Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Exécuté par sanle (administrateur) sur LAPTOP-4RQOL2AU (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X712DA_M712DA) (02-03-2022 16:07:34)
Exécuté depuis C:\Users\sanle\Downloads
Profils chargés: sanle
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.493 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOSD.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22042.700.1195.9062_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.62\msedgewebview2.exe <12>
(DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atieclxx.exe
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(RuntimeBroker.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe <3>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {17CED33D-FE0E-49A9-A3C0-B19EC4ED6485} - System32\Tasks\McAfee\McAfee OOBE Patch Telemetry => C:\Program Files\Common Files\McAfee\ModuleCore\DayZeroOOBEFix_64.exe [3499728 2020-05-07] (McAfee, LLC -> McAfee, LLC)
Task: {46407419-BBFC-4508-8DA1-98A107F39F2C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {53DE777C-0330-4162-800A-4DB91DCD8CE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {596AFFC1-36D5-46B1-8477-64FCEA09E599} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F372AE6-63E2-4DDC-937B-B25BABB4BB54} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {737D3594-98FC-4111-895E-1FF454DA6F0B} - System32\Tasks\Samsung_PSSD_Registration_Plus => C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe [869224 2021-08-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics)
Task: {73DF4F5F-D6D8-4C31-B018-F6200C61C400} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusHotkey.exe [238736 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {80D015E4-55BE-4241-9332-3B1BCC7690F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {874790BF-827C-48C1-B027-ACA93B07BCC9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342880 2021-09-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {966EAFF3-1E02-453B-A0A4-E6F909716F58} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4596480 2020-06-19] (McAfee, LLC -> McAfee, LLC)
Task: {BFA5BA96-050B-4D21-AF32-B468AC2F30D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {DC8E1D09-3916-4A78-922E-D2596E82BF77} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.)
Task: {E1FE8861-CDC5-409C-A118-AB6E9E1A2312} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E86189F9-6D64-4C0D-8E0C-ACE9796C94E6} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusUpdateChecker.exe [759952 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {FF0ED277-54CC-41EE-9FB7-D2A676800F14} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7cc5c3a8-5c5e-4b1e-a808-2711e5015c7b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{822711fa-b48d-4959-ae87-6df0a4898c28}: [DhcpNameServer] 10.66.112.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\sanle\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: eeamdxml.default
FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\eeamdxml.default [2020-09-02]
FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release [2022-03-02]
FF Homepage: Mozilla\Firefox\Profiles\j3gqd8w8.default-release -> google.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-12-10]
FF Extension: (uBlock Origin) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-02-25]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-02-24]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe [870584 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe [1330360 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe [762032 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe [346256 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe [1038992 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe [601216 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [655768 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-28] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-22] (Malwarebytes Inc -> Malwarebytes)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182296 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\amdkmdag.sys [81597192 2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112848 2020-09-27] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSAIO.sys [35984 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusWmiAcpi.sys [45264 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [221096 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-28] (Malwarebytes Inc -> Malwarebytes)
S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [595896 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [107960 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43536 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 16:07 - 2022-03-02 16:08 - 000022257 _____ C:\Users\sanle\Downloads\FRST.txt
2022-03-02 16:07 - 2022-03-02 16:07 - 000000000 ____D C:\FRST
2022-03-02 16:06 - 2022-03-02 16:06 - 002312192 _____ (Farbar) C:\Users\sanle\Downloads\FRST64.exe
