Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Exécuté par emilo (administrateur) sur EMILIE (ASUSTeK COMPUTER INC. ASUS AIO M3400WYA_M3400WYA) (04-09-2024 15:55:19)
Exécuté depuis C:\Users\emilo\Downloads\FRST64.exe
Profils chargés: emilo
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4037 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOSD.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\PremierOpinion\pmservice.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <2>
(C:\Program Files (x86)\PremierOpinion\pmservice.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn.exe
(C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ASUS Business Utility\cceventapp.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsHelper.exe
(C:\Program Files\SaferWeb\rsDNSSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\SaferWeb\ui\SaferWeb.exe <5>
(C:\Program Files\WindowsApps\MSTeams_24193.1805.3040.8975_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.54\msedgewebview2.exe <6>
(C:\Windows\SysWOW64\cmd.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn32.exe
(C:\Windows\SysWOW64\cmd.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn64.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atieclxx.exe
(explorer.exe ->) (Cleversort FZ-LLC -> ) C:\Users\emilo\AppData\Local\Programs\Taskbarify\Taskbarify.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <77>
(explorer.exe ->) (Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2407.18002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe <10>
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24193.1805.3040.8975_x64__8wekyb3d8bbwe\ms-teams.exe
(Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe <5>
(RoyalRapidity -> ) [Fichier non signé] C:\Program Files (x86)\EstimateSpeedUp\EstimateSpeedUp.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\IgoAudioService_x64.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.161.0811.0001\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2>
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsWSC.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSResolver.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSSvc.exe
(services.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmservice.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2434.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe <2>
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files (x86)\McAfee Security Scan\4.1.583\McUpdaterModule.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2021-12-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [EstimateSpeedUp] => C:\Program Files (x86)\EstimateSpeedUp\EstimateSpeedUp.exe [6536024 2023-07-20] (RoyalRapidity -> ) [Fichier non signé]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [Taskbarify] => C:\Users\emilo\AppData\Local\Programs\Taskbarify\Taskbarify.exe [911344 2023-02-03] (Cleversort FZ-LLC -> ) <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9255128 2023-07-26] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45120304 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [MicrosoftEdgeAutoLaunch_B1D8EA8D656D5C2D119570A0C5646F02] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleanerBrowserAutoLaunch_F04FEA24394D94D648745376C753C6C3] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleanerBrowserAutoLaunch_B41247599006FAFC5EFB28723C4A27BF] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\127.0.26097.121\Installer\chrmstp.exe [2024-08-27] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.114\Installer\chrmstp.exe [2024-09-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2024-07-14]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe (McAfee, LLC -> McAfee, LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C27ECAD3-6775-428D-9DA7-0B2445EAD040} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {72928467-D0D4-4CBF-AA30-37803253FFB0} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusHotkey.exe [325608 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2FACE329-F1FC-448D-8B60-B82C9101DB68} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusUpdateChecker.exe [793552 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2618F17A-3512-489E-B0F2-EB1C7AA4441C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {FF56DC29-6AE2-4B8C-A998-EECDC5BE50FA} - System32\Tasks\AviraBrowserProtectS-1-5-21-2340186176-179000584-2465304235-1001 => C:\Program Files (x86)\Avira\Browser\Application\AviraBrowserProtect.exe --runonce (Pas de fichier)
Task: {008CED36-E302-4F35-816F-ACC3ECC7C980} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {38BE960F-201B-4634-B837-CD795433124F} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {20BE9CCF-1495-475C-939F-3D43A6CDF7D4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {8B23C45B-1566-4168-A4BC-61AB1BF4F971} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5075248 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2ab2191c-afe1-41fc-b1ea-e5f91def59eb" --version "6.27.11214" --silent
Task: {F31FC6C4-8599-4EE0-AD41-C7A2BCD219FB} - System32\Tasks\CCleanerSkipUAC - emilo => C:\Program Files\CCleaner\CCleaner.exe [39072560 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {059F9345-3692-4747-A102-1F4B58D45B96} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {37EAFB15-ECEA-485C-89DD-50A404EAC5FD} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {3E45FE4A-EB15-460B-ACFC-5BC5DEB4CEC7} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{46A40E83-B09E-4719-AA04-DF9426307E3C} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {84EE7D19-EA89-4655-A4E5-5DDE0656B124} - System32\Tasks\iGoAudioTask => C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe [703360 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {F9065E8B-716D-4B5C-8256-8A63FC65FA15} - System32\Tasks\iGoAudioTaskSession => C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe [703360 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {9DA6A012-E519-4D05-85E1-C168C0851D55} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FF9B735E-5129-429F-984D-439F6324D075} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FBEA529A-C869-49B1-B7F8-EB0B3657C7BF} - System32\Tasks\McUpdaterModuleTask => C:\Program Files (x86)\McAfee Security Scan\4.1.583\McUpdaterModule.exe [2472000 2024-06-21] (McAfee, LLC -> McAfee, LLC)
Task: {FDE09929-AE14-4FD0-AD93-BB7A61D727DD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67892B3-0FC3-4E6A-A67B-9FE6F3A66A6C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {4866E20B-827E-4A64-92DB-A1F9B3D2D709} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30A69BE-C719-40BC-AA84-6556B2A75511} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5C98148-E432-4813-82D9-9BE22FFC64E9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [182240 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {6320A174-9FC2-4AF6-94C9-4B05B8A01F8A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209192 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {B04A343E-5C3A-493D-8E51-DD9ABF75CEA0} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2340186176-179000584-2465304235-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209192 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA81BEAF-E43A-4B30-8347-1D29EB1869C0} - System32\Tasks\Opera scheduled assistant Autoupdate 1713947394 => C:\Users\emilo\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\emilo\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {69DB8E4E-0F9C-4AAE-B2E1-E7981ABC78D0} - System32\Tasks\Opera scheduled Autoupdate 1690381736 => C:\Users\emilo\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (Pas de fichier)
Task: {7A398447-438D-4048-9DA9-91246DAB2830} - System32\Tasks\SecurityScannerScheduler => C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe [1249168 2024-06-21] (McAfee, LLC -> McAfee, LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b7e24ad0-079a-499a-928e-3806158de99e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-04]
Edge HomePage: Default -> hxxps://?
