Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-08-2021 Exécuté par 33767 (administrateur) sur DESKTOP-JKJMPFA (HP HP Pavilion Gaming Desktop TG01-0xxx) (20-08-2021 23:57:27) Exécuté depuis C:\Users\33767\OneDrive\Bureau\FRST-OlderVersion Profils chargés: 33767 Platform: Windows 10 Home Version 20H2 19042.1165 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_9.0.0.0_x86__v826wp6bftszj\TranslucentTB\TranslucentTB.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.8.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe (Gaijin Network LTD -> Gaijin) C:\Users\33767\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe (Gaijin Network LTD -> Gaijin) D:\Epic Games\WarThunder\launcher.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28> (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_35df954651b1f88f\x64\TouchpointAnalyticsClientService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\BridgeCommunication.exe <2> (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\DiagsCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\SysInfoCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.8.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ChromiumContainer\delegate.exe <3> (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\4.5.102.0\McCSPServiceHost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <3> (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_21_4\mcapexe.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\CoreUI\Launch.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MAT\McPB0B2.tmp (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MQS\QcShm.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MSC\MfeBrowserHost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\33767\AppData\Local\Microsoft\OneDrive\21.150.0725.0001\FileCoAuth.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\33767\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2108.1001.8.0_x64__8wekyb3d8bbwe\XboxAppServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.56.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxApp_48.78.15001.0_x64__8wekyb3d8bbwe\XboxApp.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe (mylivewallpapers.com) [Fichier non signé] C:\Users\33767\AppData\Local\Temp\Temp1_MLWapp2-1.zip\MLWapp2-1.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe <2> (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\parsecd.exe (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtAudioServ.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (rocksdanister) C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.67.0_x86__97hta09mmv6hy\livelywpf\livelywpf.exe (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3086208 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [100580600 2020-08-04] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-12] (HP Inc.) [Fichier non signé] HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [Gaijin.Net Updater] => C:\Users\33767\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [430272 2021-06-09] (Parsec Cloud, Inc. -> Parsec) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [EnlistedLauncher] => D:\Enlisted\launcher.exe [5846760 2020-12-08] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144816 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\Run: [MLWapp2-1] => C:\Users\33767\AppData\Local\Temp\Temp1_MLWapp2-1.zip\MLWapp2-1.exe [4267520 2021-03-12] (mylivewallpapers.com) [Fichier non signé] <==== ATTENTION HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\33767\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\33767\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-1068070628-4203786995-2142645376-1001\...\RunOnce: [Uninstall 21.139.0711.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\33767\AppData\Local\Microsoft\OneDrive\21.139.0711.0001" HKU\S-1-5-21-1068070628-4203786995-2142645376-1005\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-12] (HP Inc.) [Fichier non signé] HKU\S-1-5-21-1068070628-4203786995-2142645376-1005\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\gaspa\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-1068070628-4203786995-2142645376-1005\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\gaspa\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-1068070628-4203786995-2142645376-1005\...\RunOnce: [Uninstall 20.169.0823.0006\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\gaspa\AppData\Local\Microsoft\OneDrive\20.169.0823.0006\amd64" HKU\S-1-5-21-1068070628-4203786995-2142645376-1005\...