Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 01
Exécuté par willi (administrateur) sur LAPTOP-TDKR8QS7 (ASUSTeK COMPUTER INC. X751LAB) (05-11-2023 12:57:41)
Exécuté depuis C:\Users\willi\Downloads\FRST64.exe
Profils chargés: willi
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUS) C:\Program Files\WindowsApps\b9eced6f.splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe ->) (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.209.1008.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21640.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21640.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [374680 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1821180923-2873909499-3591856062-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2589712 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1821180923-2873909499-3591856062-1001\...\Run: [MicrosoftEdgeAutoLaunch_753C0EBA25FAA2D255B48BD3966D180B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891768 2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MX470 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDC2.DLL [30208 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX470 series: C:\WINDOWS\system32\CNCALC2.DLL [303104 2013-09-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX470 series: C:\WINDOWS\system32\CNMLMC2.DLL [391168 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.105\Installer\chrmstp.exe [2023-11-01] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION
Task: {9891C5E6-15F0-423A-8724-BBED7604D481} - \McAfee\McAfee Idle Detection Task -> Pas de fichier <==== ATTENTION
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION
Task: {B8D73B95-6BB1-4339-B760-DB7024195385} - \McAfee\DAD.Execute.Updates -> Pas de fichier <==== ATTENTION
Task: {C1EF45A1-44D2-48F3-862D-DCB5FA3AA96A} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {E50AFE50-2645-4A92-B367-CDFDB7C053B3} - \McAfee\McAfee Auto Maintenance Task Agent -> Pas de fichier <==== ATTENTION
Task: {03FDE9E6-5142-4148-B53E-048389DEAEAD} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [642448 2018-05-16] (ASUSTeK Computer Inc. -> )
Task: {16AB5C18-97A9-434E-A670-AF8AFA97FB45} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18392 2018-03-07] (ASUSTeK Computer Inc. -> AsusTek)
Task: {7F90678B-DD48-4A74-B091-80A0F05335B4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {2FBA8A64-6817-4F1F-AB46-5FF8977D1DDC} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {26674099-BE67-4C3A-9CD0-168B5DD0D2A3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5153176 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
Task: {ED070747-DB44-4710-ACC4-F4BFB0080451} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {D06AF290-0D07-496E-9C44-2304964AB050} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5329808 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {39D436AF-1993-4EFC-8BCE-3A7F75CD9BCB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2023-07-11] (Google Inc -> Google LLC)
Task: {5EE4A3B4-A029-4531-9809-8706C8AA5138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2023-07-11] (Google Inc -> Google LLC)
Task: {C628AAC6-667A-4543-A576-64036F3C869F} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {D3EF7169-11D7-437C-9E23-D0DC6FF68DAF} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {178F49D3-F10A-42A9-B9DE-486253002DB8} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {3B723F7D-25CB-43D0-A353-DAC3F25A7039} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {3878AC77-BA08-42A6-9673-30D4EB3C12DF} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1821180923-2873909499-3591856062-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {11FE167D-9A52-4A51-857E-433D65583B91} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FE7B4EA2-FB97-45A0-ACFA-1077805E91BD} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {88D1263A-C187-42FE-A6C6-8385897EFB70} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {295F9032-B74C-4BDC-94FB-685343EE793C} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a6a935a5-bd07-4a45-b561-372be3f6f402}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f52a1b2c-01a4-4a2a-9a54-53940d716081}: [DhcpNameServer] 10.66.8.1
Edge:
=======
Edge DefaultProfile: Profile 23
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-11]
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2023-06-26]
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23 [2023-11-05]
Edge Extension: (Google Docs hors connexion) - C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-25]
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9111960 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [806296 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2333592 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [839064 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-05-31] (Avast Software s.r.o. -> AVAST Software)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.209.1008.0002\FileSyncHelper.exe [3505696 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [285144 2018-04-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-02-16] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.209.1008.0002\OneDriveUpdaterService.exe [3842064 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240688 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [393904 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [952232 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [710128 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-01-31] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-01-31] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521128 2017-11-21] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108464 2017-11-21] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-01-31] (McAfee, Inc. -> McAfee LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498984 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-05 12:57 - 2023-11-05 13:00 - 000021878 _____ C:\Users\willi\Downloads\FRST.txt