2022-02-28 19:52 - 2022-02-28 19:52 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-28 19:52 - 2022-02-28 19:52 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-28 19:52 - 2022-02-28 19:52 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-28 15:11 - 2022-02-28 15:11 - 000000000 ____D C:\Users\sanle\AppData\Local\CrashDumps
2022-02-28 14:27 - 2022-02-28 14:27 - 000563508 _____ C:\Users\sanle\OneDrive\Documents\Livret de famille .pdf
2022-02-28 14:25 - 2022-02-28 14:25 - 000353911 _____ C:\Users\sanle\OneDrive\Documents\Courrier AG2R.pdf
2022-02-22 21:13 - 2022-02-22 21:13 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-22 21:13 - 2022-02-22 21:13 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-02-22 21:13 - 2022-02-22 21:13 - 000000000 ____D C:\Users\sanle\AppData\Local\mbam
2022-02-22 21:12 - 2022-02-22 21:12 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000221096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-22 21:11 - 2022-02-22 21:12 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-22 21:11 - 2022-02-22 21:11 - 002419896 _____ (Malwarebytes) C:\Users\sanle\Downloads\MBSetup.exe
2022-02-19 18:17 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-02-19 01:22 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 12:01 - 2022-02-18 12:01 - 000000000 ___HD C:\$WinREAgent
2022-02-13 21:02 - 2022-02-13 21:02 - 000000000 ____D C:\Users\sanle\Downloads\Pour Sandrine
2022-02-13 20:52 - 2022-02-13 20:54 - 373146355 _____ C:\Users\sanle\Downloads\Pour Sandrine.zip
2022-02-11 13:13 - 2022-02-11 13:25 - 000013867 _____ C:\Users\sanle\OneDrive\Documents\Demande reversion - suite.odt
2022-02-10 15:44 - 2022-02-10 15:44 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-10 15:38 - 2022-02-10 15:38 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000015020 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 11:26 - 2022-03-02 11:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-09 12:53 - 2022-02-09 12:53 - 000489917 _____ C:\Users\sanle\OneDrive\Documents\Prolongation arrêt.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 15:37 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-02 14:26 - 2020-09-02 12:44 - 000000000 ____D C:\Users\sanle\AppData\LocalLow\Mozilla
2022-03-02 13:15 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-03-02 12:57 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-02 11:31 - 2020-09-02 12:44 - 000000000 ____D C:\ProgramData\Mozilla
2022-03-02 11:30 - 2021-11-10 00:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-02 11:29 - 2021-11-10 00:09 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2022-03-02 11:29 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-01 15:32 - 2020-09-02 13:17 - 000000000 ____D C:\Users\sanle\AppData\Roaming\BankPerfect
2022-03-01 14:26 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\D3DSCache
2022-02-28 19:58 - 2021-11-10 00:09 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 19:58 - 2021-06-05 19:14 - 000771102 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-28 19:58 - 2021-06-05 19:14 - 000148364 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-28 19:58 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-28 19:52 - 2021-11-10 00:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-28 19:52 - 2021-03-12 21:16 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-28 19:51 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-25 11:11 - 2020-09-07 06:50 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-23 19:36 - 2021-12-02 21:02 - 000071337 _____ C:\Users\sanle\OneDrive\Documents\Doudou.odt
2022-02-22 21:12 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-21 16:05 - 2020-09-02 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-21 16:04 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\Packages
2022-02-20 13:23 - 2020-09-02 18:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-19 18:30 - 2019-10-23 20:38 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-19 12:36 - 2021-11-10 00:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-19 12:36 - 2020-09-02 12:44 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-11 10:48 - 2020-09-02 18:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 10:47 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-11 10:47 - 2020-09-02 18:09 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 16:15 - 2020-05-07 05:28 - 000000000 ____D C:\Users\sanle\AppData\Local\PlaceholderTileLogoFolder
2022-02-10 15:45 - 2021-11-10 00:06 - 000669896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 15:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 15:38 - 2021-11-10 00:06 - 003087360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-09 22:36 - 2019-10-23 20:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-02 22:51 - 2021-04-30 12:18 - 000000000 ___RD C:\Users\sanle\OneDrive\Documents\Scanned Documents
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par sanle (administrateur) sur LAPTOP-4RQOL2AU (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X712DA_M712DA) (02-03-2022 16:07:34)
