Publicité
Publicité
Commentaire : frst
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-09-2024
Exécuté par melan (administrateur) sur LAPTOP-N65LKEHC (Acer Aspire E5-722G) (11-09-2024 13:25:14)
Exécuté depuis C:\Users\melan\Downloads\FRST64.exe
Profils chargés: melan
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4651 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe ->) (Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\Acer\Acer Quick Access\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(C:\Program Files\Acer\Acer Quick Access\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.17928.20114\OfficeClickToRun.exe
(C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(C:\Program Files\Novabench\Novabench.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.102\msedgewebview2.exe <6>
(C:\Program Files\Novabench\Novabench.exe ->) (Novabench Inc. -> novabench) C:\Program Files\Novabench\resources\novabench.exe
(C:\Program Files\Windows Defender\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe <2>
(C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(C:\Windows\Temp\MicrosoftEdgeUpdateSetup_X86_1.3.195.19.exeb539ec ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.19\MicrosoftEdgeUpdate.exe
(C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4585_none_7e06e2187c9234e2\TiWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\MicrosoftEdgeUpdateSetup_X86_1.3.195.19.exeb539ec
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
(Novabench Inc. -> ) C:\Program Files\Novabench\Novabench.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(services.exe ->) (Amazon Services LLC -> Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dashlane -> Dashlane SAS) C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Novabench Inc. -> Novabench Inc.) C:\Program Files\Novabench\resources\NovabenchService.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\Acer Configuration Manager\AWC.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(svchost.exe ->) (Acer Incorporated -> Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(svchost.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\melan\AppData\Local\Microsoft\OneDrive\24.166.0818.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\melan\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4585_none_7e06e2187c9234e2\TiWorker.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-03-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427416 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [64864 2015-09-01] (Acer Incorporated -> Acer Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-09-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [I16A] => C:\WINDOWS\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-07-25] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\Run: [MicrosoftEdgeAutoLaunch_668527DA23197DB130A5D667B79A49EC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [71016976 2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Uninstall 24.126.0623.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\24.126.0623.0001" [0 2024-09-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\Run: [MicrosoftEdgeAutoLaunch_46F45CD6E33A725C2B85410EB397CC6B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\mecon\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [70024624 2024-07-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\mecon\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.120\Installer\chrmstp.exe [2024-09-11] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {003F51E9-D157-4F2F-9411-AB203E4857DB} - \Microsoft\Windows\UpdateOrchestrator\Maintenance Install -> Pas de fichier <==== ATTENTION
Task: {0E6680C4-65BD-4498-86A8-0291850EC248} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> Pas de fichier <==== ATTENTION
Task: {12485DBF-502E-4563-919F-B38977F2793F} - \Power Button -> Pas de fichier <==== ATTENTION
Task: {134D0AD7-410B-4DE6-9CCC-74A203FED35C} - \UbtFrameworkService -> Pas de fichier <==== ATTENTION
Task: {17CD07ED-7F73-45A8-8CAA-DF535161EB31} - \FUBTrackingByPLD -> Pas de fichier <==== ATTENTION
Task: {2EE516ED-39C8-45CD-9B48-55A1E88E789E} - \ACCBackgroundApplication -> Pas de fichier <==== ATTENTION
Task: {317107BF-13F6-48B4-AA5A-BA0B03A02F4B} - \Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {48A98229-5C8E-4DDD-8139-CF35F7262A95} - \Microsoft\Windows\Plug and Play\Plug and Play Cleanup -> Pas de fichier <==== ATTENTION
Task: {5587F1DC-15D0-4331-A673-6EF75E5CD9C0} - \Microsoft\Windows\AppID\SmartScreenSpecific -> Pas de fichier <==== ATTENTION
Task: {71E53243-3A2D-47EE-9DAB-6D71B2366657} - \Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {7204A0E9-83CE-4F8B-A0A0-B131FB057CF9} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> Pas de fichier <==== ATTENTION