2023-11-05 12:56 - 2023-11-05 12:59 - 000000000 ____D C:\FRST
2023-11-05 12:51 - 2023-11-05 12:51 - 002383872 _____ (Farbar) C:\Users\willi\Downloads\FRST64.exe
2023-11-04 18:27 - 2023-11-04 18:29 - 095389976 _____ (McAfee, LLC) C:\Users\willi\Downloads\McAfee_Malware_Cleaner.exe
2023-10-31 21:57 - 2023-10-31 21:56 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-10-29 18:08 - 2023-10-29 18:08 - 000007604 _____ C:\Users\willi\AppData\Local\Resmon.ResmonCfg
2023-10-25 13:48 - 2023-11-05 02:33 - 000003656 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-10-22 20:16 - 2023-10-22 20:31 - 001419460 _____ C:\WINDOWS\Minidump\102223-99515-01.dmp
2023-10-20 13:17 - 2023-10-20 13:49 - 000147860 _____ C:\Users\willi\OneDrive\Documents\lettre de demande de stage 4.pdf
2023-10-13 21:58 - 2023-10-13 21:58 - 000000000 ___HD C:\$WinREAgent
2023-10-12 21:31 - 2023-10-12 21:31 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 16:22 - 2023-10-12 16:22 - 000000000 ____D C:\Program Files\RUXIM
2023-10-06 11:39 - 2023-10-06 11:39 - 000000000 ____D C:\Users\willi\AppData\LocalLow\Temp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-05 12:37 - 2023-05-31 03:05 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-05 12:35 - 2023-05-31 02:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-05 12:10 - 2023-07-11 20:24 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-05 12:10 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-05 11:18 - 2022-11-20 02:04 - 000000000 ___RD C:\Users\willi\OneDrive
2023-11-05 11:15 - 2023-05-31 03:11 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-11-05 11:15 - 2022-11-20 02:00 - 000000000 __SHD C:\Users\willi\IntelGraphicsProfiles
2023-11-05 01:40 - 2018-04-12 00:38 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts_old
2023-11-04 16:06 - 2023-06-12 14:39 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-11-04 16:06 - 2023-06-04 03:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-11-04 16:06 - 2023-05-31 12:40 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1821180923-2873909499-3591856062-1001
2023-11-04 16:06 - 2023-05-31 03:53 - 000003616 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-04 16:06 - 2023-05-31 03:53 - 000003392 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-04 13:08 - 2023-05-31 03:05 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-04 13:08 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-04 12:54 - 2022-11-20 10:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-03 21:30 - 2023-05-31 03:34 - 000000000 ____D C:\Users\willi
2023-11-03 18:24 - 2023-05-31 02:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-02 18:16 - 2023-05-31 12:28 - 000000000 ____D C:\Users\willi\AppData\Local\Packages
2023-11-01 16:54 - 2023-06-04 03:07 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-11-01 16:51 - 2023-05-31 03:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-01 16:51 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ServiceState
2023-11-01 16:51 - 2022-11-20 10:20 - 000000288 _____ C:\pefdata.dat
2023-11-01 16:51 - 2022-11-20 09:54 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-31 22:14 - 2023-05-31 03:56 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-31 22:14 - 2023-05-31 03:13 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-31 22:14 - 2023-05-31 03:13 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-31 22:14 - 2023-05-31 03:03 - 000000000 ____D C:\WINDOWS\INF
2023-10-31 22:08 - 2023-05-31 19:34 - 000000000 ____D C:\ProgramData\Avast Software
2023-10-31 22:04 - 2023-05-31 02:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-31 22:00 - 2023-06-04 03:06 - 000952232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-31 22:00 - 2023-06-04 03:06 - 000393904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000710128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000561888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000319672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000297984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000275280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000105352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000080528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000039752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-31 21:57 - 2023-05-31 03:05 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-31 21:56 - 2023-06-04 03:06 - 000240688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-10-31 21:56 - 2023-06-04 03:06 - 000031528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-10-28 21:23 - 2023-06-12 14:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-26 16:34 - 2023-06-12 14:39 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-25 11:37 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-25 00:13 - 2023-06-04 03:06 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-10-24 22:19 - 2023-08-20 19:37 - 000000000 ____D C:\Program Files (x86)\Avast Software