Edge Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
Edge Extension: (Edge relevant text changes) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Capital Koala) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\onkjpagmapeeilmofilpkcofneichjem [2023-07-19]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default [2024-09-04]
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Capital Koala) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpclfjlnaeaejebnjdeadlafkmkldgl [2023-07-19]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-08-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-02-17]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-02-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-02]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-08-28]
CHR DefaultSearchURL: Profile 2 -> hxxps://search.brave.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> search.brave.com
CHR DefaultSuggestURL: Profile 2 -> hxxps://search.brave.com/api/suggest?q={searchTerms}
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-06-05]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-04-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-04-22]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-04]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2340186176-179000584-2465304235-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe [1176016 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSBusinessUtility; C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe [3792248 2024-04-15] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe [571880 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe [1381728 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe [650704 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [894312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [Fichier non signé]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\127.0.26097.121\elevation_service.exe [1651840 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1086256 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995704 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2023-07-26] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe [2295320 2022-09-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.161.0811.0001\FileSyncHelper.exe [3522976 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 IgoAudioService; C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\IgoAudioService_x64.exe [35000 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [937296 2024-08-25] (McAfee, LLC -> McAfee, LLC)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\4.1.583\McCHSvc.exe [331696 2024-06-21] (McAfee, LLC -> McAfee, LLC)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.161.0811.0001\OneDriveUpdaterService.exe [3863568 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 PremierOpinion; C:\Program Files (x86)\PremierOpinion\pmservice.exe [4358408 2023-04-17] (VOICEFIVE, INC. -> VoiceFive, Inc.) <==== ATTENTION
R2 rsClientSvc; C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe [660480 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSClientSvc; C:\Program Files\SaferWeb\rsDNSClientSvc.exe [743040 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSResolver; C:\Program Files\SaferWeb\rsDNSResolver.exe [10939008 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSSvc; C:\Program Files\SaferWeb\rsDNSSvc.exe [335488 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsEDRSvc; C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe [162440 2024-05-12] (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.)
R2 rsEngineSvc; C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe [294032 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsSyncSvc; C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe [584240 2023-05-22] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsVPNClientSvc; C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe [672400 2024-08-14] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsVPNSvc; C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe [231048 2024-08-14] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsWSC; C:\Program Files\ReasonLabs\EPP\rsWSC.exe [208552 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27856 2023-07-26] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 McAWFwk; "C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [25016 2021-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\amdkmdag.sys [99609456 2024-01-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2023-07-26] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-02-11] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-02-11] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\Windows\System32\drivers\fse.sys [218608 2024-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\Windows\system32\DRIVERS\mtkbtfilterx.sys [285936 2022-05-19] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1403112 2022-05-18] (MEDIATEK INC. -> MediaTek Inc.)
R1 rsCamFilter020502; C:\Windows\System32\drivers\rsCamFilter020502.sys [48944 2023-07-26] (Reason CyberSecurity Inc. -> Reason Software Company)
S3 rsDwf; C:\Windows\system32\DRIVERS\rsDwf.sys [54144 2023-07-26] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
S0 rsElam; C:\Windows\System32\drivers\rsElam.sys [19944 2024-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Reason CyberSecurity Inc.)
