Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2022 Exécuté par User (administrateur) sur TCPIPOW11TPC (14-11-2022 20:59:33) Exécuté depuis C:\Users\User\Downloads Profils chargés: User Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.1219 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.985.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.42\msedgewebview2.exe <6> (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe (C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoNotificationUx.exe (DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9> (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe (explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe (services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_e3868713e3d137ef\esif_uf.exe (services.exe ->) (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (sihost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.22621.1.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.211.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2207.20002-0\SecurityHealthHost.exe <2> (svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.985.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [210448 2016-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [DriverPack Notifier] => C:\Program Files (x86)\DriverPack Notifier\DriverPackNotifier.exe --run startup (Pas de fichier) HKU\S-1-5-21-782217138-2246665365-3487870785-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629008 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-782217138-2246665365-3487870785-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon G4010 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEH.DLL [482816 2017-09-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor G4010 series: C:\WINDOWS\system32\CNCALEH.DLL [254464 2017-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor G4010 series: C:\WINDOWS\system32\CNMLMEH.DLL [1303040 2017-09-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MAJ VCDS-FRM.lnk [2022-10-17] ShortcutTarget: MAJ VCDS-FRM.lnk -> C:\Ross-Tech\VCDS-FRM\VCDS.exe (Ross-Tech, LLC -> Ross-Tech, LLC) AlternateShell: ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {386BF27C-6AED-4701-8872-F6D8A250A76C} - System32\Tasks\Driver Booster Update => E:\PortableApps\Driver Booster\App\ProgramFiles\AutoUpdate.exe /auto (Pas de fichier) Task: {4200D4D8-4222-4972-8F9B-38999E39C79F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-22] (Google LLC -> Google LLC) Task: {436CC5E7-C099-4237-A403-6F739781A0EB} - System32\Tasks\Opera scheduled Autoupdate 1624365421 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {717DC9F2-6034-4D27-81FA-9575F0D48AAF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A49EB63D-A8E9-44C2-84ED-875D53BB8429} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A5A08081-A841-446E-A08B-9C7E090E88E5} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-782217138-2246665365-3487870785-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4166544 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) Task: {A9E36AED-3A0A-48E3-A962-60E2A2B1C2AA} - System32\Tasks\Driver Booster SkipUAC (User) => E:\PortableApps\Driver Booster\App\ProgramFiles\DriverBooster.exe /skipuac (Pas de fichier) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier) Task: {D1A242DE-3EBD-4C2D-B609-9D62E04A05FB} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [90112 2022-11-11] (Microsoft Windows -> ) Task: {D3FCF794-2D05-4273-B41D-5801F01A5663} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-22] (Google LLC -> Google LLC) Task: {DE33BAD0-2503-438A-B991-F6306237960D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4166544 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) Task: {EF6EABA2-F68E-4C4C-A603-1253E0D4D1F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF29C3E4-CBF6-446D-86FC-35571F4A22A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{35afc5fc-d025-492d-9932-d912e6cd3d23}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-14] Edge HomePage: Default -> hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=98150014D16EC0B7&affID=124780&tt=240913_246&tsp=5017 Edge StartupUrls: Default -> "hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=98150014D16EC0B7&affID=124780&tt=240913_246&tsp=5017","hxxps://www.google.com/" FireFox: ======== FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-11-14] CHR Notifications: Default -> hxxps://inb.network; hxxps://recoverit.wondershare.fr; hxxps://www.facebook.com; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=98150014D16EC0B7&affID=124780&tt=240913_246&tsp=5017 CHR StartupUrls: Default -> "hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=98150014D16EC0B7&affID=124780&tt=240913_246&tsp=5017","hxxps://www.google.com/" CHR Extension: (Google Docs hors connexion) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-22] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640 2013-05-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) S3 dcsvc; C:\WINDOWS\system32\dcsvc.dll [831488 2022-11-11] (Microsoft Windows -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.217.1016.0002\FileSyncHelper.exe [3476408 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.217.1016.0002\OneDriveUpdaterService.exe [3842480 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-13] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2021-06-22] (Martin Malik - REALiX -> REALiX(tm)) R3 kxspb; C:\WINDOWS\system32\DRIVERS\kxspb.sys [51728 2015-09-23] (Kionix Inc -> Kionix, Inc.) R3 MpKsl02c8d0ad; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{86C8BF5D-5407-4BC2-9AC1-6E0505CA3A50}\MpKslDrv.sys [214280 2022-11-14] (Microsoft Windows -> Microsoft Corporation) R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [301784 2015-06-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S3 RT-USB; C:\WINDOWS\system32\drivers\RT-USB64.SYS [97152 2014-05-12] (Ross-Tech, LLC -> Ross-Tech LLC) S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a19e472f32bd1e8d\rtucx22x64.sys [1385296 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation) R3 SileadTouch; C:\WINDOWS\System32\drivers\SileadTouch.sys [117984 2020-04-21] (WDKTestCert Administrator,131338500968447047 -> ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-13] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-13] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-14 20:59 - 2022-11-14 21:00 - 000017351 _____ C:\Users\User\Downloads\FRST.txt 2022-11-14 20:59 - 2022-11-14 21:00 - 000000000 ____D C:\FRST 2022-11-14 20:45 - 2022-11-14 20:45 - 002375168 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe 2022-11-14 16:16 - 2022-11-14 16:16 - 000000000 ____D C:\Users\User\Documents\Blackmagic Design 2022-11-14 16:16 - 2022-11-14 16:16 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design 2022-11-14 16:16 - 2022-11-14 16:16 - 000000000 ____D C:\ProgramData\Reprise 2022-11-14 16:13 - 2022-11-14 16:13 - 000000000 ____D C:\Users\User\AppData\Roaming\Blackmagic Design 2022-11-14 16:06 - 2022-11-14 16:06 - 000000000 ____D C:\ProgramData\Blackmagic Design 2022-11-14 16:04 - 2022-11-14 16:04 - 000000000 ____D C:\Program Files\Blackmagic Design 2022-11-14 16:02 - 2022-11-14 16:12 - 000000000 ____D C:\ProgramData\Package Cache 2022-11-11 01:05 - 2022-11-11 01:05 - 000319488 _____ C:\WINDOWS\system32\EsclScan.dll 2022-11-11 01:05 - 2022-11-11 01:05 - 000200704 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-11-11 01:05 - 2022-11-11 01:05 - 000090112 _____ C:\WINDOWS\system32\SecureBootEncodeUEFI.exe 2022-11-11 01:05 - 2022-11-11 01:05 - 000015461 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-11 01:04 - 2022-11-11 01:04 - 000372736 _____ C:\WINDOWS\system32\hwreqchk.dll 2022-11-11 01:04 - 2022-11-11 01:04 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-11 01:04 - 2022-11-11 01:04 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-11-11 00:59 - 2022-11-11 00:59 - 000000000 ___HD C:\$WinREAgent 2022-11-04 22:18 - 2022-08-16 01:00 - 000514552 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2022-11-04 22:18 - 2022-08-16 01:00 - 000455176 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2022-11-04 22:18 - 2022-08-16 00:59 - 000948464 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2022-11-04 22:18 - 2022-08-16 00:59 - 000709280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2022-11-04 22:18 - 2022-08-16 00:59 - 000594184 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2022-11-04 22:18 - 2022-08-16 00:59 - 000454448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2022-11-04 22:18 - 2022-08-16 00:59 - 000364360 _____ C:\WINDOWS\SysWOW64\IntelControlLib32.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 027948464 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 020672432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 001969712 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-11-04 22:18 - 2022-08-16 00:58 - 001969712 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-11-04 22:18 - 2022-08-16 00:58 - 001526320 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-11-04 22:18 - 2022-08-16 00:58 - 001526320 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-11-04 22:18 - 2022-08-16 00:58 - 001432304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 001432304 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000477096 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000382888 _____ C:\WINDOWS\system32\ze_loader.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000239904 _____ C:\WINDOWS\system32\ControlLib.