Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2023 Exécuté par Thierry Dumas (administrateur) sur DESKTOP-8HTK776 (Intel(R) Client Systems NUC12WSHi5) (08-12-2023 08:26:36) Exécuté depuis C:\Users\Thierry Dumas\Desktop\FRST64.exe Profils chargés: Thierry Dumas Plate-forme: Microsoft Windows 11 Famille Version 22H2 22621.2715 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\Mozilla Firefox\firefox.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (C:\Program Files\WindowsApps\MicrosoftTeams_23306.3309.2530.1346_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe <12> (C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <40> (services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_77d953cd2f64a783\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_50491fb294f8338f\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_06dd582276d3f601\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.11.279.1\mc-fw-host.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.226.1031.0003\FileSyncHelper.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1aefb4cfc2c6df81\RtkAudUService64.exe <2> (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.11.279.1\neo\core\mc-neo-host.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.226.1031.0003\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_4000.1049.117.0_x64__8wekyb3d8bbwe\PushNotificationsLongRunningTask.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1aefb4cfc2c6df81\RtkAudUService64.exe [1624472 2022-11-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2591152 2023-11-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\Run: [MicrosoftEdgeAutoLaunch_8B0E6C8E33EE06CD00732D8195EFF709] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\Run: [Barousel] => C:\Users\Thierry Dumas\AppData\Local\Programs\Barousel\Barousel.exe (Pas de fichier) HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\Run: [QuickTuneComputer] => C:\Users\Thierry Dumas\AppData\Local\QuickTuneComputer\QuickTuneComputer.exe [25832552 2023-12-04] (AirlessCraft Limited -> ) [Fichier non signé] HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\MountPoints2: {12088e87-6781-11ee-af93-847b57433b44} - "E:\setup.EXE" /AUTORUN HKU\S-1-5-21-3344360953-1220333730-752551699-1001\...\MountPoints2: {e0d5e469-8edf-11ee-afcf-847b57433b44} - "E:\WD SmartWare.exe" autoplay=true HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.71\Installer\chrmstp.exe [2023-12-07] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {508DB93E-2429-450E-9313-A2B2C02F39F0} - System32\Tasks\GoogleUpdateTaskMachineCore{1CFEBA22-E854-4FC0-9F65-E897295EBF7E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-19] (Google LLC -> Google LLC) Task: {40A7FBE9-70E5-42B4-BCB6-0B81660EEE61} - System32\Tasks\GoogleUpdateTaskMachineUA{904B9886-6DD3-47F1-BA04-3F97F8C10AC1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-19] (Google LLC -> Google LLC) Task: {ED295A0A-7C7E-4BE0-A368-B34888C92860} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5137472 2023-10-16] (Intel Corporation -> Intel Corporation) Task: {AE63520F-2D21-4DA2-A34E-409677399A78} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5137472 2023-10-16] (Intel Corporation -> Intel Corporation) Task: {DC1B566D-99EF-4BDA-881A-B6E4A6F3A187} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier) Task: {0FE05CA3-2148-4155-959C-A462696E1313} - System32\Tasks\McAfee\WPS\amwebapitriggertask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {9D237CB8-FC09-4399-9D72-4D53D8C1BE72} - System32\Tasks\McAfee\WPS\DAD.WPS.Execute.Updates => C:\Program Files\McAfee\WPS\1.11.279.1\dad\mc-dad.exe [4379528 2023-11-11] (McAfee, LLC -> McAfee, LLC) Task: {2E93FCF7-727F-455F-812C-D71EA4EA74DF} - System32\Tasks\McAfee\WPS\datupdatetask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {A83F8B6B-B53A-4957-9841-A0CAE0659F19} - System32\Tasks\McAfee\WPS\McAfee Sustainability => C:\Program Files\McAfee\WPS\1.11.279.1\sustainability\mc-sustainability.exe [778816 2023-11-11] (McAfee, LLC -> McAfee, LLC) Task: {9F81341D-9EE4-4934-8D5F-AD0180C94AE7} - System32\Tasks\McAfee\WPS\mcpcoscanner => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {DB40EC37-AE4F-4134-B458-4F8AC78C358A} - System32\Tasks\McAfee\WPS\NGMCadence => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {451A512D-8F56-4653-AFA2-F56D28234551} - System32\Tasks\McAfee\WPS\odsscheduledtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {A13A7CE9-C157-4F18-9870-EF0EF71730C1} - System32\Tasks\McAfee\WPS\systemrebootedtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {E3B74364-4204-43C0-AB4F-4D94C09C4E42} - System32\Tasks\McAfee\WPS\Update => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} Task: {89AC2EB5-C213-47FB-A4DE-1A153DC28F0A} - System32\Tasks\McAfee\WPS\WPSPush => \\?