R1 rsKernelEngine; C:\Windows\System32\DRIVERS\rsKernelEngine.sys [49456 2024-08-26] (Reason CyberSecurity Inc. -> Windows (R) Win 7 DDK provider)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [51192 2024-09-04] (OpenVPN Inc. -> The OpenVPN Project)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-15] (Microsoft Windows -> )
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [22080 2024-08-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [602504 2024-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\WPS\1.22.200.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-04 15:55 - 2024-09-04 15:55 - 000039304 _____ C:\Users\emilo\Downloads\FRST.txt
2024-09-04 15:55 - 2024-09-04 15:55 - 000000000 ____D C:\FRST
2024-09-04 15:54 - 2024-09-04 15:54 - 002397184 _____ (Farbar) C:\Users\emilo\Downloads\FRST64.exe
2024-09-04 15:50 - 2024-09-04 15:51 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (3).exe
2024-09-04 15:50 - 2024-09-04 15:50 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (2).exe
2024-09-04 15:42 - 2024-09-04 15:42 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (1).exe
2024-09-04 15:37 - 2024-09-04 15:37 - 000771570 _____ C:\Windows\system32\perfh00C.dat
2024-09-04 15:37 - 2024-09-04 15:37 - 000148698 _____ C:\Windows\system32\perfc00C.dat
2024-09-04 15:31 - 2024-09-04 15:31 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST.exe
2024-09-04 15:11 - 2024-09-04 15:11 - 001911732 _____ C:\Users\emilo\Downloads\lightbox princesses disney.studio3
2024-09-04 15:11 - 2024-09-04 15:11 - 001911732 _____ C:\Users\emilo\Downloads\lightbox princesses disney (1).studio3
2024-09-04 15:09 - 2024-09-04 15:09 - 000014772 _____ C:\Users\emilo\Downloads\Elsa2.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000014684 _____ C:\Users\emilo\Downloads\Elsa5.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000011044 _____ C:\Users\emilo\Downloads\Elsa4.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000009231 _____ C:\Users\emilo\Downloads\Elsa3.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000009023 _____ C:\Users\emilo\Downloads\Elsa6.svg
2024-09-04 15:08 - 2024-09-04 15:08 - 000397397 _____ C:\Users\emilo\Downloads\Nuit étoilée 1.svg
2024-09-04 15:08 - 2024-09-04 15:08 - 000038274 _____ C:\Users\emilo\Downloads\Elsa1.svg
2024-09-04 15:07 - 2024-09-04 15:07 - 000000574 _____ C:\Users\emilo\Downloads\Z.svg
2024-09-04 08:53 - 2024-09-04 08:53 - 007195168 _____ (EnigmaSoft Limited) C:\Users\emilo\Downloads\SpyHunter-Installer.exe
2024-09-04 08:49 - 2024-09-04 08:49 - 000051192 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2024-08-29 12:52 - 2024-08-29 12:52 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-26 14:49 - 2024-08-26 14:48 - 000049456 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\rsKernelEngine.sys
2024-08-21 12:58 - 2024-08-21 13:00 - 000000688 _____ C:\Users\emilo\Downloads\LanternPumpkinCat.zip
2024-08-21 12:57 - 2024-08-21 13:00 - 000000000 ____D C:\Users\emilo\OneDrive\Bureau\projets cricut
2024-08-21 12:57 - 2024-08-21 12:57 - 000000774 _____ C:\Users\emilo\Downloads\LanternWith3Bats.zip
2024-08-14 18:25 - 2024-08-14 18:25 - 000065894 _____ C:\Users\emilo\Downloads\ariel-amis.svg
2024-08-14 18:22 - 2024-08-14 18:22 - 000044751 _____ C:\Users\emilo\Downloads\ariel-bleu.svg
2024-08-14 18:22 - 2024-08-14 18:22 - 000013299 _____ C:\Users\emilo\Downloads\ariel-rocher-couleur (2).svg
2024-08-14 18:21 - 2024-08-14 18:21 - 000030573 _____ C:\Users\emilo\Downloads\ariel-polochon.svg
2024-08-14 18:21 - 2024-08-14 18:21 - 000013299 _____ C:\Users\emilo\Downloads\ariel-rocher-couleur (1).svg
2024-08-14 18:19 - 2024-08-14 18:19 - 000028296 _____ C:\Users\emilo\Downloads\raiponce-ercle.svg
2024-08-14 11:11 - 2024-08-14 11:11 - 000026169 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-14 11:10 - 2024-08-14 11:10 - 000026169 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-08-14 11:06 - 2024-08-14 11:09 - 000000000 ___HD C:\$WinREAgent
2024-08-14 10:50 - 2024-08-14 10:50 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (Preview).lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-04 15:51 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-04 15:41 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-09-04 15:40 - 2023-07-19 10:49 - 000000000 ___RD C:\Users\emilo\OneDrive
2024-09-04 15:40 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-04 15:37 - 2023-02-11 01:07 - 001713458 _____ C:\Windows\system32\PerfStringBackup.INI
2024-09-04 15:37 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-09-04 15:32 - 2023-07-26 16:29 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
2024-09-04 15:32 - 2023-07-19 10:33 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-09-04 15:31 - 2023-07-26 16:31 - 000000000 ____D C:\Users\emilo\AppData\Roaming\SaferWeb
2024-09-04 15:31 - 2023-07-26 16:31 - 000000000 ____D C:\ProgramData\SaferWebService
2024-09-04 15:31 - 2023-07-26 16:28 - 000000000 ____D C:\Program Files\CCleaner
2024-09-04 15:31 - 2023-02-11 01:13 - 000000000 ____D C:\ProgramData\McAfee
2024-09-04 15:31 - 2022-06-03 12:19 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-09-04 15:31 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-09-04 15:30 - 2023-09-20 14:28 - 000000000 ____D C:\Users\emilo\AppData\Roaming\Cricut Design Space
2024-09-04 15:30 - 2023-02-11 01:13 - 000000000 ____D C:\Program Files\McAfee
2024-09-04 15:30 - 2023-02-11 01:10 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2024-09-04 15:30 - 2023-02-11 01:07 - 000003312 _____ C:\Windows\system32\Tasks\iGoAudioTask
2024-09-04 15:30 - 2022-06-03 12:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-09-04 15:30 - 2022-06-03 12:19 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-04 15:30 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2024-09-04 15:29 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-09-04 15:28 - 2023-08-17 22:34 - 000000000 ____D C:\Users\emilo\AppData\Local\CrashDumps
2024-09-04 15:27 - 2023-07-28 04:08 - 000000000 ____D C:\Users\emilo\AppData\Roaming\McAfee
2024-09-04 15:27 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\Packages
