Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022 Exécuté par sanle (administrateur) sur LAPTOP-4RQOL2AU (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X712DA_M712DA) (02-03-2022 16:07:34) Exécuté depuis C:\Users\sanle\Downloads Profils chargés: sanle Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.493 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOSD.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\MicrosoftTeams_22042.700.1195.9062_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.62\msedgewebview2.exe <12> (DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimizationStartupTask.exe (DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe (DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atieclxx.exe (explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe (explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <3> (explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13> (RuntimeBroker.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\atiesrxx.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe <3> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (sihost.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.95.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3770528 2021-11-15] (HP Inc. -> HP Inc.) HKU\S-1-5-21-4111342802-2546267125-1772061895-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {17CED33D-FE0E-49A9-A3C0-B19EC4ED6485} - System32\Tasks\McAfee\McAfee OOBE Patch Telemetry => C:\Program Files\Common Files\McAfee\ModuleCore\DayZeroOOBEFix_64.exe [3499728 2020-05-07] (McAfee, LLC -> McAfee, LLC) Task: {46407419-BBFC-4508-8DA1-98A107F39F2C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation) Task: {53DE777C-0330-4162-800A-4DB91DCD8CE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {596AFFC1-36D5-46B1-8477-64FCEA09E599} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-19] (Microsoft Corporation -> Microsoft Corporation) Task: {5F372AE6-63E2-4DDC-937B-B25BABB4BB54} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {737D3594-98FC-4111-895E-1FF454DA6F0B} - System32\Tasks\Samsung_PSSD_Registration_Plus => C:\Program Files (x86)\Samsung\Portable_SSD\SamsungPortableSSDMon_1.0.exe [869224 2021-08-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics) Task: {73DF4F5F-D6D8-4C31-B018-F6200C61C400} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusHotkey.exe [238736 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {80D015E4-55BE-4241-9332-3B1BCC7690F2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {874790BF-827C-48C1-B027-ACA93B07BCC9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e879bbabfd265223\RtkAudUService64.exe [1342880 2021-09-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {966EAFF3-1E02-453B-A0A4-E6F909716F58} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4596480 2020-06-19] (McAfee, LLC -> McAfee, LLC) Task: {BFA5BA96-050B-4D21-AF32-B468AC2F30D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {DC8E1D09-3916-4A78-922E-D2596E82BF77} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.) Task: {E1FE8861-CDC5-409C-A118-AB6E9E1A2312} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-19] (Microsoft Corporation -> Microsoft Corporation) Task: {E86189F9-6D64-4C0D-8E0C-ACE9796C94E6} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusUpdateChecker.exe [759952 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {FF0ED277-54CC-41EE-9FB7-D2A676800F14} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{7cc5c3a8-5c5e-4b1e-a808-2711e5015c7b}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{822711fa-b48d-4959-ae87-6df0a4898c28}: [DhcpNameServer] 10.66.112.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\sanle\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-10] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: eeamdxml.default FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\eeamdxml.default [2020-09-02] FF ProfilePath: C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release [2022-03-02] FF Homepage: Mozilla\Firefox\Profiles\j3gqd8w8.default-release -> google.fr FF Extension: (AdBlocker Ultimate) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-12-10] FF Extension: (uBlock Origin) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-02-25] FF Extension: (Malwarebytes Browser Guard) - C:\Users\sanle\AppData\Roaming\Mozilla\Firefox\Profiles\j3gqd8w8.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-02-24] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\AsusAppService\AsusAppService.exe [870584 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkNear\AsusLinkNear.exe [1330360 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSLinkRemote\AsusLinkRemote.exe [762032 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusOptimization.exe [346256 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSoftwareManager\AsusSoftwareManager.exe [1038992 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSwitch\AsusSwitch.exe [601216 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3042448 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [655768 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-01-28] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-22] (Malwarebytes Inc -> Malwarebytes) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182296 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0368651.inf_amd64_b285fe676d46bd23\B368434\amdkmdag.sys [81597192 2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112848 2020-09-27] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSSystemAnalysis\AsusSAIO.sys [35984 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_8c13dfd9a3013c06\ASUSOptimization\AsusWmiAcpi.sys [45264 2022-01-08] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2022-02-10] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [221096 2022-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-22] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-02-28] (Malwarebytes Inc -> Malwarebytes) S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [595896 2020-06-07] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [107960 2020-06-07] (McAfee, Inc. -> McAfee LLC.