\C:\Program Files\McAfee\WPS\1.11.279.1\mc-wns-client\mc-wns-client.exe [819400 2023-11-11] (McAfee, LLC -> ) Task: {E83FB068-DB56-4F50-93BA-E72201AFE95A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FF538BDC-7980-4385-B11B-409D7CBD2C09} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {3F3D01C2-1DC9-4C99-9AA1-F6ECF10D1ED7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {BDC83F32-A377-428E-8489-4C97C9C4DD06} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {68023594-9281-4D9E-B21B-9A94192A0937} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-12-01] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {C28518C1-F348-440F-AC97-D153FB1129D2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-12-01] (Mozilla Corporation -> Mozilla Foundation) Task: {432B66C5-3907-4C9C-9605-9459D8DC70D0} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation) Task: {852F66CB-5B12-438F-AF64-DF16F78C81B7} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3344360953-1220333730-752551699-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-11-21] (Microsoft Corporation -> Microsoft Corporation) Task: {2E410094-5EF6-4361-BFFA-9FB07E73D470} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2023-05-05] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{2ec54fbc-955b-4855-9ee2-4d3934516a62}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{7d46347f-072e-4bdc-bfee-b28e9d915be1}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge Profile: C:\Users\Thierry Dumas\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-08] Edge HomePage: Default -> hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-460ec492 Edge Extension: (Google Docs hors connexion) - C:\Users\Thierry Dumas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-10] Edge Extension: (Edge relevant text changes) - C:\Users\Thierry Dumas\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-10] FireFox: ======== FF DefaultProfile: zfw6b1lk.default FF ProfilePath: C:\Users\Thierry Dumas\AppData\Roaming\Mozilla\Firefox\Profiles\zfw6b1lk.default [2023-10-09] FF ProfilePath: C:\Users\Thierry Dumas\AppData\Roaming\Mozilla\Firefox\Profiles\1nn97lop.default-release [2023-12-08] FF Extension: (McAfee® WebAdvisor) - C:\Users\Thierry Dumas\AppData\Roaming\Mozilla\Firefox\Profiles\1nn97lop.default-release\Extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}.xpi [2023-10-09] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Thierry Dumas\AppData\Local\Google\Chrome\User Data\Default [2023-12-07] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Thierry Dumas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2023-12-02] CHR Extension: (Google Docs hors connexion) - C:\Users\Thierry Dumas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Thierry Dumas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-19] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation) S3 CloudBackupRestoreSvc; C:\Windows\System32\CloudRestoreLauncher.dll [1355776 2023-11-16] (Microsoft Windows -> Microsoft Corporation) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel) R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\FileSyncHelper.exe [3509792 2023-11-21] (Microsoft Corporation -> Microsoft Corporation) R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_06dd582276d3f601\AS\IAS\IntelAudioService.exe [532024 2022-06-02] (Intel Corporation -> Intel) R2 mc-fw-host; C:\Program Files\McAfee\WPS\1.11.279.1\mc-fw-host.exe [2310472 2023-11-11] (McAfee, LLC -> McAfee, LLC) S3 mc-wps-update; C:\Program Files\McAfee\WPS\1.11.279.1\mc-update.exe [5075896 2023-11-11] (McAfee, LLC -> McAfee, LLC) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [895152 2023-12-08] (McAfee, LLC -> McAfee, LLC) R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2022-09-01] () [Fichier non signé] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.226.1031.0003\OneDriveUpdaterService.exe [3846064 2023-11-21] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AcxHdAudio; C:\Windows\System32\drivers\AcxHdAudio.sys [561152 2023-11-16] (Microsoft Windows -> Microsoft Corporation) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-05-05] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-05-05] (Microsoft Corporation) [Fichier non signé] S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 e2f68; C:\Windows\System32\drivers\e2f68.sys [507904 2022-05-06] (Microsoft Windows -> Intel Corporation) R3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_0f2d4ef9c63375f3\e2f.sys [527000 2023-01-11] (Intel Corporation -> Intel Corporation) R0 fse; C:\Windows\System32\drivers\fse.sys [218592 2023-11-16] (Microsoft Windows -> Microsoft Corporation) R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_0e92b4646ab70162\iaLPSS2_GPIO2_ADL.sys [150624 2022-06-01] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_35ed2fd5a51c2bc2\iaLPSS2_I2C_ADL.sys [220256 2022-06-01] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_d97909364d9908a5\IntcUSB.sys [892968 2022-06-02] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88760 2022-06-21] (Intel Corporation -> Intel Corporation) S0 mfeelam; C:\Windows\System32\DRIVERS\mfeelam.sys [18400 2023-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R0 mfesec; C:\Windows\System32\DRIVERS\mfesec.sys [82696 2023-11-11] (McAfee, LLC -> McAfee, LLC) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2022-10-16] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S4 UCPD; C:\Windows\System32\drivers\UCPD.sys [29184 2023-10-09] (Microsoft Windows -> Microsoft Corporation) S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-16] (Microsoft Windows -> ) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-08 08:26 - 2023-12-08 08:26 - 000021566 _____ C:\Users\Thierry Dumas\Desktop\FRST.txt 2023-12-08 08:26 - 2023-12-08 08:26 - 000000000 ____D C:\FRST 2023-12-08 08:25 - 2023-12-08 08:25 - 002384896 _____ (Farbar) C:\Users\Thierry Dumas\Desktop\FRST64.exe 2023-12-08 06:48 - 2023-12-08 06:48 - 000216264 _____ C:\Users\Thierry Dumas\Downloads\Commande équipements 2023 .pdf 2023-12-06 22:18 - 2023-12-06 22:18 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\Gh 2023-12-06 20:41 - 2023-12-06 20:41 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\QuickTuneComputer 2023-12-06 20:39 - 2023-12-06 20:39 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\7zip 2023-12-05 18:18 - 2023-12-05 18:18 - 000103280 _____ C:\Users\Thierry Dumas\Downloads\2. Nature d'un document.pdf 2023-12-05 18:07 - 2023-12-05 18:07 - 003155840 _____ C:\Users\Thierry Dumas\Downloads\TYPES DE DOCUMENTS.pdf 2023-12-04 19:21 - 2023-12-04 19:21 - 000003670 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2023-12-04 19:21 - 2023-10-19 21:08 - 000047240 _____ C:\Windows\system32\Drivers\semav6msr64.sys 2023-12-04 07:24 - 2023-12-04 07:24 - 000076509 _____ C:\Users\Thierry Dumas\Downloads\Calendrier Scolaire 2023-2024.xlsx 2023-12-03 07:13 - 2023-12-03 07:13 - 000022438 _____ C:\Users\Thierry Dumas\Downloads\récap prof argent.ods 2023-12-03 06:52 - 2023-12-03 06:52 - 000771570 _____ C:\Windows\system32\perfh00C.dat 2023-12-03 06:52 - 2023-12-03 06:52 - 000148698 _____ C:\Windows\system32\perfc00C.dat 2023-12-01 17:28 - 2023-12-02 18:26 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-11-28 22:08 - 2023-11-28 22:08 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\myCANAL 2023-11-28 22:07 - 2023-11-28 22:07 - 000002516 _____ C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\myCANAL.lnk 2023-11-28 22:07 - 2023-11-28 22:07 - 000002486 _____ C:\Users\Thierry Dumas\Desktop\myCANAL.lnk 2023-11-28 22:07 - 2023-11-28 22:07 - 000000000 ____D C:\ProgramData\myCANAL 2023-11-28 22:07 - 2023-11-28 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2023-11-28 22:07 - 2023-11-28 22:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2023-11-21 16:42 - 2023-11-21 16:42 - 000795716 _____ C:\Users\Thierry Dumas\Downloads\Methode 6-1.pdf 2023-11-21 16:00 - 2023-11-21 16:00 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\PowerPoint 2023-11-21 15:59 - 2023-11-21 15:59 - 000564736 _____ C:\Users\Thierry Dumas\Downloads\comprendre_les_consignes.ppt 2023-11-21 15:57 - 2023-11-21 