\RunOnce: [Uninstall 20.169.0823.0006] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\gaspa\AppData\Local\Microsoft\OneDrive\20.169.0823.0006" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-20] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\92.1.28.106\Installer\chrmstp.exe [2021-08-20] (Brave Software, Inc. -> Brave Software, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0695E363-B88A-40D3-A1A3-E7A02D334E12} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {121BE9C6-F40C-4939-AE39-DE29AB31E443} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO Task: {124B93E5-86F7-42F8-9F44-1E93A0CE9EBB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-13] (Google LLC -> Google LLC) Task: {17177628-AEE3-411D-98F9-A5B7FA0AE916} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {19366262-83D1-4624-8FDF-0CBD5E96D516} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {1E40C023-8BA2-4077-8CF0-FA18E5FF1A3A} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1F903DA1-6BA1-4A87-A3D2-ED519F3DB436} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH8B6340B8 => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1118896 2021-07-10] (HP Inc. -> HP Inc.) Task: {24E61218-F4CD-4187-BA17-1CF4DC5B7451} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-12] (Microsoft Corporation -> Microsoft Corporation) Task: {3482F46D-43D0-4106-A481-0C688B1C2184} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {41DB7BEE-6ACC-48B8-9F40-84B24D1D2C3E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4D6B20AC-BD35-4AD6-BA7A-969E6CFD760C} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {4DAD3343-C851-48FA-9D76-EC9D6A76AC7D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest Task: {4DF76FE1-7E5E-4684-BF0A-31DCB046B7FC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {51C46BFB-329F-4CD5-9A40-E883BB2C9B22} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError Task: {5354388A-B735-4C2D-8442-AD31C2B07FAA} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1084720 2020-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {540256A0-27BD-402C-82F5-30450F5056E0} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION Task: {5DB1044B-A9F1-4C66-8844-29D0BE297838} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1032448 2021-08-02] (McAfee, LLC -> McAfee, LLC) Task: {62B52953-EEB9-4582-9FC6-27BCDDCC808D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7BACC1A6-08E5-48FA-936D-46897743F18E} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4114728 2021-04-29] (McAfee, LLC -> McAfee, LLC) Task: {7F72F92B-32E1-40FC-9561-8B98DD6CB1E4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {8586394B-5EE3-4681-BEC7-93C3D9005F3D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {87AC80A4-338B-416C-956F-997EB3E6B712} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {8FB82853-EFAC-4874-B563-4070473FAAE9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-12] (Microsoft Corporation -> Microsoft Corporation) Task: {8FC8D9C6-1806-4D9D-B798-0953CA8DFC93} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-13] (Google LLC -> Google LLC) Task: {9B7E11CE-5064-40D9-B5F7-C3DAF69B19AB} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.) Task: {AAAFD4EB-BC97-47FD-892B-54E3F5AEB3D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AAD9800E-3423-44BE-8CB2-37FB294EB6B9} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-01-07] (McAfee, Inc. -> McAfee, LLC.) Task: {B84C9ED3-7195-44E4-9F6D-7F946CECE2D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BB879B42-5F0D-4C39-B116-065011A7BCEB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BD53EAD2-FDAE-4F59-899E-05E6BD6260D2} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [757944 2021-05-06] (McAfee, LLC -> McAfee, LLC) Task: {C4147009-1D86-444B-8D4D-F3A3E54C7245} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-07-10] (HP Inc. -> HP Inc.) Task: {C73F802E-86B2-475C-BF8B-7ABBF147E492} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1118896 2021-07-10] (HP Inc. -> HP Inc.) Task: {C9406149-AF5D-4709-B088-DCCF89798B15} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {CC5FA726-2A54-4F28-81A0-01D5E25C1557} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1 Task: {CD3EE48D-34E9-477B-B2CB-2B3E634ABB46} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1032448 2021-08-02] (McAfee, LLC -> McAfee, LLC) Task: {D1ABD776-6AD9-4EB4-92D4-CD633F555F61} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags: Task: {DD0BA75A-1A75-41FC-B451-4674902D37BE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI Task: {DD4D5B52-0E06-4EF8-9CC0-FEF18FA7FB34} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF Task: {DE15AAAC-4A18-418F-B2DE-4B313118DEFE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2 Task: {E0C3117B-7527-4889-BB68-03DDB582156E} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => cmd /c start hpdiags://SmartCheckTest Task: {E5F00379-D8E3-4284-9183-3B184819DD7B} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {EA6A79C3-03D7-4838-8576-FA67BEBA2E69} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-07-10] (HP Inc. -> HP Inc.) Task: {EDFA9BA8-CB88-4116-BD78-F4B9D89AE7C2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation) Task: {FAA02743-3096-48D9-8D90-6C3970AD6C06} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {FB16BBE0-5759-495F-870F-83DE5CE79CB4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FC6FC6DA-3BF9-49DB-9C85-2CA09AD5222F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1118896 