Task: {900E89CC-B16D-4228-8139-B224AFA746DC} - \ACCAgent -> Pas de fichier <==== ATTENTION
Task: {93C25E00-419D-4136-A487-F5E3CD96E326} - \ACC -> Pas de fichier <==== ATTENTION
Task: {9567E270-199F-4972-89A3-D7F6816C5917} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> Pas de fichier <==== ATTENTION
Task: {B9FD40F5-C983-4BED-9892-E497CE56A66D} - \Microsoft\Office\Microsoft Office Touchless Attach Notification -> Pas de fichier <==== ATTENTION
Task: {C3095AAE-8077-4DC2-8B5C-2FD284704555} - \Software Update Application -> Pas de fichier <==== ATTENTION
Task: {C349BB67-3672-4975-AE02-517BAD9318EE} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {C53D54BC-1CF1-4819-8276-1694DADC49C1} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> Pas de fichier <==== ATTENTION
Task: {C8B1190E-BC80-4071-A144-73E9EBB868BE} - \AcerCloud -> Pas de fichier <==== ATTENTION
Task: {E7934BDC-E434-4413-B114-7CF6596BE63B} - \BacKGroundAgent -> Pas de fichier <==== ATTENTION
Task: {FA625267-66E0-464A-AE95-8754007E78AD} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION
Task: {FAE2A821-2620-4A88-96D8-4C84A3375A6D} - \Quick Access -> Pas de fichier <==== ATTENTION
Task: {3B97832C-3FF1-475E-AE81-BB9A08173A3B} - System32\Tasks\ACM Ignition => C:\Program Files\Acer\Acer Configuration Manager\AWC.exe [422304 2016-02-15] (Acer Incorporated -> )
Task: {84431B02-526D-4F39-8E01-F6F585A51B11} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C214F2DB-1254-4639-AE12-6A929C4DEB1D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2348952 2024-07-19] (Avast Software s.r.o. -> Avast Software)
Task: {ABC0D9F9-9769-4ADA-9682-9B16D1A379CA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{677656EB-8C0F-472A-ABFE-A66AD2954B52} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {E852BB87-E056-44D2-92B3-AEF8E0036336} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {9BBD9DA8-4513-410E-A831-EA4E10118004} - System32\Tasks\McAfee\WPS\McAfee Anti-Tracker Scanner => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {977F4847-E090-4733-84A0-4272A3D52B00} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {A1754F39-7878-4586-910C-96B0DAA13B47} - System32\Tasks\McAfee\WPS\McAfee Health Check => C:\Program Files\mcafee\wps\1.21.162.1\sustainability\mc-sustainability.exe [968008 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {466A8117-4267-4DAA-89FB-9DFFB61B89EB} - System32\Tasks\McAfee\WPS\McAfee Hotfix => C:\Program Files\McAfee\wps\1.21.162.1\dad\mc-dad.exe [2641984 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {0B4C8C69-FBCF-4F37-81EB-E8C1D86852F3} - System32\Tasks\McAfee\WPS\McAfee Message Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {58CB8CB5-A342-4BFD-9080-BDCEC8502967} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {CE52C7AE-9169-4AB6-84F8-1595D7872BCF} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {4F7FE17F-BC66-432D-880A-F4C762552D26} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {8FDBB937-BA06-4A52-BE41-48924734E822} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {25E2050A-57B7-4AAD-8F1D-248BD28BA61B} - System32\Tasks\McAfee\WPS\McAfee Subscription Check => \\?\C:\Program Files\mcafee\wps\SubscriptionJob\mc-oem-subjob.exe [2446752 2024-09-11] (McAfee, LLC -> McAfee, LLC)
Task: {9AE13725-91FF-4A90-B589-D12139E69CF8} - System32\Tasks\McAfee\wps\McAfee Updater => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe [3328712 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {94EEFB2B-2927-4D85-B405-A79569F0EE07} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {A2FC27F3-5960-40E3-B590-4C7C2605296E} - System32\Tasks\McAfee\WPS\McAfee Windows Notification Token => \\?\C:\Program Files\mcafee\wps\1.21.162.1\mc-wns-client\mc-wns-client.exe [934152 2024-09-08] (McAfee, LLC -> )
Task: {D15964F1-A699-4480-957A-322D0DBCC288} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E5D24E6-B4C8-4945-B157-84FEB556D209} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {08205FD9-7EE4-465F-9D6D-AC64779D3F3C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3807C0D9-49AE-4783-BADF-0BEB4C8033FE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{5390d400-ed16-4f97-be4f-647ef066aeb8}: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{701b9f04-9e5f-4e80-a3ea-885d05d3c780}: [DhcpNameServer] 192.17.128.24
Edge:
=======
Edge Profile: C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-11]
Edge Extension: (Edge relevant text changes) - C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-07-08]
FireFox:
========
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2024-04-04] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2024-04-04] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2024-04-04] []