2023-10-22 20:36 - 2023-07-19 02:02 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-22 20:16 - 2023-07-19 02:02 - 1030744427 _____ C:\WINDOWS\MEMORY.DMP
2023-10-20 13:48 - 2023-05-31 18:43 - 000000000 ____D C:\Users\willi\AppData\Roaming\NAPS2
2023-10-14 09:23 - 2023-05-31 03:05 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-14 09:10 - 2023-05-31 02:43 - 000260520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-14 09:01 - 2023-05-31 03:13 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-14 08:58 - 2023-05-31 03:13 - 000000000 ____D C:\WINDOWS\system32\fr
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\IME
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-14 08:54 - 2023-05-31 02:45 - 000000000 ____D C:\WINDOWS\servicing
2023-10-14 01:25 - 2023-05-31 03:06 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-14 01:24 - 2023-05-31 03:05 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-14 01:24 - 2023-05-31 03:05 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-13 23:25 - 2023-05-31 03:09 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 16:00 - 2023-05-31 13:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-12 23:05 - 2023-05-31 13:05 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2023-10-29 18:08 - 2023-10-29 18:08 - 000007604 _____ () C:\Users\willi\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par willi (administrateur) sur LAPTOP-TDKR8QS7 (ASUSTeK COMPUTER INC. X751LAB) (05-11-2023 12:57:41)
Exécuté depuis C:\Users\willi\Downloads\FRST64.exe
Profils chargés: willi
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUS) C:\Program Files\WindowsApps\b9eced6f.splendid_1.0.15.0_x64__qmba6cd70vzyy\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe ->) (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC) C:\Windows\System32\mfevtps.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\pef\CORE\PEFService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(sihost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee, LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (649690DD-9BE8-48E7-8019-88DCA877AF4E -> McAfee LLC) C:\Program Files\WindowsApps\5a894077.mcafeesecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.209.1008.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21640.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21640.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [374680 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1821180923-2873909499-3591856062-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2589712 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1821180923-2873909499-3591856062-1001\...\Run: [MicrosoftEdgeAutoLaunch_753C0EBA25FAA2D255B48BD3966D180B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891768 2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MX470 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDC2.DLL [30208 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX470 series: C:\WINDOWS\system32\CNCALC2.DLL [303104 2013-09-25] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX470 series: C:\WINDOWS\system32\CNMLMC2.DLL [391168 2013-09-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.105\Installer\chrmstp.exe [2023-11-01] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Pas de fichier <==== ATTENTION
Task: {9891C5E6-15F0-423A-8724-BBED7604D481} - \McAfee\McAfee Idle Detection Task -> Pas de fichier <==== ATTENTION
Task: {B6E67297-4E2A-4BAB-9C4A-63B62EDBF591} - \Microsoft\Windows\Management\Provisioning\PostResetBoot -> Pas de fichier <==== ATTENTION
Task: {B8D73B95-6BB1-4339-B760-DB7024195385} - \McAfee\DAD.Execute.Updates -> Pas de fichier <==== ATTENTION
Task: {C1EF45A1-44D2-48F3-862D-DCB5FA3AA96A} - \Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display -> Pas de fichier <==== ATTENTION
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - \Microsoft\Windows\Speech\HeadsetButtonPress -> Pas de fichier <==== ATTENTION
Task: {C48D50E5-71A9-48D8-B7C1-3DA9AECBDEC3} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {E50AFE50-2645-4A92-B367-CDFDB7C053B3} - \McAfee\McAfee Auto Maintenance Task Agent -> Pas de fichier <==== ATTENTION
Task: {03FDE9E6-5142-4148-B53E-048389DEAEAD} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [642448 2018-05-16] (ASUSTeK Computer Inc. -> )
Task: {16AB5C18-97A9-434E-A670-AF8AFA97FB45} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18392 2018-03-07] (ASUSTeK Computer Inc. -> AsusTek)
Task: {7F90678B-DD48-4A74-B091-80A0F05335B4} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {2FBA8A64-6817-4F1F-AB46-5FF8977D1DDC} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {26674099-BE67-4C3A-9CD0-168B5DD0D2A3} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5153176 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
Task: {ED070747-DB44-4710-ACC4-F4BFB0080451} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {D06AF290-0D07-496E-9C44-2304964AB050} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5329808 2023-10-13] (Microsoft Windows -> Microsoft Corporation)
Task: {39D436AF-1993-4EFC-8BCE-3A7F75CD9BCB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2023-07-11] (Google Inc -> Google LLC)
Task: {5EE4A3B4-A029-4531-9809-8706C8AA5138} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2023-07-11] (Google Inc -> Google LLC)
Task: {C628AAC6-667A-4543-A576-64036F3C869F} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {D3EF7169-11D7-437C-9E23-D0DC6FF68DAF} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [37909112 2018-01-03] (McAfee, Inc. -> McAfee, Inc.)
