Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Exécuté par yannis (administrateur) sur LAPTOP-OVBD23JS (ASUSTeK COMPUTER INC. UX430UAR) (12-01-2021 08:31:24)
Exécuté depuis C:\Users\yannis\Downloads
Profils chargés: yannis
Platform: Windows 10 Home Version 2004 19041.685 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Wondershare\Dr.Fone\Addins\Recovery\ElevationService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ARCAI -> Arcai.com) C:\Program Files (x86)\arcai.com\aips.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe
(ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBox.Agent.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy\ASUS Battery Health Charging\BhcMgr.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\ElanFP\ELANFPService.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <30>
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_caabc087e4b97a65\Intel_PIE_Service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\3.9.126.0\McCSPServiceHost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_20_9\mcapexe.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MAT\McPvTray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe
(ProtonVPN AG -> ) C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe
(ProtonVPN AG -> The OpenVPN Project) C:\Program Files (x86)\Proton Technologies\ProtonVPN\Resources\64-bit\openvpn.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.bin
(The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\soffice.exe
(The Document Foundation -> The Document Foundation) C:\Program Files\LibreOffice\program\swriter.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-467671635-455615153-3267154022-1002\...\Run: [Discord] => C:\Users\yannis\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-467671635-455615153-3267154022-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3416352 2020-10-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-467671635-455615153-3267154022-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRUE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-467671635-455615153-3267154022-1002\...\Run: [Adaware Protect] => C:\Program Files\Adaware Protect\AdawareProtect.exe
HKLM\...\Print\Monitors\EPSON ET-2650 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRUE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0A5EF19C-51C0-42E4-9997-F9706FC523DF} - System32\Tasks\GoogleUpdateTaskMachineCore1d4f4a4f96504e5 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-10] (Google Inc -> Google LLC)
Task: {0F92B114-8235-4AEC-A012-F2F827C80792} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {11F99EB1-99CB-475B-AC1A-42F7FBAA5080} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1EB17567-7B89-419C-8606-B115DEADF822} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {21335440-881B-4785-9AC3-3CF2E38F82E6} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [993400 2020-10-30] (McAfee, LLC -> McAfee, LLC)
Task: {2B78CDAC-2CFF-4E10-A93D-EF4A3339B395} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {2E9377DF-D384-4E83-A9D6-B74613BE5FC6} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2019-12-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {2FAA29C9-6B09-4622-9458-A58AAAA29AE2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {35E6ACA2-46B9-47F0-BCFC-C88E1EB34371} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4000984 2020-11-04] (McAfee, LLC -> McAfee, LLC)
Task: {39641B65-448B-4F9E-A799-112AEFE64CB4} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [736704 2020-11-03] (McAfee, LLC -> McAfee, LLC)
Task: {56A5A863-2C93-4259-9FDF-883D26000ADE} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {57876A19-FEBC-4A74-9422-CECC9ECDE8C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {602F3693-27D8-482E-9CF6-181EFEB5DDDD} - System32\Tasks\ASUS Hello => C:\Program Files (x86)\ASUS\ASUS Hello\ASUSHelloBG.exe [630160 2018-04-11] (ASUSTeK Computer Inc. -> )
Task: {6E5C2EE3-DECB-4FB8-9E9A-771EE68D2242} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-24] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {79D1E4B9-6D28-4A57-B462-6940AE8043AD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-10] (Google Inc -> Google LLC)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION
Task: {7CDB75F1-F57B-46EE-83AE-23F1178D2253} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [993400 2020-10-30] (McAfee, LLC -> McAfee, LLC)
Task: {802913A6-CEB4-4708-8064-2DBCC0DB3D4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-10] (Google Inc -> Google LLC)
Task: {A9337769-75B3-4F59-BF9D-90761FD478C4} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-01-11] (McAfee, Inc. -> McAfee, LLC.)
Task: {AF662B30-3F2F-4226-A28B-574CBFDEDDFD} - System32\Tasks\EPSON ET-2650 Series Update {C27E5F0F-3692-4756-8E54-E24ACE5B8EB2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRUE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {B22149DA-6A66-4DEE-B684-0CB4F98E259A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\EPSON ET-2650 Series Update {C27E5F0F-3692-4756-8E54-E24ACE5B8EB2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRUE.EXE:/EXE:{C27E5F0F-3692-4756-8E54-E24ACE5B8EB2} /F:UpdateWORKGROUP\LAPTOP-OVBD23JS$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.81.0.1
Tcpip\..\Interfaces\{5f7f7969-9bd5-4f9d-8dec-3ec24842d754}: [DhcpNameServer] 10.81.0.1
Tcpip\..\Interfaces\{beac4699-9e00-4d7a-bedf-5e6adb9e3575}: [DhcpNameServer] 192.168.1.1