2024-09-04 15:27 - 2022-06-03 12:23 - 000000000 ____D C:\ProgramData\Packages
2024-09-04 15:11 - 2023-07-19 10:49 - 000000000 ____D C:\Users\emilo\AppData\Roaming\Microsoft\Word
2024-09-04 15:10 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\D3DSCache
2024-09-04 09:46 - 2023-07-26 16:28 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-09-04 09:46 - 2023-07-22 12:14 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-09-04 09:23 - 2023-09-20 14:28 - 000002497 _____ C:\Users\emilo\OneDrive\Bureau\Cricut Design Space.lnk
2024-09-04 08:50 - 2024-05-31 18:27 - 000000000 ____D C:\Users\emilo\AppData\Local\babl-0.1
2024-09-04 08:44 - 2022-06-03 12:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-03 17:03 - 2023-07-25 18:54 - 000013336 _____ C:\Windows\BRRBCOM.INI
2024-09-02 18:20 - 2023-07-26 15:46 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-09-02 18:20 - 2023-07-26 15:46 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-02 18:09 - 2023-02-11 01:08 - 000000000 ____D C:\Program Files\ASUS
2024-09-02 18:07 - 2023-07-26 16:28 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-09-02 18:07 - 2023-07-26 16:28 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-09-01 14:35 - 2024-05-15 15:52 - 000000000 ____D C:\Users\emilo\OneDrive\Bureau\images cricut
2024-08-31 06:13 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\ASUS
2024-08-29 12:51 - 2022-06-03 12:23 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-27 17:54 - 2023-07-19 11:12 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-08-27 17:54 - 2023-07-19 11:12 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-27 17:54 - 2023-07-19 10:49 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2340186176-179000584-2465304235-1001
2024-08-27 13:24 - 2023-11-26 02:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2024-08-16 19:14 - 2023-08-17 22:35 - 000004122 _____ C:\Windows\system32\Tasks\ASUS Update Checker 2.0
2024-08-16 19:14 - 2023-02-11 01:08 - 000003756 _____ C:\Windows\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-08-15 04:50 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-15 04:45 - 2022-06-03 12:20 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-08-15 04:34 - 2022-06-03 12:19 - 000475112 _____ C:\Windows\system32\FNTCACHE.DAT
2024-08-15 04:33 - 2023-10-12 00:30 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\WUModels
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemApps
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Dism
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\schemas
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-08-14 11:17 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-08-14 11:16 - 2023-07-18 20:59 - 000000000 ____D C:\Windows\system32\MRT
2024-08-14 11:14 - 2023-07-18 20:59 - 197093640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-08-14 11:14 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2024-08-14 11:14 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2024-08-14 10:42 - 2024-05-01 11:17 - 000004242 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1690381736
==================== Fichiers à la racine de certains dossiers ========
2024-05-31 18:29 - 2024-05-31 18:29 - 000001836 _____ () C:\Users\emilo\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par emilo (administrateur) sur EMILIE (ASUSTeK COMPUTER INC. ASUS AIO M3400WYA_M3400WYA) (04-09-2024 15:55:19)
Exécuté depuis C:\Users\emilo\Downloads\FRST64.exe
Profils chargés: emilo
Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.4037 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOSD.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\PremierOpinion\pmservice.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <2>
(C:\Program Files (x86)\PremierOpinion\pmservice.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn.exe
(C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ASUS Business Utility\cceventapp.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsHelper.exe
(C:\Program Files\SaferWeb\rsDNSSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\SaferWeb\ui\SaferWeb.exe <5>
(C:\Program Files\WindowsApps\MSTeams_24193.1805.3040.8975_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.54\msedgewebview2.exe <6>
(C:\Windows\SysWOW64\cmd.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn32.exe
(C:\Windows\SysWOW64\cmd.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmropn64.exe
(cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atieclxx.exe
(explorer.exe ->) (Cleversort FZ-LLC -> ) C:\Users\emilo\AppData\Local\Programs\Taskbarify\Taskbarify.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <77>
(explorer.exe ->) (Lavasoft Software Canada Inc. -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2407.18002.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe <10>
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24193.1805.3040.8975_x64__8wekyb3d8bbwe\ms-teams.exe
(Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe <5>
(RoyalRapidity -> ) [Fichier non signé] C:\Program Files (x86)\EstimateSpeedUp\EstimateSpeedUp.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\IgoAudioService_x64.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe
(services.exe ->) (Lavasoft Software Canada Inc. -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.161.0811.0001\FileSyncHelper.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe <2>
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\EPP\rsWSC.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSResolver.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\SaferWeb\rsDNSSvc.exe
(services.exe ->) (VOICEFIVE, INC. -> VoiceFive, Inc.) C:\Program Files (x86)\PremierOpinion\pmservice.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2434.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.) C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe <2>