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default [2024-09-11]
CHR Notifications: Default -> hxxps://www.commentcamarche.net
CHR Extension: (McAfee® WebAdvisor) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-07-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-08]
CHR Profile: C:\Users\melan\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Amazon 1Button App Service; c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [456000 2015-05-06] (Amazon Services LLC -> Amazon Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9052568 2024-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766360 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2287000 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1203608 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-07-19] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-07-25] (Brother Industries, Ltd.) [Fichier non signé]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-08-31] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
R2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [81408 2015-10-14] (Dashlane -> Dashlane SAS)
S3 mc-wps-update; C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe [3328712 2024-09-08] (McAfee, LLC -> McAfee, LLC)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [918424 2024-09-11] (McAfee, LLC -> McAfee, LLC)
R2 NovabenchService5; C:\Program Files\Novabench\resources\NovabenchService.exe [42016256 2024-02-04] (Novabench Inc. -> Novabench Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [440224 2016-03-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [481696 2016-03-10] (Acer Incorporated -> Acer Incorporated)
R2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [69184 2015-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [291232 2016-02-01] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 McProxy; "C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229952 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380992 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292936 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84544 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271944 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548928 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97856 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [942536 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1195992 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203736 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44576 2024-07-23] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R3 Kb9xI2c; C:\WINDOWS\System32\drivers\Kb9xI2c.sys [37888 2015-05-19] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-16] (Acer Incorporated -> Acer Incorporated)
S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [19536 2024-09-08] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [85296 2024-09-08] (McAfee, LLC -> McAfee, LLC)
S1 qnkzddun; C:\WINDOWS\system32\drivers\qnkzddun.sys [72816 2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-16] (Acer Incorporated -> Acer Incorporated)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64872 2019-09-26] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 {2b2d8da0-26da-25a0-ceda-97f15415907d}; C:\WINDOWS\TEMP\{2b2d8da0-26da-25a0-ceda-97f15415907d}.sys [229952 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) <==== ATTENTION
U1 aswbdisk; pas de ImagePath
S3 mfeaack01; \Device\mfeaack01.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-11 13:25 - 2024-09-11 13:31 - 000030138 _____ C:\Users\melan\Downloads\FRST.txt
2024-09-11 13:21 - 2024-09-11 13:29 - 000000000 ____D C:\FRST
2024-09-11 12:48 - 2024-09-11 12:49 - 002397696 _____ (Farbar) C:\Users\melan\Downloads\FRST64.exe
2024-09-11 12:25 - 2024-09-11 12:25 - 000000000 ___HD C:\$WinREAgent
2024-09-11 11:39 - 2024-09-11 11:41 - 002095104 _____ (Farbar) C:\Users\melan\Downloads\FRST.exe
2024-09-11 11:25 - 2024-09-11 11:26 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2024-09-11 11:25 - 2024-09-11 11:25 - 000001832 _____ C:\Users\melan\Desktop\CrystalDiskInfo.lnk
2024-09-11 11:25 - 2024-09-11 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-09-11 11:20 - 2024-09-11 11:22 - 005918840 _____ (Crystal Dew World ) C:\Users\melan\Downloads\crystaldiskinfo-windows-9.4.4-33454.exe
2024-09-11 11:10 - 2024-09-11 11:11 - 000000000 ____D C:\Users\melan\AppData\Local\CrashDumps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-11 13:26 - 2024-07-08 15:36 - 000000000 ____D C:\Users\mecon