Edge:
======
Edge Profile: C:\Users\yannis\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-11]

FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => non trouvé(e)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2021-01-11] [] [non signé]
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-11-04] (McAfee, LLC -> )
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-11-04] (McAfee, LLC -> )

Chrome:
=======
CHR Profile: C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default [2021-01-12]
CHR Notifications: Default -> hxxps://csgofast123.com; hxxps://linkvertise.com
CHR Session Restore: Default -> est activé.
CHR Extension: (Slides) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-10]
CHR Extension: (Docs) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-10]
CHR Extension: (Google Drive) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23]
CHR Extension: (Slither Sessions) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbakonnkdadhgdlcnkfefpepeiabaacp [2020-09-26]
CHR Extension: (Gum Gum Streaming) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjcdloponocepjadjfkhbcjagpmkdajj [2020-11-25]
CHR Extension: (YouTube) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-10]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-15]
CHR Extension: (Tampermonkey) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-09-26]
CHR Extension: (Sheets) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-10]
CHR Extension: (Google Docs hors connexion) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-17]
CHR Extension: (Correcteur instantané de fautes d'orthographe et de grammaire – Spellboy) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\goidmlcekbencdciekigbbdaiilpdkli [2019-07-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-10]
CHR Extension: (Gmail) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\yannis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-22]
CHR Profile: C:\Users\yannis\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-09]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AIPS; C:\Program Files (x86)\arcai.com\aips.exe [1846560 2020-11-28] (ARCAI -> Arcai.com)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 ElevationService; C:\Program Files (x86)\Wondershare\Dr.Fone\Addins\Recovery\ElevationService.exe [913408 2020-08-11] () [Fichier non signé]
R2 GiftBox.Service; C:\Program Files (x86)\ASUS\ASUS GiftBox Service\GiftBoxService.exe [285144 2018-04-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_9\McApExe.exe [779592 2020-11-04] (McAfee, LLC -> McAfee, LLC)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [583344 2020-11-03] (McAfee, LLC -> McAfee, LLC)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.9.126.0\\McCSPServiceHost.exe [2785184 2020-11-30] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1584272 2020-11-27] (McAfee, LLC -> McAfee, LLC)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4217416 2020-11-27] (McAfee, LLC -> McAfee, LLC)
R3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [98624 2020-09-11] (ProtonVPN AG -> )
R3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-09-11] (ProtonVPN AG -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-10-16] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 ZenAnywhere; C:\Program Files\Orbweb Inc\ASUS ZenAnywhere\ZenAnywhere.exe [156056 2018-04-23] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhere Updater; C:\Program Files\Orbweb Inc\ASUS ZenAnywhere\updater.exe [156056 2018-04-23] (Orbweb Taiwan Inc. -> Orbweb Inc.)
S3 ZenAnywhereNetworkService; C:\Program Files\Orbweb Inc\ASUS ZenAnywhere\bin\ZenAnywhereNetworkService.exe [69016 2017-04-07] (Orbweb Taiwan Inc. -> Orbweb Inc.)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [75704 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218960 2020-05-26] (McAfee, LLC -> McAfee, Inc.)
R2 McPvDrv; C:\WINDOWS\system32\drivers\McPvDrv.sys [89096 2020-05-26] (McAfee, LLC -> McAfee, LLC)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [531896 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [385464 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85944 2020-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [522168 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1019832 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [603072 2020-09-17] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [107968 2020-09-17] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116664 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252344 2020-09-22] (McAfee, Inc. -> McAfee, LLC)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 RAZERSEIRENPRO; C:\WINDOWS\System32\drivers\SEIRENPRO.sys [3807432 2015-07-21] (WDKTestCert chou,130795027549068093 -> Razer Inc.)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 UcmCxRtk; C:\WINDOWS\System32\drivers\UcmCxRtk.sys [101344 2017-08-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-11-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-11-20] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-12 08:31 - 2021-01-12 08:32 - 000024440 _____ C:\Users\yannis\Downloads\FRST.txt
2021-01-12 08:30 - 2021-01-12 08:31 - 000000000 ____D C:\FRST
2021-01-12 08:30 - 2021-01-12 08:30 - 002281472 _____ (Farbar) C:\Users\yannis\Downloads\FRST64 (1).exe