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files (x86)\McAfee Security Scan\4.1.583\McUpdaterModule.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25992.9000.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2402.27001-0\SecurityHealthHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_630dffb5316e4d50\RtkAudUService64.exe [3408512 2021-12-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [EstimateSpeedUp] => C:\Program Files (x86)\EstimateSpeedUp\EstimateSpeedUp.exe [6536024 2023-07-20] (RoyalRapidity -> ) [Fichier non signé]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919200 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [Taskbarify] => C:\Users\emilo\AppData\Local\Programs\Taskbarify\Taskbarify.exe [911344 2023-02-03] (Cleversort FZ-LLC -> ) <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9255128 2023-07-26] (Lavasoft Software Canada Inc. -> Lavasoft) <==== ATTENTION
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45120304 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [MicrosoftEdgeAutoLaunch_B1D8EA8D656D5C2D119570A0C5646F02] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleanerBrowserAutoLaunch_F04FEA24394D94D648745376C753C6C3] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [CCleanerBrowserAutoLaunch_B41247599006FAFC5EFB28723C4A27BF] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKU\S-1-5-21-2340186176-179000584-2465304235-1001\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\127.0.26097.121\Installer\chrmstp.exe [2024-08-27] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.114\Installer\chrmstp.exe [2024-09-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2024-07-14]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe (McAfee, LLC -> McAfee, LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {C27ECAD3-6775-428D-9DA7-0B2445EAD040} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {72928467-D0D4-4CBF-AA30-37803253FFB0} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusHotkey.exe [325608 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2FACE329-F1FC-448D-8B60-B82C9101DB68} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusUpdateChecker.exe [793552 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2618F17A-3512-489E-B0F2-EB1C7AA4441C} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {FF56DC29-6AE2-4B8C-A998-EECDC5BE50FA} - System32\Tasks\AviraBrowserProtectS-1-5-21-2340186176-179000584-2465304235-1001 => C:\Program Files (x86)\Avira\Browser\Application\AviraBrowserProtect.exe --runonce (Pas de fichier)
Task: {008CED36-E302-4F35-816F-ACC3ECC7C980} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {38BE960F-201B-4634-B837-CD795433124F} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2977264 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {20BE9CCF-1495-475C-939F-3D43A6CDF7D4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {8B23C45B-1566-4168-A4BC-61AB1BF4F971} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5075248 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "2ab2191c-afe1-41fc-b1ea-e5f91def59eb" --version "6.27.11214" --silent
Task: {F31FC6C4-8599-4EE0-AD41-C7A2BCD219FB} - System32\Tasks\CCleanerSkipUAC - emilo => C:\Program Files\CCleaner\CCleaner.exe [39072560 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {059F9345-3692-4747-A102-1F4B58D45B96} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {37EAFB15-ECEA-485C-89DD-50A404EAC5FD} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {3E45FE4A-EB15-460B-ACFC-5BC5DEB4CEC7} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{46A40E83-B09E-4719-AA04-DF9426307E3C} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {84EE7D19-EA89-4655-A4E5-5DDE0656B124} - System32\Tasks\iGoAudioTask => C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe [703360 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {F9065E8B-716D-4B5C-8256-8A63FC65FA15} - System32\Tasks\iGoAudioTaskSession => C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\iGoSwServer.exe [703360 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
Task: {9DA6A012-E519-4D05-85E1-C168C0851D55} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FF9B735E-5129-429F-984D-439F6324D075} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {FBEA529A-C869-49B1-B7F8-EB0B3657C7BF} - System32\Tasks\McUpdaterModuleTask => C:\Program Files (x86)\McAfee Security Scan\4.1.583\McUpdaterModule.exe [2472000 2024-06-21] (McAfee, LLC -> McAfee, LLC)
Task: {FDE09929-AE14-4FD0-AD93-BB7A61D727DD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C67892B3-0FC3-4E6A-A67B-9FE6F3A66A6C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28583648 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {4866E20B-827E-4A64-92DB-A1F9B3D2D709} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A30A69BE-C719-40BC-AA84-6556B2A75511} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312416 2024-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5C98148-E432-4813-82D9-9BE22FFC64E9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [182240 2024-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {6320A174-9FC2-4AF6-94C9-4B05B8A01F8A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209192 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {B04A343E-5C3A-493D-8E51-DD9ABF75CEA0} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2340186176-179000584-2465304235-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209192 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA81BEAF-E43A-4B30-8347-1D29EB1869C0} - System32\Tasks\Opera scheduled assistant Autoupdate 1713947394 => C:\Users\emilo\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\emilo\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {69DB8E4E-0F9C-4AAE-B2E1-E7981ABC78D0} - System32\Tasks\Opera scheduled Autoupdate 1690381736 => C:\Users\emilo\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe --scheduledtask --bypasslauncher $(Arg0) (Pas de fichier)
Task: {7A398447-438D-4048-9DA9-91246DAB2830} - System32\Tasks\SecurityScannerScheduler => C:\Program Files (x86)\McAfee Security Scan\4.1.583\SSScheduler.exe [1249168 2024-06-21] (McAfee, LLC -> McAfee, LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b7e24ad0-079a-499a-928e-3806158de99e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-04]
Edge HomePage: Default -> hxxps://?
