-12-07 11:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2022-04-02 09:41 - 2020-03-08 18:13 - 000000000 ____D C:\Program Files\Microsoft Office
2022-04-02 09:23 - 2021-04-23 22:30 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d735fd495f199b
2022-04-02 09:23 - 2021-04-20 18:02 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-30 14:43 - 2020-03-07 15:06 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-03-28 15:34 - 2019-06-27 14:25 - 000000000 ____D C:\Users\Eisenstein Philippe\AppData\Local\D3DSCache
2022-03-28 15:16 - 2020-06-06 20:51 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-03-27 15:43 - 2021-06-11 22:05 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-03-27 15:43 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-24 20:15 - 2021-12-12 14:35 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3256021485-2611887468-3113279675-1001
2022-03-24 20:15 - 2021-04-20 18:02 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-03-24 20:15 - 2020-03-22 16:29 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-22 19:39 - 2021-05-10 19:17 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-03-21 19:30 - 2021-04-20 18:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-03-16 16:29 - 2018-12-07 09:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-11 23:27 - 2021-04-20 17:46 - 000439136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-11 23:27 - 2020-03-07 15:06 - 000001244 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2022-03-11 23:27 - 2020-03-07 15:06 - 000001240 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-11 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-11 23:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-11 18:34 - 2019-06-27 13:26 - 000000000 ____D C:\Program Files\Common Files\mcafee
2022-03-11 18:33 - 2021-04-20 18:02 - 000003354 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2022-03-11 18:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-11 16:50 - 2020-08-23 17:10 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 16:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-11 16:43 - 2021-04-20 17:47 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-11 16:20 - 2020-03-07 14:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-11 16:19 - 2021-04-20 18:02 - 000004202 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2022-03-11 16:19 - 2021-04-20 18:02 - 000003970 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2022-03-11 16:14 - 2020-03-07 14:59 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2021-02-14 14:55 - 2021-02-14 14:55 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2020-12-10 15:50 - 2020-12-10 15:50 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2021-01-13 22:56 - 2021-01-13 22:56 - 000759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2021-01-13 22:56 - 2021-01-13 22:56 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2021-01-13 22:57 - 2021-01-13 22:57 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051068 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051016 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000070644 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000067324 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000051272 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000073232 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8814ae_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000064048 _____ C:\WINDOWS\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-01-30 13:23 - 2018-09-04 20:39 - 000038012 _____ C:\WINDOWS\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
2020-08-12 15:23 - 2020-08-12 15:23 - 002813864 _____ (kernel-panik) C:\Users\Eisenstein Philippe\Downloads\kprm_2.8.exe
2022-04-05 17:00 - 2022-04-05 17:01 - 000353632 _____ C:\Users\Eisenstein Philippe\Downloads\rsthosts_2.0.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================