Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22.05.2024 01
Exécuté par Albert (administrateur) sur ALBERT (ASUS System Product Name) (26-05-2024 13:32:49)
Exécuté depuis C:\Users\Albert\Desktop\FRST64.exe
Profils chargés: Albert
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.2538 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Areson Technology -> ) C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe
(C:\Program Files (x86)\DriverHub\net_updater32.exe ->) (BrightData Ltd.) [Fichier non signé] C:\ProgramData\BrightData\b5f277be9e9b996633e463ee548565b6bbfbe374\brightdata.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxEMN.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Bright Data Ltd -> BrightData Ltd.) C:\Program Files (x86)\DriverHub\net_updater32.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Arc Control\ArcControlService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_3befaa646f991169\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_29670c30dd54a556\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_c5bff5a2bdb4f7e7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_e66412af875019f8\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11030.15001.0_x64__8wekyb3d8bbwe\PhotosService\PhotosService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2419.11.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11030.15001.0_x64__8wekyb3d8bbwe\PhotosApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.086.0428.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21904.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2023-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe (Pas de fichier)
HKLM-x32\...\Run: [uni mouse driver] => C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe [1634296 2015-04-12] (Areson Technology -> )
HKLM-x32\...\Run: [Intel® Arc™ Control] => C:\Program Files\Intel\Intel Arc Control\ArcControl.exe [1630248 2024-04-25] (Intel Corporation -> Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall: Restriction <==== ATTENTION
HKU\S-1-5-21-3912252802-1353675308-2067236856-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3851184 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3912252802-1353675308-2067236856-1001\...\Run: [MicrosoftEdgeAutoLaunch_6B17572A1704D8C13662839B53354D5E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136912 2024-05-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\ASUS\ROG Live Service\vga\AacVga_UserApp_x64.exe /RestartByRestartManager:1AD14EED-F1BA-4f3f-B069-7770A86DED10 (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-26] (Google LLC -> Google LLC)
Startup: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-29]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\Albert\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05C85022-C53B-4CA2-9619-B02DA073F526} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7da0f91b0f115 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {3970CD62-A74F-4537-90E0-978879AD4189} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {28660538-E04B-4E7E-B7D9-5B9BAB67D26F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{7B6E7E98-D9D1-495C-A555-AE20DA9A06AC} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {ACA2237B-6A5F-4D8E-8A25-CB15FC7A39A2} - System32\Tasks\IeOJvWmSeoRPcCO2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\npNmYjtMU\hQuOXR.dll",#1 <==== ATTENTION
Task: {B29D1D57-DD30-4D1B-8CCD-F100EFA75EE2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_367008a610747d24\lib\IntelPTTEKRecertification.exe [862200 2022-12-21] (Intel Corporation -> Intel(R) Corporation)
Task: {442101EB-DAB1-4D1A-8F90-46EDEDF63164} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {C437FC96-C9BB-4E93-8BBD-A1DDC6E63209} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {B9D17ED0-93B1-46FC-973B-3FC763BE6166} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {D044B486-2D7F-4E19-BC1C-B17A9EFF658C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {268BB1F6-6420-433C-85A4-9134EAD2B864} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E59242F7-47E1-42BF-9529-2BB02B5C12A0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {66E77022-BE69-4B2C-8C9D-C241AF0FE498} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {20A480F0-D398-4B06-AA72-D7787CAD3B3A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168928 2024-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D6F3110-5075-4144-80C7-AC64261D7DFF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {36711CBB-C865-4D40-8D13-C99FD6C32C00} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECDA703B-9AC3-44FE-AE37-7AD9AF5E211A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BC76836-A46F-41DD-8C69-5EBFDD7B1FA2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86E1FB9A-B2E1-47C2-9C0D-AE49A3B69A63} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {28FDBCEB-B71E-4C9A-9701-BCA44A9B7861} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {59BAFD94-0A44-4748-BDC3-C38109AB82B6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3912252802-1353675308-2067236856-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {08AA4513-8F42-407F-9980-BCFE6E7E327A} - System32\Tasks\Opera GX scheduled Autoupdate 1707407781 => C:\Users\Albert\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {098CA2B5-39C5-4378-9DE0-D6EA1CEBD38C} - System32\Tasks\qFzXfCkYIObIkx => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\AfaEkywlsxAU2\VhIQauNOzXKRR.dll",#1 <==== ATTENTION