Task: {178F49D3-F10A-42A9-B9DE-486253002DB8} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [745296 2017-10-05] (McAfee, Inc. -> McAfee, Inc.)
Task: {3B723F7D-25CB-43D0-A353-DAC3F25A7039} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {3878AC77-BA08-42A6-9673-30D4EB3C12DF} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1821180923-2873909499-3591856062-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {11FE167D-9A52-4A51-857E-433D65583B91} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FE7B4EA2-FB97-45A0-ACFA-1077805E91BD} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {88D1263A-C187-42FE-A6C6-8385897EFB70} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1488832 2017-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {295F9032-B74C-4BDC-94FB-685343EE793C} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a6a935a5-bd07-4a45-b561-372be3f6f402}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f52a1b2c-01a4-4a2a-9a54-53940d716081}: [DhcpNameServer] 10.66.8.1
Edge:
=======
Edge DefaultProfile: Profile 23
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-11]
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2023-06-26]
Edge Profile: C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23 [2023-11-05]
Edge Extension: (Google Docs hors connexion) - C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\willi\AppData\Local\Microsoft\Edge\User Data\Profile 23\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-25]
FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2018-01-25] (McAfee, Inc. -> )
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9111960 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [806296 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2333592 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [839064 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-05-31] (Avast Software s.r.o. -> AVAST Software)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.209.1008.0002\FileSyncHelper.exe [3505696 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [285144 2018-04-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_8\McApExe.exe [730888 2018-02-16] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [455584 2017-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.7.371.0\McCSPServiceHost.exe [2140888 2017-12-14] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [359888 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [512976 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [475600 2018-01-26] (McAfee, Inc. -> McAfee LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-20] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.209.1008.0002\OneDriveUpdaterService.exe [3842064 2023-10-26] (Microsoft Corporation -> Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1061528 2018-03-06] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240688 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [393904 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [952232 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [710128 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77216 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [496544 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [357792 2018-01-31] (McAfee, Inc. -> McAfee LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83952 2018-01-31] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [528288 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [948128 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [521128 2017-11-21] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108464 2017-11-21] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [115104 2018-01-31] (McAfee, Inc. -> McAfee LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252832 2018-01-31] (McAfee, Inc. -> McAfee LLC)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2023-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [498984 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-05 12:57 - 2023-11-05 13:00 - 000021878 _____ C:\Users\willi\Downloads\FRST.txt
2023-11-05 12:56 - 2023-11-05 12:59 - 000000000 ____D C:\FRST
2023-11-05 12:51 - 2023-11-05 12:51 - 002383872 _____ (Farbar) C:\Users\willi\Downloads\FRST64.exe
2023-11-04 18:27 - 2023-11-04 18:29 - 095389976 _____ (McAfee, LLC) C:\Users\willi\Downloads\McAfee_Malware_Cleaner.exe
2023-10-31 21:57 - 2023-10-31 21:56 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-10-29 18:08 - 2023-10-29 18:08 - 000007604 _____ C:\Users\willi\AppData\Local\Resmon.ResmonCfg
2023-10-25 13:48 - 2023-11-05 02:33 - 000003656 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-10-22 20:16 - 2023-10-22 20:31 - 001419460 _____ C:\WINDOWS\Minidump\102223-99515-01.dmp
2023-10-20 13:17 - 2023-10-20 13:49 - 000147860 _____ C:\Users\willi\OneDrive\Documents\lettre de demande de stage 4.pdf
2023-10-13 21:58 - 2023-10-13 21:58 - 000000000 ___HD C:\$WinREAgent
2023-10-12 21:31 - 2023-10-12 21:31 - 000000000 ____D C:\ProgramData\PLUG
2023-10-12 16:22 - 2023-10-12 16:22 - 000000000 ____D C:\Program Files\RUXIM
2023-10-06 11:39 - 2023-10-06 11:39 - 000000000 ____D C:\Users\willi\AppData\LocalLow\Temp
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-05 12:37 - 2023-05-31 03:05 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-05 12:35 - 2023-05-31 02:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-05 12:10 - 2023-07-11 20:24 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-05 12:10 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-05 11:18 - 2022-11-20 02:04 - 000000000 ___RD C:\Users\willi\OneDrive