2024-09-11 13:14 - 2024-04-04 16:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-11 13:01 - 2024-04-04 16:25 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-11 13:00 - 2024-04-04 16:25 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-11 12:54 - 2024-04-04 12:49 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-11 12:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-11 12:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 11:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-11 11:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-11 11:26 - 2024-07-23 17:33 - 000000000 ____D C:\Users\melan\AppData\Local\Novabench
2024-09-11 11:14 - 2024-07-08 14:53 - 000000000 ___RD C:\Users\melan\OneDrive
2024-09-11 11:11 - 2024-07-08 14:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2090610686-3137058536-126304156-1001
2024-09-11 11:11 - 2024-07-08 14:53 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2090610686-3137058536-126304156-1001
2024-09-11 11:11 - 2024-07-08 13:26 - 000002421 _____ C:\Users\melan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-09-11 11:09 - 2024-07-08 16:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-11 11:09 - 2024-07-08 16:26 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-11 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-08 20:09 - 2024-07-21 09:48 - 000085296 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys
2024-09-08 20:09 - 2024-07-21 09:48 - 000019536 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfeelam.sys
2024-09-08 20:07 - 2016-04-01 21:39 - 000000000 ____D C:\ProgramData\McAfee
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par melan (administrateur) sur LAPTOP-N65LKEHC (Acer Aspire E5-722G) (11-09-2024 13:25:14)
Exécuté depuis C:\Users\melan\Downloads\FRST64.exe
Profils chargés: melan
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.4651 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe ->) (Acer Incorporated -> Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\Acer\Acer Quick Access\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(C:\Program Files\Acer\Acer Quick Access\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.17928.20114\OfficeClickToRun.exe
(C:\Program Files\mcafee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(C:\Program Files\Novabench\Novabench.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.102\msedgewebview2.exe <6>
(C:\Program Files\Novabench\Novabench.exe ->) (Novabench Inc. -> novabench) C:\Program Files\Novabench\resources\novabench.exe
(C:\Program Files\Windows Defender\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe <2>
(C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(C:\Windows\Temp\MicrosoftEdgeUpdateSetup_X86_1.3.195.19.exeb539ec ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.19\MicrosoftEdgeUpdate.exe
(C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4585_none_7e06e2187c9234e2\TiWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\MicrosoftEdgeUpdateSetup_X86_1.3.195.19.exeb539ec
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
(Novabench Inc. -> ) C:\Program Files\Novabench\Novabench.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(services.exe ->) (Amazon Services LLC -> Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dashlane -> Dashlane SAS) C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(services.exe ->) (Novabench Inc. -> Novabench Inc.) C:\Program Files\Novabench\resources\NovabenchService.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\Acer Configuration Manager\AWC.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(svchost.exe ->) (Acer Incorporated -> Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(svchost.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22007.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\melan\AppData\Local\Microsoft\OneDrive\24.166.0818.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\melan\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.4585_none_7e06e2187c9234e2\TiWorker.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-03-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [427416 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [64864 2015-09-01] (Acer Incorporated -> Acer Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-09-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [I16A] => C:\WINDOWS\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-07-25] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\Run: [MicrosoftEdgeAutoLaunch_668527DA23197DB130A5D667B79A49EC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [71016976 2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2090610686-3137058536-126304156-1001\...\RunOnce: [Uninstall 24.126.0623.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\melan\AppData\Local\Microsoft\OneDrive\24.126.0623.0001" [0 2024-09-11] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\Run: [MicrosoftEdgeAutoLaunch_46F45CD6E33A725C2B85410EB397CC6B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\mecon\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [70024624 2024-07-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2090610686-3137058536-126304156-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\mecon\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.120\Installer\chrmstp.exe [2024-09-11] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {003F51E9-D157-4F2F-9411-AB203E4857DB} - \Microsoft\Windows\UpdateOrchestrator\Maintenance Install -> Pas de fichier <==== ATTENTION