2021-07-10] (HP Inc. -> HP Inc.) Task: {FE399690-9F6C-472F-8587-A761B6F508E1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-16] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{446c07b4-0a1d-4ad3-aff3-d06367cb2844}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\33767\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-20] Edge Notifications: Default -> hxxps://forums.commentcamarche.net FireFox: ======== FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => non trouvé(e) FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2021-08-20] [] [non signé] FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2021-08-12] (McAfee, LLC -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2021-08-12] (McAfee, LLC -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) Chrome: ======= CHR Profile: C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default [2021-08-20] CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E211FR91082G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Slides) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-13] CHR Extension: (Docs) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-13] CHR Extension: (Google Drive) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31] CHR Extension: (YouTube) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-13] CHR Extension: (Sheets) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-13] CHR Extension: (McAfee® WebAdvisor) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-08-20] CHR Extension: (Google Docs hors connexion) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29] CHR Extension: (Office Online - Copier et coller) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2020-11-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31] CHR Extension: (Gmail) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-31] CHR Extension: (Chrome Media Router) - C:\Users\33767\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-21] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] Opera: ======= OPR Profile: C:\Users\33767\AppData\Roaming\Opera Software\Opera Stable [2020-10-27] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} Brave: ======= BRA Profile: C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2020-10-06] BRA Extension: (Brave Local Data Files Updater) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2020-10-06] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2020-10-06] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2020-10-06] BRA Extension: (Brave SpeedReader Updater) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-10-06] BRA Extension: (Brave NTP sponsored images) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2020-10-06] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\33767\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2020-10-06] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 0162971629494856mcinstcleanup; C:\ProgramData\McInstTemp0162971629494856\McInst.exe [872896 2021-07-26] (McAfee, LLC -> McAfee, LLC) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-24] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-06] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810928 2021-05-11] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [553264 2021-06-15] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 HnGEpicService; D:\Epic Games\HeroesGeneralsWWII\hngservice.exe [788776 2021-08-16] (Reto-Moto ApS -> Reto-Moto ApS) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\AppHelperCap.exe [738368 2021-06-27] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\DiagsCap.exe [735832 2021-06-27] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\NetworkCap.exe [735824 2021-06-27] (HP Inc. -> HP Inc.) R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c95e7d335bd30097\x64\SysInfoCap.exe [737368 2021-06-27] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_35df954651b1f88f\x64\TouchpointAnalyticsClientService.exe [489584 2021-06-18] (HP Inc. -> HP Inc.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [977824 2021-08-12] (McAfee, LLC -> McAfee, LLC) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_21_4\McApExe.exe [797576 2021-08-12] (McAfee, LLC -> McAfee, LLC) S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [460704 2019-08-14] (McAfee, LLC. -> McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\4.5.102.0\\McCSPServiceHost.exe [2825792 2021-07-08] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [652232 2021-05-11] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [652232 2021-05-11] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [652232 2021-05-11] (McAfee, Inc. -> McAfee, LLC) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1671760 2021-08-03] (McAfee, LLC -> McAfee, LLC) S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [21753376 