Task: {F7045969-1229-4B3A-959D-124E6976733E} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [172032 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {34925776-2467-4EF7-80F8-8C803BD11E1F} - System32\Tasks\yLkCcjvaurQLrvwXY2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\vzBDZHBYsrGDnLSmMyR\xTbIBNZ.dll",#1 <==== ATTENTION
Task: {C79F484B-4E8D-4DAC-ABB6-2FBC037CDF6A} - System32\Tasks\ZLWyphSYBXIoH2 => C:\Windows\System32\forfiles.exe [69632 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> /p C:\Windows\system32 /m wscript.exe /c "cmd /C @FNAME ^"C:\ProgramData\ZVyJIAgVzYZVmRVB\qKIJwqQ.wsf^""
Task: {001D80B3-F899-4D64-89AC-A7E70342E219} - System32\Tasks\zzjzbgIdYrIEMHAbruR2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\xFfZxkujbxxjC\xGMrxOL.dll",#1 <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\356425D216561303: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\356425D216561303: [DhcpDomain] numericable-caraibes.fr
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\C496675626F687D223446413F5537484A5: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\C496675626F687D223446413F5537484A5: [DhcpDomain] home
Tcpip\..\Interfaces\{1b7f5b0d-8d53-4b01-aee6-3c27ebdf212a}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{1b7f5b0d-8d53-4b01-aee6-3c27ebdf212a}: [DhcpDomain] numericable-caraibes.fr
Tcpip\..\Interfaces\{c1ddfb61-e9de-406a-bf0d-e005cbb54c6a}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Edge:
=======
Edge Profile: C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-26]
Edge HomePage: Default -> hxxps://find-it.pro/?utm_source=distr_m
Edge StartupUrls: Default -> "hxxps://find-it.pro/?utm_source=distr_m"
Edge DefaultSearchURL: Default -> hxxp://search-cdn.net/fip/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> cdn
Edge DefaultSuggestURL: Default -> hxxps://www.google.ru/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&q={searchTerms}
Edge Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geiolieogaichbpfhcannipendgnnbkn [2024-05-26] [UpdateUrl:hxxps://clients94.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Google Docs Offline) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
Edge Extension: (Edge relevant text changes) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (X-finder.pro) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oikgcnjambfooaigmdljblbaeelmekem [2024-02-08]
FireFox:
========
FF DefaultProfile: x3eh2x2n.default
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\x3eh2x2n.default [2024-02-08]
FF SearchPlugin: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\x3eh2x2n.default\searchplugins\cdnsearch.xml [2024-05-26]
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 [2024-05-26]
FF Homepage: Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 -> hxxps://web.whatsapp.com; hxxps://www.dominicancupid.com; hxxps://www.instagram.com; hxxps://community.lecrabeinfo.net; hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz; hxxps://www.instacams.com; hxxps://assiste.com
FF Extension: (AdBlocker Ultimate) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\adblockultimate@adblockultimate.net.xpi [2024-05-16]
FF Extension: (SaveFrom.net Helper) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\helper@savefrom.net.xpi [2024-05-11]
FF Extension: (Language: English (GB)) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2024-05-16]
FF Extension: (Language: Español (ES) (Spanish, Spain)) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2024-05-16]
FF SearchPlugin: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\searchplugins\cdnsearch.xml [2024-05-26]
FF Extension: (Google Slides Offline) - C:\Program Files\Mozilla Firefox\browser\features\{233F6607-0777-485E-81F1-D3A5441FE9F1}.xpi [2024-05-26] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-02-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2022-11-06] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default [2024-05-26]
CHR HomePage: Default -> hxxp://webmail1e.orange.fr/webmail/fr_FR/inbox.html
CHR StartupUrls: Default -> "hxxps://mail02.orange.fr/appsuite/#!&app=io.ox/mail&folder=default0//yixl6LWIWZ2Mi%C3%B2i3Voir2Xvy7Od%C3%AFn&id=42","hxxps://find-it.pro/?utm_source=distr_m"
CHR Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\agcghmjnenlfcjmnldooeaadankclolo [2024-05-26] [UpdateUrl:hxxps://clients92.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Docs hors connexion) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-15]
CHR Profile: C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-26]
CHR HomePage: System Profile -> hxxps://find-it.pro/?utm_source=distr_m
CHR StartupUrls: System Profile -> "hxxps://find-it.pro/?utm_source=distr_m"
CHR DefaultSearchKeyword: System Profile -> cdn
CHR DefaultSuggestURL: System Profile -> hxxps://www.google.ru/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&q={searchTerms}
CHR Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\agcghmjnenlfcjmnldooeaadankclolo [2024-05-26] [UpdateUrl:hxxps://clients48.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (X-finder.pro) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\oikgcnjambfooaigmdljblbaeelmekem [2024-02-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-05-26] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248016 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3963120 2023-12-13] (Wondershare Technology Group Co.,Ltd -> wondershare)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2024-05-02] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [290568 2024-05-02] (Intel Corporation -> Intel)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.086.0428.0003\FileSyncHelper.exe [3508128 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-05-11] (HP Inc. -> HP Inc.)