Edge Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-15]
Edge Extension: (Edge relevant text changes) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Capital Koala) - C:\Users\emilo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\onkjpagmapeeilmofilpkcofneichjem [2023-07-19]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1651.5\npCCleanerBrowserUpdate3.dll [2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default [2024-09-04]
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Capital Koala) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpclfjlnaeaejebnjdeadlafkmkldgl [2023-07-19]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-08-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-19]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-02-17]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-02-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-02]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-08-28]
CHR DefaultSearchURL: Profile 2 -> hxxps://search.brave.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> search.brave.com
CHR DefaultSuggestURL: Profile 2 -> hxxps://search.brave.com/api/suggest?q={searchTerms}
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-06-05]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-04-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\emilo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-04-22]
CHR Profile: C:\Users\emilo\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-04]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-2340186176-179000584-2465304235-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe [1176016 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSBusinessUtility; C:\Program Files\ASUS\ASUS Business Utility\ccservice.exe [3792248 2024-04-15] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe [571880 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe [1381728 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe [650704 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [894312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2022-01-26] (Brother Industries, Ltd.) [Fichier non signé]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\127.0.26097.121\elevation_service.exe [1651840 2024-08-19] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2023-11-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1086256 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13995704 2024-08-10] (Microsoft Corporation -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3420376 2023-07-26] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
R2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_a8d0f03c50a0e3df\DAX3API.exe [2295320 2022-09-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.161.0811.0001\FileSyncHelper.exe [3522976 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 IgoAudioService; C:\Windows\System32\DriverStore\FileRepository\igoaudioservice.inf_amd64_c4203eddcb75e7fd\IgoAudioService_x64.exe [35000 2022-07-03] (British Cayman Islands Intelligo Technology Inc. Taiwan Branch -> Intelligo Technology Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [937296 2024-08-25] (McAfee, LLC -> McAfee, LLC)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\4.1.583\McCHSvc.exe [331696 2024-06-21] (McAfee, LLC -> McAfee, LLC)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.161.0811.0001\OneDriveUpdaterService.exe [3863568 2024-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 PremierOpinion; C:\Program Files (x86)\PremierOpinion\pmservice.exe [4358408 2023-04-17] (VOICEFIVE, INC. -> VoiceFive, Inc.) <==== ATTENTION
R2 rsClientSvc; C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe [660480 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSClientSvc; C:\Program Files\SaferWeb\rsDNSClientSvc.exe [743040 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSResolver; C:\Program Files\SaferWeb\rsDNSResolver.exe [10939008 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsDNSSvc; C:\Program Files\SaferWeb\rsDNSSvc.exe [335488 2023-07-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsEDRSvc; C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe [162440 2024-05-12] (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.)
R2 rsEngineSvc; C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe [294032 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsSyncSvc; C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe [584240 2023-05-22] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsVPNClientSvc; C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe [672400 2024-08-14] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsVPNSvc; C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe [231048 2024-08-14] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsWSC; C:\Program Files\ReasonLabs\EPP\rsWSC.exe [208552 2024-08-26] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [27856 2023-07-26] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 McAWFwk; "C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [25016 2021-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0399263.inf_amd64_d6faaaaaec9b4945\B393268\amdkmdag.sys [99609456 2024-01-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2023-07-26] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-02-11] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-02-11] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 fse; C:\Windows\System32\drivers\fse.sys [218608 2024-06-12] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\Windows\system32\DRIVERS\mtkbtfilterx.sys [285936 2022-05-19] (MEDIATEK INC. -> MediaTek Inc.)
R3 mtkwlex; C:\Windows\System32\drivers\mtkwl6ex.sys [1403112 2022-05-18] (MEDIATEK INC. -> MediaTek Inc.)
R1 rsCamFilter020502; C:\Windows\System32\drivers\rsCamFilter020502.sys [48944 2023-07-26] (Reason CyberSecurity Inc. -> Reason Software Company)
S3 rsDwf; C:\Windows\system32\DRIVERS\rsDwf.sys [54144 2023-07-26] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
S0 rsElam; C:\Windows\System32\drivers\rsElam.sys [19944 2024-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Reason CyberSecurity Inc.)