Task: {0E6680C4-65BD-4498-86A8-0291850EC248} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot -> Pas de fichier <==== ATTENTION
Task: {12485DBF-502E-4563-919F-B38977F2793F} - \Power Button -> Pas de fichier <==== ATTENTION
Task: {134D0AD7-410B-4DE6-9CCC-74A203FED35C} - \UbtFrameworkService -> Pas de fichier <==== ATTENTION
Task: {17CD07ED-7F73-45A8-8CAA-DF535161EB31} - \FUBTrackingByPLD -> Pas de fichier <==== ATTENTION
Task: {2EE516ED-39C8-45CD-9B48-55A1E88E789E} - \ACCBackgroundApplication -> Pas de fichier <==== ATTENTION
Task: {317107BF-13F6-48B4-AA5A-BA0B03A02F4B} - \Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {48A98229-5C8E-4DDD-8139-CF35F7262A95} - \Microsoft\Windows\Plug and Play\Plug and Play Cleanup -> Pas de fichier <==== ATTENTION
Task: {5587F1DC-15D0-4331-A673-6EF75E5CD9C0} - \Microsoft\Windows\AppID\SmartScreenSpecific -> Pas de fichier <==== ATTENTION
Task: {71E53243-3A2D-47EE-9DAB-6D71B2366657} - \Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate -> Pas de fichier <==== ATTENTION
Task: {7204A0E9-83CE-4F8B-A0A0-B131FB057CF9} - \Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask -> Pas de fichier <==== ATTENTION
Task: {900E89CC-B16D-4228-8139-B224AFA746DC} - \ACCAgent -> Pas de fichier <==== ATTENTION
Task: {93C25E00-419D-4136-A487-F5E3CD96E326} - \ACC -> Pas de fichier <==== ATTENTION
Task: {9567E270-199F-4972-89A3-D7F6816C5917} - \Microsoft\Windows\UpdateOrchestrator\Policy Install -> Pas de fichier <==== ATTENTION
Task: {B9FD40F5-C983-4BED-9892-E497CE56A66D} - \Microsoft\Office\Microsoft Office Touchless Attach Notification -> Pas de fichier <==== ATTENTION
Task: {C3095AAE-8077-4DC2-8B5C-2FD284704555} - \Software Update Application -> Pas de fichier <==== ATTENTION
Task: {C349BB67-3672-4975-AE02-517BAD9318EE} - \Microsoft\Windows\WindowsUpdate\sih -> Pas de fichier <==== ATTENTION
Task: {C53D54BC-1CF1-4819-8276-1694DADC49C1} - \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display -> Pas de fichier <==== ATTENTION
Task: {C8B1190E-BC80-4071-A144-73E9EBB868BE} - \AcerCloud -> Pas de fichier <==== ATTENTION
Task: {E7934BDC-E434-4413-B114-7CF6596BE63B} - \BacKGroundAgent -> Pas de fichier <==== ATTENTION
Task: {FA625267-66E0-464A-AE95-8754007E78AD} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Pas de fichier <==== ATTENTION
Task: {FAE2A821-2620-4A88-96D8-4C84A3375A6D} - \Quick Access -> Pas de fichier <==== ATTENTION
Task: {3B97832C-3FF1-475E-AE81-BB9A08173A3B} - System32\Tasks\ACM Ignition => C:\Program Files\Acer\Acer Configuration Manager\AWC.exe [422304 2016-02-15] (Acer Incorporated -> )
Task: {84431B02-526D-4F39-8E01-F6F585A51B11} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C214F2DB-1254-4639-AE12-6A929C4DEB1D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2348952 2024-07-19] (Avast Software s.r.o. -> Avast Software)
Task: {ABC0D9F9-9769-4ADA-9682-9B16D1A379CA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{677656EB-8C0F-472A-ABFE-A66AD2954B52} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {E852BB87-E056-44D2-92B3-AEF8E0036336} - System32\Tasks\McAfee\WPS\McAfee Anti-tracker notification => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {9BBD9DA8-4513-410E-A831-EA4E10118004} - System32\Tasks\McAfee\WPS\McAfee Anti-Tracker Scanner => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {977F4847-E090-4733-84A0-4272A3D52B00} - System32\Tasks\McAfee\WPS\McAfee Cloud Configuration Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {A1754F39-7878-4586-910C-96B0DAA13B47} - System32\Tasks\McAfee\WPS\McAfee Health Check => C:\Program Files\mcafee\wps\1.21.162.1\sustainability\mc-sustainability.exe [968008 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {466A8117-4267-4DAA-89FB-9DFFB61B89EB} - System32\Tasks\McAfee\WPS\McAfee Hotfix => C:\Program Files\McAfee\wps\1.21.162.1\dad\mc-dad.exe [2641984 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {0B4C8C69-FBCF-4F37-81EB-E8C1D86852F3} - System32\Tasks\McAfee\WPS\McAfee Message Check => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {58CB8CB5-A342-4BFD-9080-BDCEC8502967} - System32\Tasks\McAfee\WPS\McAfee PC Optimizer Task => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {CE52C7AE-9169-4AB6-84F8-1595D7872BCF} - System32\Tasks\McAfee\WPS\McAfee restart of PC => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {4F7FE17F-BC66-432D-880A-F4C762552D26} - System32\Tasks\McAfee\WPS\McAfee Scheduled AV Scan => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {8FDBB937-BA06-4A52-BE41-48924734E822} - System32\Tasks\McAfee\WPS\McAfee Scheduled Tracker Remover => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {25E2050A-57B7-4AAD-8F1D-248BD28BA61B} - System32\Tasks\McAfee\WPS\McAfee Subscription Check => \\?\C:\Program Files\mcafee\wps\SubscriptionJob\mc-oem-subjob.exe [2446752 2024-09-11] (McAfee, LLC -> McAfee, LLC)
Task: {9AE13725-91FF-4A90-B589-D12139E69CF8} - System32\Tasks\McAfee\wps\McAfee Updater => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe [3328712 2024-09-08] (McAfee, LLC -> McAfee, LLC)
Task: {94EEFB2B-2927-4D85-B405-A79569F0EE07} - System32\Tasks\McAfee\WPS\McAfee Virus Definition Update => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D
Task: {A2FC27F3-5960-40E3-B590-4C7C2605296E} - System32\Tasks\McAfee\WPS\McAfee Windows Notification Token => \\?\C:\Program Files\mcafee\wps\1.21.162.1\mc-wns-client\mc-wns-client.exe [934152 2024-09-08] (McAfee, LLC -> )
Task: {D15964F1-A699-4480-957A-322D0DBCC288} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E5D24E6-B4C8-4945-B157-84FEB556D209} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512336 2024-07-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {08205FD9-7EE4-465F-9D6D-AC64779D3F3C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3807C0D9-49AE-4783-BADF-0BEB4C8033FE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [221848 2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{5390d400-ed16-4f97-be4f-647ef066aeb8}: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{701b9f04-9e5f-4e80-a3ea-885d05d3c780}: [DhcpNameServer] 192.17.128.24
Edge:
=======
Edge Profile: C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-11]
Edge Extension: (Google Docs hors connexion) - C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-11]
Edge Extension: (Edge relevant text changes) - C:\Users\melan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-07-08]
FireFox:
========
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2024-04-04] []
FF Extension: (Français Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-fr@firefox.mozilla.org [2024-04-04] []
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2024-04-04] []
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-07-23] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default [2024-09-11]
CHR Notifications: Default -> hxxps://www.commentcamarche.net
CHR Extension: (McAfee® WebAdvisor) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-07-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-08]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\melan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-07-08]
CHR Profile: C:\Users\melan\AppData\Local\Google\Chrome\User Data\System Profile [2024-07-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Amazon 1Button App Service; c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [456000 2015-05-06] (Amazon Services LLC -> Amazon Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9052568 2024-07-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766360 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2287000 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1203608 2024-07-19] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-07-19] (Avast Software s.r.o. -> AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-07-25] (Brother Industries, Ltd.) [Fichier non signé]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-08-31] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-26] (Microsoft Corporation -> Microsoft Corporation)
R2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [81408 2015-10-14] (Dashlane -> Dashlane SAS)
S3 mc-wps-update; C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe [3328712 2024-09-08] (McAfee, LLC -> McAfee, LLC)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [918424 2024-09-11] (McAfee, LLC -> McAfee, LLC)
R2 NovabenchService5; C:\Program Files\Novabench\resources\NovabenchService.exe [42016256 2024-02-04] (Novabench Inc. -> Novabench Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [440224 2016-03-10] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [481696 2016-03-10] (Acer Incorporated -> Acer Incorporated)