R2 IntelArcControlService; C:\Program Files\Intel\Intel Arc Control\ArcControlService.exe [1666088 2024-04-25] (Intel Corporation -> Intel Corporation)
R2 luminati_net_updater_win_drvhub_net; C:\Program Files (x86)\DriverHub\net_updater32.exe [9784312 2024-04-24] (Bright Data Ltd -> BrightData Ltd.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.086.0428.0003\OneDriveUpdaterService.exe [3848104 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402248 2023-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [X]
S2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\WirelessBackupService.exe [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [507904 2021-10-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 MpKsl8346166b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9F0CC579-278B-4459-8646-978CA050287E}\MpKslDrv.sys [271648 2024-05-26] (Microsoft Windows -> Microsoft Corporation)
S3 PAC7302; C:\Windows\system32\DRIVERS\PAC7302.SYS [526848 2007-06-14] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)
R3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [103656 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-26 13:32 - 2024-05-26 13:33 - 000029415 _____ C:\Users\Albert\Desktop\FRST.txt
2024-05-26 13:32 - 2024-05-26 13:33 - 000000000 ____D C:\FRST
2024-05-26 13:30 - 2024-05-26 13:30 - 002395136 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2024-05-26 12:48 - 2024-05-26 12:48 - 000003356 _____ C:\Windows\system32\Tasks\qFzXfCkYIObIkx
2024-05-26 12:48 - 2024-05-26 12:48 - 000003164 _____ C:\Windows\system32\Tasks\ZLWyphSYBXIoH2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003034 _____ C:\Windows\system32\Tasks\yLkCcjvaurQLrvwXY2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003026 _____ C:\Windows\system32\Tasks\zzjzbgIdYrIEMHAbruR2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003008 _____ C:\Windows\system32\Tasks\IeOJvWmSeoRPcCO2
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\ProgramData\ZVyJIAgVzYZVmRVB
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\xFfZxkujbxxjC
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\vzBDZHBYsrGDnLSmMyR
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\ngNQLIQOgYUn
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\AfaEkywlsxAU2
2024-05-26 12:47 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\npNmYjtMU
2024-05-26 12:47 - 2024-05-26 12:47 - 000009994 __RSH C:\ProgramData\ntuser.pol
2024-05-23 16:50 - 2024-05-23 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2024-05-23 16:47 - 2024-05-16 11:47 - 000750616 _____ (Intel) C:\Windows\system32\libvpl.dll
2024-05-23 16:47 - 2024-05-16 11:47 - 000637328 _____ (Intel) C:\Windows\SysWOW64\libvpl.dll
2024-05-23 16:47 - 2024-05-16 11:45 - 000942696 _____ (Intel Corporation) C:\Windows\system32\libmfxhw64.dll
2024-05-23 16:47 - 2024-05-16 11:45 - 000705488 _____ (Intel Corporation) C:\Windows\SysWOW64\libmfxhw32.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000591480 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000560504 _____ C:\Windows\SysWOW64\IntelControlLib32.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000453000 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 002018768 _____ C:\Windows\system32\ze_intel_gpu_raytracing.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000772048 _____ C:\Windows\system32\ze_loader.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000540624 _____ C:\Windows\system32\ze_tracing_layer.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000329680 _____ C:\Windows\system32\ze_validation_layer.