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43536 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-02-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-02-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-09] (Microsoft Windows -> Microsoft Corporation) R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-03-02 16:07 - 2022-03-02 16:08 - 000022257 _____ C:\Users\sanle\Downloads\FRST.txt 2022-03-02 16:07 - 2022-03-02 16:07 - 000000000 ____D C:\FRST 2022-03-02 16:06 - 2022-03-02 16:06 - 002312192 _____ (Farbar) C:\Users\sanle\Downloads\FRST64.exe 2022-02-28 19:52 - 2022-02-28 19:52 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-02-28 19:52 - 2022-02-28 19:52 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-02-28 19:52 - 2022-02-28 19:52 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-02-28 15:11 - 2022-02-28 15:11 - 000000000 ____D C:\Users\sanle\AppData\Local\CrashDumps 2022-02-28 14:27 - 2022-02-28 14:27 - 000563508 _____ C:\Users\sanle\OneDrive\Documents\Livret de famille .pdf 2022-02-28 14:25 - 2022-02-28 14:25 - 000353911 _____ C:\Users\sanle\OneDrive\Documents\Courrier AG2R.pdf 2022-02-22 21:13 - 2022-02-22 21:13 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-02-22 21:13 - 2022-02-22 21:13 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-02-22 21:13 - 2022-02-22 21:13 - 000000000 ____D C:\Users\sanle\AppData\Local\mbam 2022-02-22 21:12 - 2022-02-22 21:12 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-02-22 21:12 - 2022-02-22 21:12 - 000221096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-02-22 21:12 - 2022-02-22 21:12 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-02-22 21:12 - 2022-02-22 21:12 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-02-22 21:12 - 2022-02-22 21:12 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-02-22 21:11 - 2022-02-22 21:12 - 000000000 ____D C:\Program Files\Malwarebytes 2022-02-22 21:11 - 2022-02-22 21:11 - 002419896 _____ (Malwarebytes) C:\Users\sanle\Downloads\MBSetup.exe 2022-02-19 18:17 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2022-02-19 01:22 - 2022-02-21 16:05 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-02-18 12:01 - 2022-02-18 12:01 - 000000000 ___HD C:\$WinREAgent 2022-02-13 21:02 - 2022-02-13 21:02 - 000000000 ____D C:\Users\sanle\Downloads\Pour Sandrine 2022-02-13 20:52 - 2022-02-13 20:54 - 373146355 _____ C:\Users\sanle\Downloads\Pour Sandrine.zip 2022-02-11 13:13 - 2022-02-11 13:25 - 000013867 _____ C:\Users\sanle\OneDrive\Documents\Demande reversion - suite.odt 2022-02-10 15:44 - 2022-02-10 15:44 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2022-02-10 15:38 - 2022-02-10 15:38 - 000339968 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-02-10 15:38 - 2022-02-10 15:38 - 000311296 _____ C:\WINDOWS\system32\EsclScan.dll 2022-02-10 15:38 - 2022-02-10 15:38 - 000188416 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-02-10 15:38 - 2022-02-10 15:38 - 000077824 _____ C:\WINDOWS\system32\APMonUI.dll 2022-02-10 15:38 - 2022-02-10 15:38 - 000015020 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-02-10 11:26 - 2022-03-02 11:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-02-09 12:53 - 2022-02-09 12:53 - 000489917 _____ C:\Users\sanle\OneDrive\Documents\Prolongation arrêt.pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-03-02 15:37 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-03-02 14:26 - 2020-09-02 12:44 - 000000000 ____D C:\Users\sanle\AppData\LocalLow\Mozilla 2022-03-02 13:15 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-03-02 12:57 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-03-02 11:31 - 2020-09-02 12:44 - 000000000 ____D C:\ProgramData\Mozilla 2022-03-02 11:30 - 2021-11-10 00:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-03-02 11:29 - 2021-11-10 00:09 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2022-03-02 11:29 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-03-01 15:32 - 2020-09-02 13:17 - 000000000 ____D C:\Users\sanle\AppData\Roaming\BankPerfect 2022-03-01 14:26 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\D3DSCache 2022-02-28 19:58 - 2021-11-10 00:09 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-02-28 19:58 - 2021-06-05 19:14 - 000771102 _____ C:\WINDOWS\system32\perfh00C.dat 2022-02-28 19:58 - 2021-06-05 19:14 - 000148364 _____ C:\WINDOWS\system32\perfc00C.dat 2022-02-28 19:58 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2022-02-28 19:52 - 2021-11-10 00:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-02-28 19:52 - 2021-03-12 21:16 - 000012288 ___SH C:\DumpStack.log.tmp 2022-02-28 19:51 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-02-25 11:11 - 2020-09-07 06:50 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-02-23 19:36 - 2021-12-02 21:02 - 000071337 _____ C:\Users\sanle\OneDrive\Documents\Doudou.odt 2022-02-22 21:12 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-02-21 16:05 - 2020-09-02 12:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-02-21 16:04 - 2020-05-07 05:20 - 000000000 ____D C:\Users\sanle\AppData\Local\Packages 2022-02-20 13:23 - 2020-09-02 18:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-02-19 18:30 - 2019-10-23 20:38 - 000000000 ____D C:\Program Files\Microsoft Office 2022-02-19 12:36 - 2021-11-10 00:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-02-19 12:36 - 2020-09-02 12:44 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-02-11 10:48 - 2020-09-02 18:09 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-02-11 10:47 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-02-11 10:47 - 2020-09-02 18:09 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-02-10 16:15 - 2020-05-07 05:28 - 000000000 ____D C:\Users\sanle\AppData\Local\PlaceholderTileLogoFolder 2022-02-10 15:45 - 2021-11-10 00:06 - 000669896 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-02-10 15:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-02-10 15:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing 2022-02-10 15:38 - 2021-11-10 00:06 - 003087360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-02-09 22:36 - 2019-10-23 20:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-02-02 22:51 - 2021-04-30 12:18 - 000000000 ___RD C:\Users\sanle\OneDrive\Documents\Scanned Documents ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================