2023-11-05 11:15 - 2023-05-31 03:11 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-11-05 11:15 - 2022-11-20 02:00 - 000000000 __SHD C:\Users\willi\IntelGraphicsProfiles
2023-11-05 01:40 - 2018-04-12 00:38 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts_old
2023-11-04 16:06 - 2023-06-12 14:39 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-11-04 16:06 - 2023-06-04 03:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-11-04 16:06 - 2023-05-31 12:40 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1821180923-2873909499-3591856062-1001
2023-11-04 16:06 - 2023-05-31 03:53 - 000003616 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-04 16:06 - 2023-05-31 03:53 - 000003392 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-04 13:08 - 2023-05-31 03:05 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-04 13:08 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-04 12:54 - 2022-11-20 10:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-03 21:30 - 2023-05-31 03:34 - 000000000 ____D C:\Users\willi
2023-11-03 18:24 - 2023-05-31 02:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-02 18:16 - 2023-05-31 12:28 - 000000000 ____D C:\Users\willi\AppData\Local\Packages
2023-11-01 16:54 - 2023-06-04 03:07 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-11-01 16:51 - 2023-05-31 03:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-01 16:51 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ServiceState
2023-11-01 16:51 - 2022-11-20 10:20 - 000000288 _____ C:\pefdata.dat
2023-11-01 16:51 - 2022-11-20 09:54 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-31 22:14 - 2023-05-31 03:56 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-31 22:14 - 2023-05-31 03:13 - 000794314 _____ C:\WINDOWS\system32\perfh00C.dat
2023-10-31 22:14 - 2023-05-31 03:13 - 000150428 _____ C:\WINDOWS\system32\perfc00C.dat
2023-10-31 22:14 - 2023-05-31 03:03 - 000000000 ____D C:\WINDOWS\INF
2023-10-31 22:08 - 2023-05-31 19:34 - 000000000 ____D C:\ProgramData\Avast Software
2023-10-31 22:04 - 2023-05-31 02:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-10-31 22:00 - 2023-06-04 03:06 - 000952232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-10-31 22:00 - 2023-06-04 03:06 - 000393904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000710128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000561888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000319672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000297984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000275280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000105352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000080528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-10-31 21:57 - 2023-06-04 03:06 - 000039752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-10-31 21:57 - 2023-05-31 03:05 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-31 21:56 - 2023-06-04 03:06 - 000240688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-10-31 21:56 - 2023-06-04 03:06 - 000031528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-10-28 21:23 - 2023-06-12 14:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-26 16:34 - 2023-06-12 14:39 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-25 11:37 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-25 00:13 - 2023-06-04 03:06 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-10-24 22:19 - 2023-08-20 19:37 - 000000000 ____D C:\Program Files (x86)\Avast Software
2023-10-22 20:36 - 2023-07-19 02:02 - 000000000 ____D C:\WINDOWS\Minidump
2023-10-22 20:16 - 2023-07-19 02:02 - 1030744427 _____ C:\WINDOWS\MEMORY.DMP
2023-10-20 13:48 - 2023-05-31 18:43 - 000000000 ____D C:\Users\willi\AppData\Roaming\NAPS2
2023-10-14 09:23 - 2023-05-31 03:05 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-14 09:10 - 2023-05-31 02:43 - 000260520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-14 09:01 - 2023-05-31 03:13 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-14 09:01 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-14 08:59 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-14 08:58 - 2023-05-31 03:13 - 000000000 ____D C:\WINDOWS\system32\fr
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-14 08:58 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\IME
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-14 08:54 - 2023-05-31 03:05 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-14 08:54 - 2023-05-31 02:45 - 000000000 ____D C:\WINDOWS\servicing
2023-10-14 01:25 - 2023-05-31 03:06 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-14 01:24 - 2023-05-31 03:05 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-14 01:24 - 2023-05-31 03:05 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-13 23:25 - 2023-05-31 03:09 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-13 16:00 - 2023-05-31 13:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-12 23:05 - 2023-05-31 13:05 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers ========
2023-10-29 18:08 - 2023-10-29 18:08 - 000007604 _____ () C:\Users\willi\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================