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 027963856 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 020687928 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 002095056 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 002095056 _____ C:\Windows\system32\vulkaninfo.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001653200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001653200 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001442768 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001442768 _____ C:\Windows\system32\vulkan-1.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001285072 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001285072 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-05-23 16:47 - 2024-05-16 11:39 - 000305784 _____ C:\Windows\system32\ControlLib.dll
2024-05-23 16:47 - 2024-05-16 11:39 - 000253128 _____ C:\Windows\SysWOW64\ControlLib32.dll
2024-05-23 07:29 - 2024-05-23 17:15 - 104071168 _____ C:\Windows\system32\config\SOFTWARE
2024-05-19 12:57 - 2024-05-19 12:57 - 000560231 _____ C:\Users\Albert\Downloads\03233545_Echéancier_2023.pdf
2024-05-16 12:35 - 2024-05-16 12:38 - 000000000 ____D C:\AdwCleaner
2024-05-16 12:35 - 2024-05-16 12:35 - 008790880 _____ (Malwarebytes) C:\Users\Albert\Downloads\adwcleaner.exe
2024-05-16 12:00 - 2024-05-16 12:01 - 000003856 _____ C:\Users\Albert\Desktop\Rkill.txt
2024-05-16 11:59 - 2024-05-16 11:59 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Albert\Downloads\rkill.exe
2024-05-16 11:29 - 2024-05-16 11:29 - 000000000 ____D C:\Users\Albert\AppData\Local\Microsoft_Corporation
2024-05-16 06:42 - 2024-05-16 06:42 - 000045233 _____ C:\Users\Albert\Downloads\Invitation-1.pdf
2024-05-16 05:09 - 2024-05-16 09:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-07 16:33 - 2024-05-07 16:33 - 000264421 _____ C:\Users\Albert\Documents\Accusé de réception(Biens immobiliers).pdf
2024-05-07 16:32 - 2024-05-07 16:32 - 000264421 _____ C:\Users\Albert\Downloads\Accusé de réception.pdf
2024-05-02 06:24 - 2024-05-02 06:24 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-27 13:41 - 2024-04-27 13:41 - 000045233 _____ C:\Users\Albert\Downloads\Invitation.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-26 13:24 - 2021-06-05 08:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-26 12:58 - 2021-11-15 06:28 - 001800264 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-26 12:58 - 2021-11-15 06:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-26 12:58 - 2021-06-05 14:15 - 000806506 _____ C:\Windows\system32\perfh00C.dat
2024-05-26 12:58 - 2021-06-05 14:15 - 000156164 _____ C:\Windows\system32\perfc00C.dat
2024-05-26 12:58 - 2021-06-05 08:10 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-26 12:58 - 2021-06-05 08:10 - 000000000 ____D C:\Windows\AppReadiness
2024-05-26 12:58 - 2021-06-05 08:09 - 000000000 ____D C:\Windows\INF
2024-05-26 12:57 - 2021-06-05 08:10 - 000000000 ____D C:\Windows\SystemTemp
2024-05-26 12:55 - 2022-02-08 15:29 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-05-26 12:52 - 2021-11-15 06:23 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-26 12:52 - 2021-11-15 06:23 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-26 12:49 - 2023-09-05 11:52 - 000016811 _____ C:\Users\Albert\AppData\LocalLow\2cbe7e0329776f2a482ffdc2b19038bcb5c1f46e40a2e41a4ecd7ace4ad77dfc
2024-05-26 12:47 - 2022-03-30 17:23 - 000000000 __SHD C:\Users\Albert\IntelGraphicsProfiles
2024-05-26 12:47 - 2021-11-15 06:44 - 000000000 ____D C:\Intel