2021-05-21] (Mail.Ru LLC -> LLC Mail.Ru) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Parsec; C:\Program Files\Parsec\pservice.exe [395968 2021-05-22] (Parsec Cloud, Inc. -> Parsec) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4289856 2021-06-15] (McAfee, LLC -> McAfee, LLC) S3 Rockstar Service; D:\SteamLibrary\Launcher\RockstarService.exe [1934744 2021-07-19] (Rockstar Games, Inc. -> Rockstar Games) R2 RtkBtAudioServ; C:\WINDOWS\RtkBtAudioServ.exe [233040 2020-09-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10147296 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1637936 2021-07-13] (WildTangent Inc -> ) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [80400 2021-05-19] (McAfee, Inc. -> McAfee, LLC) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.) R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.) R2 McPvDrv; C:\WINDOWS\system32\drivers\McPvDrv.sys [97696 2021-07-27] (McAfee, LLC -> McAfee, LLC) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [550944 2021-05-19] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [390664 2021-05-19] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85952 2021-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [527368 2021-05-19] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1037320 2021-05-19] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [590032 2021-04-16] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [120512 2021-04-16] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [121352 2021-05-19] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [257552 2021-05-19] (McAfee, Inc. -> McAfee, LLC) S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [20986200 2021-05-21] (Mail.Ru LLC -> LLC Mail.Ru) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek) R3 RtkA2dp; C:\WINDOWS\System32\drivers\RtkA2dp.sys [222320 2020-06-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [96984 2019-05-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8241992 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-08-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-08-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-12] (Microsoft Windows -> Microsoft Corporation) U1 aswbdisk; pas de ImagePath S3 mfeaack01; \Device\mfeaack01.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-20 23:28 - 2021-08-20 23:28 - 008674184 _____ () C:\Users\33767\Downloads\XboxInstaller.exe 2021-08-20 23:27 - 2021-08-20 23:27 - 000000000 ____D C:\ProgramData\McInstTemp0162971629494856 2021-08-20 23:24 - 2021-08-20 23:27 - 000000000 ____D C:\ProgramData\McInstTemp0155921629494640 2021-08-20 23:23 - 2021-08-20 23:23 - 000000000 ____D C:\Users\33767\AppData\Local\INetHistory 2021-08-20 23:22 - 2021-08-20 23:22 - 000307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0 2021-08-20 23:22 - 2021-08-20 23:22 - 000213456 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll.0 2021-08-20 23:22 - 2021-08-20 23:22 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2021-08-12 23:03 - 2021-08-12 23:03 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-08-12 23:03 - 2021-08-12 23:03 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-08-12 23:03 - 2021-08-12 23:03 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-08-12 23:03 - 2021-08-12 23:03 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-08-12 23:03 - 2021-08-12 23:03 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-08-12 23:03 - 2021-08-12 23:03 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-08-12 23:03 - 2021-08-12 23:03 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-08-12 22:57 - 2021-08-12 22:57 - 000000000 ___HD C:\$WinREAgent 2021-08-12 14:57 - 2021-08-12 14:57 - 000000000 ____D C:\Users\33767\AppData\Local\Boston 2021-08-12 11:44 - 2021-08-12 11:44 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-08-12 11:44 - 2021-08-12 11:44 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-08-12 11:44 - 2021-08-12 11:44 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-08-12 11:44 - 2021-08-12 11:44 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-20 23:57 - 2020-10-27 11:14 - 000000000 ____D C:\FRST 2021-08-20 23:55 - 2020-09-12 18:31 - 000000000 ____D C:\Program Files (x86)\Steam 2021-08-20 23:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-20 23:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-08-20 23:37 - 2021-01-19 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2021-08-20 23:37 - 2020-09-13 18:54 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-20 23:30 - 2020-09-12 11:11 - 000000000 ____D C:\Users\33767\AppData\Local\ConnectedDevicesPlatform 2021-08-20 23:30 - 2019-04-15 17:39 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-08-20 23:29 - 2020-05-16 20:49 - 000000000 ____D C:\Program Files\Common Files\McAfee 2021-08-20 23:28 - 2020-09-16 15:04 - 000003354 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon 2021-08-20 23:27 - 2020-09-16 15:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2021-08-20 23:25 - 2020-10-06 21:02 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2021-08-20 23:25 - 2020-09-16 15:06 - 001974706 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-08-20 23:25 - 2019-12-07 16:49 - 000867784 _____ C:\WINDOWS\system32\perfh00C.dat 2021-08-20 23:25 - 2019-12-07 16:49 - 000183562 _____ C:\WINDOWS\system32\perfc00C.dat 2021-08-20 23:25 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-08-20 23:23 - 2020-09-13 18:54 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-20 23:23 - 2020-05-16 20:49 - 000000000 ____D C:\Program Files (x86)\McAfee 2021-08-20 23:22 - 2020-09-12 11:11 - 000000000 ____D C:\Users\33767\AppData\Local\Packages 2021-08-20 23:22 - 2020-05-16 20:40 - 000000000 ____D C:\ProgramData\Packages 2021-08-20 23:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-20 23:21 - 2020-10-28 16:52 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E560270A-DB04-4D03-B48A-879A5DEBF7AD} 2021-08-20 23:20 - 2020-09-16 15:04 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-20 23:20 - 2020-09-16 15:04 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-20 23:20 - 2020-05-16 20:41 - 000000000 ____D C:\ProgramData\NVIDIA 2021-08-20 23:19 - 2021-01-14 18:52 - 000000000 ____D C:\ProgramData\Origin 2021-08-20 23:19 - 2020-09-16 15:04 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1068070628-4203786995-2142645376-1001 2021-08-20 23:19 - 2020-09-16 15:00 - 000002428 _____ C:\Users\33767\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-08-20 23:19 - 2020-09-12 11:13 - 000000000 ___RD C:\Users\33767\OneDrive 2021-08-20 23:18 - 2021-01-20 12:22 - 000000000 __RSD C:\Users\33767\OneDrive\Documents\Coffres-forts McAfee 2021-08-20 23:18 - 2021-01-14 18:52 - 000000000 ____D C:\Users\33767\AppData\Roaming\Origin 2021-08-20 23:18 - 2021-01-14 18:52 - 000000000 ____D C:\Users\33767\AppData\Local\Origin 2021-08-20 23:17 - 2020-09-16 15:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-08-20 23:17 - 2020-09-16 14:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-08-20 23:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-08-20 23:17 - 2019-12-07 11:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2021-08-16 13:37 - 2020-09-15 20:58 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-08-16 13:37 - 2020-05-16 20:08 - 000000000 ____D C:\Program Files\Microsoft Office 2021-08-16 13:29 - 2020-09-16 15:00 - 000000000 ____D C:\Users\33767 2021-08-13 21:26 - 2020-09-12 19:24 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2021-08-12 23:09 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2021-08-12 23:08 - 2020-09-16 14:59 - 000565240 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-08-12 23:07 - 2020-09-16 15:50 - 000000000 ____D C:\WINDOWS\HoloShell 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-08-12 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-08-12 23:07 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-08-12 23:06 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-08-12 20:25 - 2021-02-22 12:14 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-08-12 20:25 - 2020-09-15 20:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-08-12 20:23 - 2020-09-15 20:53 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-08-12 14:57 - 2020-05-16 20:39 - 000000000 ____D C:\ProgramData\Package Cache 2021-08-12 12:16 - 2021-01-14 18:53 - 000000000 ____D C:\Program Files (x86)\Origin 2021-08-12 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-08-12 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-08-12 11:42 - 2019-04-15 17:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-08-12 11:40 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-08-12 11:35 - 2020-10-06 21:40 - 000000000 ____D C:\Users\33767\AppData\Local\CrashDumps 2021-08-12 11:32 - 2020-09-16 15:04 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-12 11:32 - 2020-09-16 15:04 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-27 04:19 - 2021-01-19 21:39 - 000097696 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\McPvDrv.sys 2021-07-22 10:24 - 2021-01-14 18:57 - 000000000 ____D C:\Program Files (x86)\Origin Games ==================== Fichiers à la racine de certains dossiers ======== 2020-10-03 22:26 - 2020-10-04 13:36 - 000000117 _____ () C:\Users\33767\AppData\Roaming\D2Info0 2020-10-03 22:26 - 2020-10-03 22:45 - 000000008 _____ () C:\Users\33767\AppData\Roaming\DofusAppId0_1 2020-10-04 13:36 - 2020-10-04 13:43 - 000000008 _____ () C:\Users\33767\AppData\Roaming\DofusAppId0_2 2020-12-03 21:15 - 2020-12-03 21:50 - 000000015 _____ () C:\Users\33767\AppData\Roaming\obs-virtualcam.txt 2020-10-06 21:17 - 2020-10-06 21:17 - 000016438 _____ () C:\Users\33767\AppData\Local\partner.bmp 2021-03-21 21:43 - 2021-07-22 10:26 - 000031754 _____ () C:\Users\33767\AppData\Local\PlariumPlay.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================