2021-01-12 08:29 - 2021-01-12 08:29 - 002281472 _____ (Farbar) C:\Users\yannis\Downloads\FRST64.exe
2021-01-11 22:28 - 2021-01-11 22:28 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210111_222850.txt
2021-01-11 22:00 - 2021-01-11 22:00 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210111_220001.txt
2021-01-11 20:10 - 2021-01-12 08:07 - 000000000 __RSD C:\Users\yannis\OneDrive\Documents\Coffres-forts McAfee
2021-01-11 20:10 - 2021-01-11 20:10 - 000002093 _____ C:\ProgramData\Bureau\McAfee® Total Protection.lnk
2021-01-11 20:10 - 2021-01-11 20:10 - 000000000 ____D C:\Users\yannis\AppData\Local\McAfee File Lock
2021-01-11 20:10 - 2021-01-11 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-01-11 20:10 - 2020-05-26 00:12 - 000089096 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\McPvDrv.sys
2021-01-11 20:09 - 2020-05-26 00:11 - 000218960 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2021-01-11 20:08 - 2021-01-11 20:08 - 000003370 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2021-01-11 20:07 - 2020-09-14 14:01 - 000579040 _____ (McAfee, LLC) C:\WINDOWS\system32\mfevtps.exe
2021-01-11 20:06 - 2021-01-11 20:10 - 000000000 ____D C:\Program Files\McAfee
2021-01-11 20:06 - 2021-01-11 20:10 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-01-11 20:06 - 2021-01-11 20:09 - 000000000 ____D C:\Program Files\Common Files\McAfee
2021-01-11 20:06 - 2021-01-11 20:07 - 000000000 ____D C:\Program Files\McAfee.com
2021-01-11 20:06 - 2021-01-11 20:06 - 000000000 ____D C:\Program Files\Common Files\AV
2021-01-11 19:48 - 2021-01-11 20:12 - 000000047 _____ C:\Users\yannis\AppData\Roaming\MCVi2UserDetail.ini
2021-01-11 19:47 - 2021-01-11 19:48 - 005794408 _____ (McAfee, LLC) C:\Users\yannis\Downloads\mcafee_trial_setup_433.0207.3919_key.exe
2021-01-11 19:42 - 2021-01-11 19:42 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210111_194224.txt
2021-01-11 18:47 - 2021-01-11 18:47 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210111_184704.txt
2021-01-11 07:47 - 2021-01-11 07:48 - 030536752 _____ (Piriform Software Ltd) C:\Users\yannis\Downloads\ccsetup575.exe
2021-01-10 23:20 - 2021-01-10 23:20 - 000000000 ____D C:\Users\yannis\AppData\Local\AdAwareDesktop
2021-01-10 23:20 - 2021-01-10 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adaware Antivirus
2021-01-10 23:10 - 2021-01-11 19:44 - 000000000 ____D C:\Users\yannis\AppData\Roaming\Adaware Protect
2021-01-10 23:09 - 2021-01-10 23:09 - 016809712 _____ (adaware) C:\Users\yannis\Downloads\adawareprotect.exe
2021-01-10 22:32 - 2021-01-11 18:47 - 000000000 ____D C:\ProgramData\AVG
2021-01-10 22:31 - 2021-01-10 22:31 - 000259344 _____ (AVG Technologies CZ, s.r.o.) C:\Users\yannis\Downloads\avg_antivirus_free_setup.exe
2021-01-10 22:29 - 2021-01-10 22:29 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210110_222938.txt
2021-01-10 22:04 - 2021-01-10 22:29 - 000000000 ____D C:\ProgramData\Avast Software
2021-01-10 22:03 - 2021-01-10 22:03 - 000220392 _____ (AVAST Software) C:\Users\yannis\Downloads\avast_free_antivirus_setup_online.exe
2021-01-06 11:28 - 2021-01-06 11:28 - 000015856 _____ C:\Users\yannis\OneDrive\Documents\Français LA9.odt
2021-01-05 12:18 - 2021-01-07 17:52 - 000020596 _____ C:\Users\yannis\OneDrive\Documents\yannis espagnol exposé.odt
2021-01-04 21:49 - 2021-01-04 21:50 - 002645332 _____ C:\WINDOWS\Minidump\010421-10546-01.dmp
2021-01-04 21:49 - 2021-01-04 21:50 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-04 21:49 - 2021-01-04 21:49 - 883537837 _____ C:\WINDOWS\MEMORY.DMP
2021-01-04 21:49 - 2021-01-04 21:49 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210104_214955.txt
2021-01-02 10:16 - 2021-01-02 10:16 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210102_101646.txt
2021-01-01 20:04 - 2021-01-01 20:04 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20210101_200412.txt
2020-12-31 15:17 - 2020-12-31 15:17 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20201231_151700.txt
2020-12-29 21:44 - 2020-12-29 21:44 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20201229_214457.txt
2020-12-25 10:58 - 2020-12-25 10:58 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20201225_105857.txt
2020-12-21 11:41 - 2020-12-21 11:41 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20201221_114140.txt
2020-12-16 17:25 - 2020-12-16 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2020-12-16 17:25 - 2020-12-16 17:25 - 000000000 ____D C:\Program Files (x86)\EPSON Software
2020-12-16 14:59 - 2020-12-16 14:59 - 000000000 ____T C:\WINDOWS\system32\Elan_FP_Image_20201216_145933.txt
2020-12-16 14:38 - 2020-12-16 14:38 - 000074822 _____ C:\Users\yannis\Downloads\aca-attestation.pdf
2020-12-16 14:05 - 2020-12-16 14:05 - 000917063 _____ C:\Users\yannis\Downloads\liste-des-ressources.pdf
2020-12-16 10:53 - 2020-12-16 10:53 - 000729253 _____ C:\Users\yannis\Downloads\Le cours sur Les Fleurs du Mal.pdf
2020-12-15 10:21 - 2020-12-15 10:21 - 001802205 _____ C:\Users\yannis\Downloads\BODACC-B_20090016_0001_p000.pdf
2020-12-15 10:01 - 2020-12-15 10:27 - 000015622 _____ C:\Users\yannis\OneDrive\Documents\Histoire p. 98 à 99.odt
2020-12-15 09:45 - 2020-12-15 09:45 - 003214490 _____ C:\Users\yannis\Downloads\Histoire_Lycee_1re_LDP_completzip.zip