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000192960 _____ C:\WINDOWS\SysWOW64\ControlLib32.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000192960 _____ C:\WINDOWS\system32\ControlLib32.dll 2022-11-04 22:18 - 2022-08-16 00:58 - 000143784 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2022-11-04 22:06 - 2022-11-04 22:06 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe 2022-10-17 17:05 - 2022-10-17 17:05 - 000000000 ____D C:\Users\User\Documents\VCDS Loader 2022-10-17 17:03 - 2022-10-17 17:03 - 000000761 _____ C:\Users\User\Desktop\VCDS FRM 19.06.lnk 2022-10-17 17:01 - 2022-10-17 17:01 - 000000000 ____D C:\Ross-Tech 2022-10-17 16:59 - 2022-10-17 16:59 - 000001199 _____ C:\Users\Public\Desktop\VCDS Loader.lnk 2022-10-17 16:59 - 2022-10-17 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCDS Loader 2022-10-17 16:59 - 2022-10-17 16:59 - 000000000 ____D C:\Program Files (x86)\VCDS Loader 2022-10-16 11:18 - 2022-10-16 11:18 - 000002983 _____ C:\Users\User\Desktop\PrimeVideo.lnk 2022-10-16 11:18 - 2022-10-16 11:18 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-11-14 20:59 - 2021-06-22 15:52 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-14 20:59 - 2021-06-05 16:09 - 000000000 ____D C:\WINDOWS\INF 2022-11-14 20:52 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2022-11-14 20:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-14 20:50 - 2021-06-05 16:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-14 20:30 - 2021-06-22 15:47 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles 2022-11-14 17:29 - 2022-07-27 02:34 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-14 17:29 - 2021-06-05 22:14 - 000772574 _____ C:\WINDOWS\system32\perfh00C.dat 2022-11-14 17:29 - 2021-06-05 22:14 - 000148820 _____ C:\WINDOWS\system32\perfc00C.dat 2022-11-14 17:26 - 2021-06-05 16:10 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-14 17:25 - 2022-07-27 02:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-14 17:25 - 2021-06-22 17:27 - 000012288 ___SH C:\DumpStack.log.tmp 2022-11-14 17:25 - 2021-06-22 15:47 - 000000000 ____D C:\Intel 2022-11-14 17:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-14 17:24 - 2021-06-05 16:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-11-14 17:23 - 2022-07-27 02:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-14 17:19 - 2021-06-22 16:36 - 000000000 ____D C:\Program Files (x86)\DriverPack Notifier 2022-11-14 17:17 - 2022-07-27 02:40 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache 2022-11-14 17:13 - 2021-06-22 17:33 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2022-11-14 17:10 - 2021-06-22 15:40 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder 2022-11-14 15:53 - 2021-06-22 15:41 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc 2022-11-13 19:48 - 2021-06-22 16:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-13 19:47 - 2021-06-22 15:53 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-13 19:41 - 2021-06-22 17:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-11 01:27 - 2022-07-27 02:25 - 000473264 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-11 01:26 - 2021-08-04 22:48 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-11-11 01:25 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-11 01:12 - 2021-06-22 15:49 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-11 01:12 - 2021-06-22 15:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-11 01:12 - 2021-06-05 16:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-11 01:04 - 2022-07-27 02:28 - 003107840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-10 22:37 - 2021-06-22 17:33 - 000000000 ____D C:\ProgramData\Packages 2022-11-10 22:30 - 2022-07-27 02:35 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-782217138-2246665365-3487870785-1001 2022-11-10 22:30 - 2022-07-27 02:35 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-11-10 22:30 - 2021-08-04 22:48 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-05 10:40 - 2021-06-22 17:37 - 000000000 ___RD C:\Users\User\OneDrive 2022-11-05 01:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\setup 2022-11-05 01:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-11-05 01:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\Provisioning 2022-11-05 01:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-11-05 01:51 - 2021-06-05 16:10 - 000000000 ____D C:\WINDOWS\BrowserCore 2022-11-04 22:12 - 2021-06-05 16:08 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-11-04 22:12 - 2021-06-05 16:08 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-10-16 10:50 - 2022-07-27 02:35 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-10-16 10:50 - 2022-07-27 02:35 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================