R2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [69184 2015-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [291232 2016-02-01] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 McProxy; "C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229952 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380992 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292936 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84544 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271944 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548928 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97856 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [942536 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1195992 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203736 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306648 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 cpuz158; C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [44576 2024-07-23] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R3 Kb9xI2c; C:\WINDOWS\System32\drivers\Kb9xI2c.sys [37888 2015-05-19] (Microsoft Windows Hardware Compatibility Publisher -> ENE TECHNOLOGY INC.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-16] (Acer Incorporated -> Acer Incorporated)
S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [19536 2024-09-08] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [85296 2024-09-08] (McAfee, LLC -> McAfee, LLC)
S1 qnkzddun; C:\WINDOWS\system32\drivers\qnkzddun.sys [72816 2024-09-11] (Microsoft Corporation -> Microsoft Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-16] (Acer Incorporated -> Acer Incorporated)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64872 2019-09-26] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 {2b2d8da0-26da-25a0-ceda-97f15415907d}; C:\WINDOWS\TEMP\{2b2d8da0-26da-25a0-ceda-97f15415907d}.sys [229952 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) <==== ATTENTION
U1 aswbdisk; pas de ImagePath
S3 mfeaack01; \Device\mfeaack01.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-11 13:25 - 2024-09-11 13:31 - 000030138 _____ C:\Users\melan\Downloads\FRST.txt
2024-09-11 13:21 - 2024-09-11 13:29 - 000000000 ____D C:\FRST
2024-09-11 12:48 - 2024-09-11 12:49 - 002397696 _____ (Farbar) C:\Users\melan\Downloads\FRST64.exe
2024-09-11 12:25 - 2024-09-11 12:25 - 000000000 ___HD C:\$WinREAgent
2024-09-11 11:39 - 2024-09-11 11:41 - 002095104 _____ (Farbar) C:\Users\melan\Downloads\FRST.exe
2024-09-11 11:25 - 2024-09-11 11:26 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2024-09-11 11:25 - 2024-09-11 11:25 - 000001832 _____ C:\Users\melan\Desktop\CrystalDiskInfo.lnk
2024-09-11 11:25 - 2024-09-11 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-09-11 11:20 - 2024-09-11 11:22 - 005918840 _____ (Crystal Dew World ) C:\Users\melan\Downloads\crystaldiskinfo-windows-9.4.4-33454.exe
2024-09-11 11:10 - 2024-09-11 11:11 - 000000000 ____D C:\Users\melan\AppData\Local\CrashDumps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-11 13:26 - 2024-07-08 15:36 - 000000000 ____D C:\Users\mecon
2024-09-11 13:14 - 2024-04-04 16:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-11 13:01 - 2024-04-04 16:25 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-11 13:00 - 2024-04-04 16:25 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-11 12:54 - 2024-04-04 12:49 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-11 12:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-11 12:26 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 11:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-11 11:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-11 11:26 - 2024-07-23 17:33 - 000000000 ____D C:\Users\melan\AppData\Local\Novabench
2024-09-11 11:14 - 2024-07-08 14:53 - 000000000 ___RD C:\Users\melan\OneDrive
2024-09-11 11:11 - 2024-07-08 14:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2090610686-3137058536-126304156-1001
2024-09-11 11:11 - 2024-07-08 14:53 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2090610686-3137058536-126304156-1001
2024-09-11 11:11 - 2024-07-08 13:26 - 000002421 _____ C:\Users\melan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-09-11 11:09 - 2024-07-08 16:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-11 11:09 - 2024-07-08 16:26 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-11 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-08 20:09 - 2024-07-21 09:48 - 000085296 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys
2024-09-08 20:09 - 2024-07-21 09:48 - 000019536 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfeelam.sys
2024-09-08 20:07 - 2016-04-01 21:39 - 000000000 ____D C:\ProgramData\McAfee
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================