Exécuté depuis C:\Users\sanle\Downloads
Profils chargés: sanle
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.493 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOSD.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_22042.700.1195.9062_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.62\msedgewebview2.exe <12>
(DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atieclxx.exe
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(RuntimeBroker.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe <3>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {17CED33D-FE0E-49A9-A3C0-B19EC4ED6485} - System32\Tasks\McAfee\McAfee OOBE Patch Telemetry => C:\Program Files\Common Files\McAfee\ModuleCore\DayZeroOOBEFix_64.exe [3499728 2020-05-07] (McAfee, LLC -> McAfee, LLC)
Task: {46407419-BBFC-4508-8DA1-98A107F39F2C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {53DE777C-0330-4162-800A-4DB91DCD8CE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {596AFFC1-36D5-46B1-8477-64FCEA09E599} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F372AE6-63E2-4DDC-937B-B25BABB4BB54} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {737D3594-98FC-4111-895E-1FF454DA6F0B} - System32\Tasks\Samsung_PSSD_Registration_Plus => C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe [869224 2021-08-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics)
Task: {73DF4F5F-D6D8-4C31-B018-F6200C61C400} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusHotkey.exe [238736 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {80D015E4-55BE-4241-9332-3B1BCC7690F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {874790BF-827C-48C1-B027-ACA93B07BCC9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342880 2021-09-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {966EAFF3-1E02-453B-A0A4-E6F909716F58} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4596480 2020-06-19] (McAfee, LLC -> McAfee, LLC)
Task: {BFA5BA96-050B-4D21-AF32-B468AC2F30D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {DC8E1D09-3916-4A78-922E-D2596E82BF77} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.)
Task: {E1FE8861-CDC5-409C-A118-AB6E9E1A2312} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E86189F9-6D64-4C0D-8E0C-ACE9796C94E6} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusUpdateChecker.exe [759952 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {FF0ED277-54CC-41EE-9FB7-D2A676800F14} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7cc5c3a8-5c5e-4b1e-a808-2711e5015c7b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{822711fa-b48d-4959-ae87-6df0a4898c28}: [DhcpNameServer] 10.66.112.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\sanle\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-10]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: eeamdxml.default
FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\eeamdxml.default [2020-09-02]
FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release [2022-03-02]
FF Homepage: Mozilla\Firefox\Profiles\j3gqd8w8.default-release -> google.fr
FF Extension: (AdBlocker Ultimate) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-12-10]
FF Extension: (uBlock Origin) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-02-25]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-02-24]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe [870584 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe [1330360 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe [762032 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe [346256 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe [1038992 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe [601216 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [655768 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-28] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-22] (Malwarebytes Inc -> Malwarebytes)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182296 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\amdkmdag.sys [81597192 2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112848 2020-09-27] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSAIO.sys [35984 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusWmiAcpi.sys [45264 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [221096 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-28] (Malwarebytes Inc -> Malwarebytes)
S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [595896 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [107960 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43536 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-09] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 16:07 - 2022-03-02 16:08 - 000022257 _____ C:\Users\sanle\Downloads\FRST.txt
2022-03-02 16:07 - 2022-03-02 16:07 - 000000000 ____D C:\FRST
2022-03-02 16:06 - 2022-03-02 16:06 - 002312192 _____ (Farbar) C:\Users\sanle\Downloads\FRST64.exe