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-01-12 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-12 08:08 - 2020-08-29 19:10 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-12 08:08 - 2020-08-29 19:10 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-12 08:07 - 2019-07-01 14:40 - 000000000 __SHD C:\Users\yannis\IntelGraphicsProfiles
2021-01-11 22:50 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-11 22:38 - 2020-08-29 19:13 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-11 22:38 - 2019-12-07 15:49 - 000757852 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-11 22:38 - 2019-12-07 15:49 - 000142606 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-11 22:30 - 2020-12-05 22:40 - 000000000 ____D C:\Program Files (x86)\arcai.com
2021-01-11 22:28 - 2020-09-26 21:06 - 000000000 ____D C:\Users\yannis\AppData\Roaming\discord
2021-01-11 22:28 - 2020-08-29 19:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-11 22:28 - 2020-08-29 19:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-11 22:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-11 22:28 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-11 22:28 - 2019-06-14 22:22 - 000000000 ___HD C:\Intel
2021-01-11 21:23 - 2019-06-14 22:29 - 000000000 ____D C:\ProgramData\McAfee
2021-01-11 21:18 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-11 21:08 - 2020-08-29 19:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2021-01-11 20:10 - 2018-04-12 00:38 - 000000124 _____ C:\WINDOWS\win.ini
2021-01-11 20:07 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-11 19:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-11 19:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-11 18:46 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-01-11 07:40 - 2020-08-29 19:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-09 14:53 - 2019-07-01 14:42 - 000000000 ____D C:\Users\yannis\AppData\Local\PlaceholderTileLogoFolder
2021-01-08 08:39 - 2020-06-22 09:54 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-08 08:39 - 2020-06-22 09:54 - 000002265 _____ C:\ProgramData\Bureau\Microsoft Edge.lnk
2021-01-05 15:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-18 18:08 - 2020-10-19 16:04 - 000000000 ____D C:\Program Files (x86)\Steam
2020-12-17 14:51 - 2020-08-29 19:10 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-467671635-455615153-3267154022-1002
2020-12-17 14:51 - 2020-08-29 19:05 - 000002406 _____ C:\Users\yannis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-17 14:51 - 2019-07-01 14:42 - 000000000 ___RD C:\Users\yannis\OneDrive
2020-12-16 18:15 - 2019-07-18 21:53 - 000000000 ____D C:\Users\yannis\AppData\Local\D3DSCache
2020-12-16 17:25 - 2020-12-03 18:52 - 000000000 ____D C:\ProgramData\EPSON
2020-12-15 10:02 - 2020-09-26 21:06 - 000000000 ____D C:\Users\yannis\AppData\Local\Discord

==================== Fichiers à la racine de certains dossiers ========

2021-01-11 19:48 - 2021-01-11 20:12 - 000000047 _____ () C:\Users\yannis\AppData\Roaming\MCVi2UserDetail.ini

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================