R1 rsKernelEngine; C:\Windows\System32\DRIVERS\rsKernelEngine.sys [49456 2024-08-26] (Reason CyberSecurity Inc. -> Windows (R) Win 7 DDK provider)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [51192 2024-09-04] (OpenVPN Inc. -> The OpenVPN Project)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-15] (Microsoft Windows -> )
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [22080 2024-08-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [602504 2024-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-15] (Microsoft Windows -> Microsoft Corporation)
S3 polarbear-split-tunneling; \??\C:\Program Files\McAfee\WPS\1.22.200.1\vpn\Drivers\x64\SplitTunnelingDriver.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-04 15:55 - 2024-09-04 15:55 - 000039304 _____ C:\Users\emilo\Downloads\FRST.txt
2024-09-04 15:55 - 2024-09-04 15:55 - 000000000 ____D C:\FRST
2024-09-04 15:54 - 2024-09-04 15:54 - 002397184 _____ (Farbar) C:\Users\emilo\Downloads\FRST64.exe
2024-09-04 15:50 - 2024-09-04 15:51 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (3).exe
2024-09-04 15:50 - 2024-09-04 15:50 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (2).exe
2024-09-04 15:42 - 2024-09-04 15:42 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST (1).exe
2024-09-04 15:37 - 2024-09-04 15:37 - 000771570 _____ C:\Windows\system32\perfh00C.dat
2024-09-04 15:37 - 2024-09-04 15:37 - 000148698 _____ C:\Windows\system32\perfc00C.dat
2024-09-04 15:31 - 2024-09-04 15:31 - 002095104 _____ (Farbar) C:\Users\emilo\Downloads\FRST.exe
2024-09-04 15:11 - 2024-09-04 15:11 - 001911732 _____ C:\Users\emilo\Downloads\lightbox princesses disney.studio3
2024-09-04 15:11 - 2024-09-04 15:11 - 001911732 _____ C:\Users\emilo\Downloads\lightbox princesses disney (1).studio3
2024-09-04 15:09 - 2024-09-04 15:09 - 000014772 _____ C:\Users\emilo\Downloads\Elsa2.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000014684 _____ C:\Users\emilo\Downloads\Elsa5.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000011044 _____ C:\Users\emilo\Downloads\Elsa4.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000009231 _____ C:\Users\emilo\Downloads\Elsa3.svg
2024-09-04 15:09 - 2024-09-04 15:09 - 000009023 _____ C:\Users\emilo\Downloads\Elsa6.svg
2024-09-04 15:08 - 2024-09-04 15:08 - 000397397 _____ C:\Users\emilo\Downloads\Nuit étoilée 1.svg
2024-09-04 15:08 - 2024-09-04 15:08 - 000038274 _____ C:\Users\emilo\Downloads\Elsa1.svg
2024-09-04 15:07 - 2024-09-04 15:07 - 000000574 _____ C:\Users\emilo\Downloads\Z.svg
2024-09-04 08:53 - 2024-09-04 08:53 - 007195168 _____ (EnigmaSoft Limited) C:\Users\emilo\Downloads\SpyHunter-Installer.exe
2024-09-04 08:49 - 2024-09-04 08:49 - 000051192 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2024-08-29 12:52 - 2024-08-29 12:52 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-26 14:49 - 2024-08-26 14:48 - 000049456 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\rsKernelEngine.sys
2024-08-21 12:58 - 2024-08-21 13:00 - 000000688 _____ C:\Users\emilo\Downloads\LanternPumpkinCat.zip
2024-08-21 12:57 - 2024-08-21 13:00 - 000000000 ____D C:\Users\emilo\OneDrive\Bureau\projets cricut
2024-08-21 12:57 - 2024-08-21 12:57 - 000000774 _____ C:\Users\emilo\Downloads\LanternWith3Bats.zip
2024-08-14 18:25 - 2024-08-14 18:25 - 000065894 _____ C:\Users\emilo\Downloads\ariel-amis.svg
2024-08-14 18:22 - 2024-08-14 18:22 - 000044751 _____ C:\Users\emilo\Downloads\ariel-bleu.svg
2024-08-14 18:22 - 2024-08-14 18:22 - 000013299 _____ C:\Users\emilo\Downloads\ariel-rocher-couleur (2).svg
2024-08-14 18:21 - 2024-08-14 18:21 - 000030573 _____ C:\Users\emilo\Downloads\ariel-polochon.svg
2024-08-14 18:21 - 2024-08-14 18:21 - 000013299 _____ C:\Users\emilo\Downloads\ariel-rocher-couleur (1).svg
2024-08-14 18:19 - 2024-08-14 18:19 - 000028296 _____ C:\Users\emilo\Downloads\raiponce-ercle.svg
2024-08-14 11:11 - 2024-08-14 11:11 - 000026169 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-14 11:10 - 2024-08-14 11:10 - 000026169 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-08-14 11:06 - 2024-08-14 11:09 - 000000000 ___HD C:\$WinREAgent
2024-08-14 10:50 - 2024-08-14 10:50 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Notes (Preview).lnk
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-04 15:51 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-04 15:41 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-09-04 15:40 - 2023-07-19 10:49 - 000000000 ___RD C:\Users\emilo\OneDrive
2024-09-04 15:40 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-04 15:37 - 2023-02-11 01:07 - 001713458 _____ C:\Windows\system32\PerfStringBackup.INI
2024-09-04 15:37 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-09-04 15:32 - 2023-07-26 16:29 - 000000000 ____D C:\Program Files (x86)\PremierOpinion