15:57 - 001508986 _____ C:\Users\Thierry Dumas\Downloads\Livret_competences.pdf 2023-11-16 17:49 - 2023-11-16 17:49 - 000016240 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2023-11-16 17:46 - 2023-11-16 17:47 - 000000000 ___HD C:\$WinREAgent 2023-11-13 14:44 - 2023-11-27 15:20 - 000000000 ____D C:\Users\Thierry Dumas\Documents\Audacity 2023-11-13 14:41 - 2023-11-27 15:20 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\audacity 2023-11-13 14:41 - 2023-11-13 14:41 - 000000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2023-11-13 14:41 - 2023-11-13 14:41 - 000000853 _____ C:\Users\Public\Desktop\Audacity.lnk 2023-11-13 14:41 - 2023-11-13 14:41 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\audacity 2023-11-13 14:41 - 2023-11-13 14:41 - 000000000 ____D C:\Program Files\Audacity 2023-11-12 17:19 - 2023-11-12 17:19 - 000571060 _____ C:\Users\Thierry Dumas\Downloads\5516.pdf 2023-11-11 21:09 - 2023-11-11 21:14 - 1468665871 _____ C:\Users\Thierry Dumas\Downloads\The.Hunger.Games.Mockingjay.Part.1.2014.TRUEFRENCH.BDRiP.XViD.Wawacity.ec.avi 2023-11-11 08:22 - 2023-11-11 08:22 - 000082696 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfesec.sys 2023-11-11 08:22 - 2023-11-11 08:22 - 000000000 ____D C:\ProgramData\WPSInstallerTemp1 2023-11-10 22:43 - 2023-11-11 09:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-12-08 08:25 - 2023-10-19 19:41 - 000000000 ____D C:\Program Files (x86)\Google 2023-12-08 08:25 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp 2023-12-08 08:23 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-12-08 08:17 - 2023-10-09 19:02 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-12-08 08:11 - 2023-10-09 20:09 - 000000000 ___RD C:\Users\Thierry Dumas\OneDrive 2023-12-08 08:11 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness 2023-12-08 07:20 - 2023-10-09 19:57 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-12-07 22:24 - 2023-10-10 19:47 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\Word 2023-12-07 21:52 - 2023-10-12 21:47 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\Excel 2023-12-07 17:26 - 2023-10-19 19:42 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-12-07 17:26 - 2023-10-19 19:42 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-12-07 17:23 - 2023-10-10 19:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-12-07 17:20 - 2023-10-19 19:41 - 000003960 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{904B9886-6DD3-47F1-BA04-3F97F8C10AC1} 2023-12-07 17:20 - 2023-10-19 19:41 - 000003836 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{1CFEBA22-E854-4FC0-9F65-E897295EBF7E} 2023-12-05 22:50 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-12-05 22:33 - 2023-10-09 20:07 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\Packages 2023-12-05 15:58 - 2023-10-12 19:19 - 000003834 _____ C:\Windows\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2023-12-04 19:21 - 2023-10-12 19:00 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2023-12-04 19:21 - 2023-10-12 19:00 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2023-12-03 06:52 - 2023-10-09 20:03 - 001713458 _____ C:\Windows\system32\PerfStringBackup.INI 2023-12-03 06:52 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF 2023-12-03 06:48 - 2023-10-09 19:59 - 000001623 _____ C:\Windows\system32\config\VSMIDK 2023-12-03 06:48 - 2023-10-09 19:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-12-03 06:48 - 2023-10-09 19:57 - 000012288 ___SH C:\DumpStack.log.tmp 2023-12-02 18:26 - 2023-10-09 19:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-12-02 12:04 - 2023-10-09 20:07 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Local\D3DSCache 2023-12-01 19:31 - 2023-10-09 19:02 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-11-29 17:26 - 2023-10-09 19:58 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-11-29 17:26 - 2023-10-09 19:58 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-11-25 20:45 - 2023-10-10 22:08 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-11-25 07:03 - 2023-10-10 21:26 - 000000000 ____D C:\Users\Thierry Dumas\Documents\UCVSP 2023-11-21 16:37 - 2023-10-10 19:47 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\Office 2023-11-21 16:01 - 2023-10-10 19:45 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-11-21 16:01 - 2023-10-10 19:45 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-11-21 16:01 - 2023-10-09 19:39 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3344360953-1220333730-752551699-1001 2023-11-20 13:47 - 2023-10-10 19:59 - 000000000 ____D C:\Users\Thierry Dumas\AppData\Roaming\Microsoft\UProof 2023-11-18 21:07 - 2023-10-09 21:47 - 000000000 ____D C:\ProgramData\McAfee 2023-11-16 23:38 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-11-16 23:23 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI 2023-11-16 23:22 - 2023-10-09 19:57 - 000474136 _____ C:\Windows\system32\FNTCACHE.DAT 2023-11-16 23:21 - 2023-10-12 22:02 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView 2023-11-16 23:21 - 2022-05-07 11:23 - 000000000 ____D C:\Windows\SysWOW64\fr 2023-11-16 23:21 - 2022-05-07 11:23 - 000000000 ____D C:\Windows\system32\fr 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\SysWOW64\lxss 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\UNP 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\lxss 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\PrintDialog 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\UUS 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\vi-VN 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\oobe 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\id-ID 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\gl-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\eu-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\ca-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinMetadata 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\vi-VN 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ShellExperiences 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\migwiz 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\lv-LV 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\lt-LT 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\id-ID 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\gl-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\eu-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\et-EE 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\es-MX 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Dism 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\DDFs 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ca-ES 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\appraiser 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellExperiences 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Provisioning 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\DiagTrack 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr 2023-11-16 23:21 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System 2023-11-16 23:21 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\servicing 2023-11-16 17:52 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp 2023-11-16 17:51 - 2022-05-07 11:31 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2023-11-16 17:51 - 2022-05-07 06:25 - 000209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2023-11-16 17:51 - 2022-05-07 06:25 - 000076800 _____ (Khronos Group) C:\Windows\SysWOW64\opencl.dll 2023-11-16 17:51 - 2022-05-07 06:24 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2023-11-16 17:51 - 2022-05-07 06:24 - 000118784 _____ (Khronos Group) C:\Windows\system32\opencl.dll 2023-11-16 17:49 - 2023-10-09 20:01 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-11-15 22:36 - 2023-10-09 19:01 - 000000000 ____D C:\Windows\system32\MRT 2023-11-15 22:35 - 2023-10-09 19:00 - 182871392 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-11-13 13:57 - 2023-10-18 19:12 - 000000000 ____D C:\Users\Thierry Dumas\Desktop\Captvty 2023-11-11 18:02 - 2023-10-09 21:49 - 000000000 ____D C:\Program Files\McAfee 2023-11-11 08:23 - 2023-10-09 21:49 - 000000000 ____D C:\Windows\system32\Tasks\McAfee 2023-11-11 08:23 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-11-11 08:23 - 2022-05-07 06:17 - 000032768 _____ C:\Windows\system32\config\ELAM 2023-11-11 08:22 - 2023-10-09 21:50 - 000000977 _____ C:\Users\Public\Desktop\McAfee.lnk 2023-11-11 08:22 - 2023-10-09 19:59 - 000000000 ____D C:\ProgramData\Packages 2023-11-10 17:22 - 2023-10-09 19:02 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================