2022-02-28 19:52 - 2022-02-28 19:52 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-02-28 19:52 - 2022-02-28 19:52 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-02-28 19:52 - 2022-02-28 19:52 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-02-28 15:11 - 2022-02-28 15:11 - 000000000 ____D C:\Users\sanle\AppData\Local\CrashDumps
2022-02-28 14:27 - 2022-02-28 14:27 - 000563508 _____ C:\Users\sanle\OneDrive\Documents\Livret de famille .pdf
2022-02-28 14:25 - 2022-02-28 14:25 - 000353911 _____ C:\Users\sanle\OneDrive\Documents\Courrier AG2R.pdf
2022-02-22 21:13 - 2022-02-22 21:13 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-22 21:13 - 2022-02-22 21:13 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-02-22 21:13 - 2022-02-22 21:13 - 000000000 ____D C:\Users\sanle\AppData\Local\mbam
2022-02-22 21:12 - 2022-02-22 21:12 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000221096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-22 21:12 - 2022-02-22 21:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-22 21:11 - 2022-02-22 21:12 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-22 21:11 - 2022-02-22 21:11 - 002419896 _____ (Malwarebytes) C:\Users\sanle\Downloads\MBSetup.exe
2022-02-19 18:17 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-02-19 01:22 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 12:01 - 2022-02-18 12:01 - 000000000 ___HD C:\$WinREAgent
2022-02-13 21:02 - 2022-02-13 21:02 - 000000000 ____D C:\Users\sanle\Downloads\Pour Sandrine
2022-02-13 20:52 - 2022-02-13 20:54 - 373146355 _____ C:\Users\sanle\Downloads\Pour Sandrine.zip
2022-02-11 13:13 - 2022-02-11 13:25 - 000013867 _____ C:\Users\sanle\OneDrive\Documents\Demande reversion - suite.odt
2022-02-10 15:44 - 2022-02-10 15:44 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2022-02-10 15:38 - 2022-02-10 15:38 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll
2022-02-10 15:38 - 2022-02-10 15:38 - 000015020 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 11:26 - 2022-03-02 11:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-09 12:53 - 2022-02-09 12:53 - 000489917 _____ C:\Users\sanle\OneDrive\Documents\Prolongation arrêt.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-03-02 15:37 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-02 14:26 - 2020-09-02 12:44 - 000000000 ____D C:\Users\sanle\AppData\LocalLow\Mozilla
2022-03-02 13:15 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-03-02 12:57 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-02 11:31 - 2020-09-02 12:44 - 000000000 ____D C:\ProgramData\Mozilla
2022-03-02 11:30 - 2021-11-10 00:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-03-02 11:29 - 2021-11-10 00:09 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2022-03-02 11:29 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-03-01 15:32 - 2020-09-02 13:17 - 000000000 ____D C:\Users\sanle\AppData\Roaming\BankPerfect
2022-03-01 14:26 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\D3DSCache
2022-02-28 19:58 - 2021-11-10 00:09 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 19:58 - 2021-06-05 19:14 - 000771102 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-28 19:58 - 2021-06-05 19:14 - 000148364 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-28 19:58 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2022-02-28 19:52 - 2021-11-10 00:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-28 19:52 - 2021-03-12 21:16 - 000012288 ___SH C:\DumpStack.log.tmp
2022-02-28 19:51 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-25 11:11 - 2020-09-07 06:50 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-23 19:36 - 2021-12-02 21:02 - 000071337 _____ C:\Users\sanle\OneDrive\Documents\Doudou.odt
2022-02-22 21:12 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-21 16:05 - 2020-09-02 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-21 16:04 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\Packages
2022-02-20 13:23 - 2020-09-02 18:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-19 18:30 - 2019-10-23 20:38 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-19 12:36 - 2021-11-10 00:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-19 12:36 - 2020-09-02 12:44 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-02-11 10:48 - 2020-09-02 18:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-11 10:47 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-11 10:47 - 2020-09-02 18:09 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-10 16:15 - 2020-05-07 05:28 - 000000000 ____D C:\Users\sanle\AppData\Local\PlaceholderTileLogoFolder
2022-02-10 15:45 - 2021-11-10 00:06 - 000669896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 15:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 15:38 - 2021-11-10 00:06 - 003087360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-09 22:36 - 2019-10-23 20:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-02 22:51 - 2021-04-30 12:18 - 000000000 ___RD C:\Users\sanle\OneDrive\Documents\Scanned Documents
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================