2024-09-04 15:32 - 2023-07-19 10:33 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-09-04 15:31 - 2023-07-26 16:31 - 000000000 ____D C:\Users\emilo\AppData\Roaming\SaferWeb
2024-09-04 15:31 - 2023-07-26 16:31 - 000000000 ____D C:\ProgramData\SaferWebService
2024-09-04 15:31 - 2023-07-26 16:28 - 000000000 ____D C:\Program Files\CCleaner
2024-09-04 15:31 - 2023-02-11 01:13 - 000000000 ____D C:\ProgramData\McAfee
2024-09-04 15:31 - 2022-06-03 12:19 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-09-04 15:31 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-09-04 15:30 - 2023-09-20 14:28 - 000000000 ____D C:\Users\emilo\AppData\Roaming\Cricut Design Space
2024-09-04 15:30 - 2023-02-11 01:13 - 000000000 ____D C:\Program Files\McAfee
2024-09-04 15:30 - 2023-02-11 01:10 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2024-09-04 15:30 - 2023-02-11 01:07 - 000003312 _____ C:\Windows\system32\Tasks\iGoAudioTask
2024-09-04 15:30 - 2022-06-03 12:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-09-04 15:30 - 2022-06-03 12:19 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-04 15:30 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2024-09-04 15:29 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-09-04 15:28 - 2023-08-17 22:34 - 000000000 ____D C:\Users\emilo\AppData\Local\CrashDumps
2024-09-04 15:27 - 2023-07-28 04:08 - 000000000 ____D C:\Users\emilo\AppData\Roaming\McAfee
2024-09-04 15:27 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\Packages
2024-09-04 15:27 - 2022-06-03 12:23 - 000000000 ____D C:\ProgramData\Packages
2024-09-04 15:11 - 2023-07-19 10:49 - 000000000 ____D C:\Users\emilo\AppData\Roaming\Microsoft\Word
2024-09-04 15:10 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\D3DSCache
2024-09-04 09:46 - 2023-07-26 16:28 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-09-04 09:46 - 2023-07-22 12:14 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-09-04 09:23 - 2023-09-20 14:28 - 000002497 _____ C:\Users\emilo\OneDrive\Bureau\Cricut Design Space.lnk
2024-09-04 08:50 - 2024-05-31 18:27 - 000000000 ____D C:\Users\emilo\AppData\Local\babl-0.1
2024-09-04 08:44 - 2022-06-03 12:20 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-03 17:03 - 2023-07-25 18:54 - 000013336 _____ C:\Windows\BRRBCOM.INI
2024-09-02 18:20 - 2023-07-26 15:46 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-09-02 18:20 - 2023-07-26 15:46 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-02 18:09 - 2023-02-11 01:08 - 000000000 ____D C:\Program Files\ASUS
2024-09-02 18:07 - 2023-07-26 16:28 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-09-02 18:07 - 2023-07-26 16:28 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-09-01 14:35 - 2024-05-15 15:52 - 000000000 ____D C:\Users\emilo\OneDrive\Bureau\images cricut
2024-08-31 06:13 - 2023-07-19 10:47 - 000000000 ____D C:\Users\emilo\AppData\Local\ASUS
2024-08-29 12:51 - 2022-06-03 12:23 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-27 17:54 - 2023-07-19 11:12 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-08-27 17:54 - 2023-07-19 11:12 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-08-27 17:54 - 2023-07-19 10:49 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2340186176-179000584-2465304235-1001
2024-08-27 13:24 - 2023-11-26 02:32 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2024-08-16 19:14 - 2023-08-17 22:35 - 000004122 _____ C:\Windows\system32\Tasks\ASUS Update Checker 2.0
2024-08-16 19:14 - 2023-02-11 01:08 - 000003756 _____ C:\Windows\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-08-15 04:50 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-08-15 04:45 - 2022-06-03 12:20 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-08-15 04:34 - 2022-06-03 12:19 - 000475112 _____ C:\Windows\system32\FNTCACHE.DAT
2024-08-15 04:33 - 2023-10-12 00:30 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\WUModels
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemApps
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Dism
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\schemas
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2024-08-15 04:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-08-14 11:17 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-08-14 11:16 - 2023-07-18 20:59 - 000000000 ____D C:\Windows\system32\MRT
2024-08-14 11:14 - 2023-07-18 20:59 - 197093640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-08-14 11:14 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2024-08-14 11:14 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2024-08-14 10:42 - 2024-05-01 11:17 - 000004242 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1690381736
==================== Fichiers à la racine de certains dossiers ========
2024-05-31 18:29 - 2024-05-31 18:29 - 000001836 _____ () C:\Users\emilo\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================