2024-05-26 12:47 - 2021-11-15 06:23 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2024-05-26 12:47 - 2021-11-15 06:23 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-05-26 12:47 - 2021-11-15 06:23 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-26 12:47 - 2021-11-15 06:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-23 17:15 - 2021-06-05 08:01 - 000524288 _____ C:\Windows\system32\config\BBI
2024-05-23 17:00 - 2021-12-23 10:04 - 000000000 ____D C:\Program Files (x86)\Intel
2024-05-23 16:55 - 2021-11-15 06:56 - 000000000 ____D C:\ProgramData\Package Cache
2024-05-23 16:54 - 2023-09-05 11:52 - 000002264 _____ C:\Users\Albert\AppData\LocalLow\de2a3fabbde13c1d04923a348b8f49247568421666d7991f868fca1b85ccf748
2024-05-23 16:54 - 2023-09-05 11:52 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\a007d0391391364a29c2cd570292f26091bef01000b1f1466032d614adc4f147
2024-05-23 16:52 - 2023-09-05 11:52 - 000011216 _____ C:\Users\Albert\AppData\LocalLow\1df677b04876a9ea6387171540515b9f878e68ba814a801fdc4733f0d87b2af8
2024-05-23 16:52 - 2023-09-05 11:52 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\2ad6e48c99fda16b354293830e7803db94da0998d91b1d9977ba914bcb8528d8
2024-05-23 16:52 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\D3DSCache
2024-05-23 16:51 - 2022-03-30 17:14 - 000000000 ____D C:\Program Files\Intel
2024-05-23 16:47 - 2022-08-18 07:28 - 000000000 ____D C:\Program Files\dotnet
2024-05-23 16:43 - 2021-12-14 08:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-05-23 07:29 - 2022-07-11 10:07 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-05-21 08:04 - 2021-11-15 06:27 - 000000000 ____D C:\ProgramData\Packages
2024-05-21 06:44 - 2021-11-15 20:34 - 000000000 ____D C:\Program Files\Microsoft Office
2024-05-21 06:43 - 2021-12-14 08:38 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3912252802-1353675308-2067236856-1001
2024-05-21 06:43 - 2021-11-15 20:36 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-05-21 06:43 - 2021-11-15 20:36 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-20 09:04 - 2024-04-25 10:21 - 000000000 ____D C:\Users\Albert\Documents\Yen
2024-05-17 10:49 - 2021-11-15 06:23 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-05-17 10:48 - 2021-11-15 06:23 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-16 12:39 - 2023-09-05 12:20 - 000000130 _____ C:\Users\Albert\AppData\LocalLow\398da93bb7201f03906f29aff0f1322facb3e32c4cbc6f12882abe0874d920fc
2024-05-16 12:38 - 2023-09-05 12:20 - 000029025 _____ C:\Users\Albert\AppData\LocalLow\3ece48033804a7a357891e119d56d13ad4d4a2ddf059e7d7ce4f27109ce5dd78
2024-05-16 11:12 - 2021-11-15 22:07 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Microsoft\MMC
2024-05-16 10:54 - 2023-09-05 13:48 - 000000000 ____D C:\Users\Albert\Downloads\intel-wi-fi-6-ax201-160mhz-1591054
2024-05-16 09:51 - 2024-01-01 14:49 - 000163126 _____ C:\Users\Albert\AppData\LocalLow\2f4eee895be6b3c84106e390b00588d8050313362698cfad9ba6d185f894814a
2024-05-16 09:50 - 2024-01-01 14:49 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\fe0a6459340f13ed6e64df08440d46b074eeee7bb52969e8efad72139c8b1743
2024-05-16 09:13 - 2021-11-15 06:54 - 000000000 ____D C:\Windows\system32\MRT
2024-05-16 09:12 - 2021-11-15 06:54 - 196465576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-05-16 09:11 - 2023-09-13 10:15 - 000001425 _____ C:\Windows\system32\default_error_stack-000000-000000.txt
2024-05-16 09:11 - 2021-11-19 10:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-05-16 08:59 - 2021-11-19 10:05 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-16 04:59 - 2023-12-23 14:17 - 000002264 _____ C:\Users\Albert\AppData\LocalLow\2c55b0d36744d2e65e61e40de4d2e58b0f239498a26a087584c5289c6c8ba18c
2024-05-11 17:44 - 2022-03-22 09:36 - 000000000 ____D C:\Windows\system32\Tasks\HP
2024-05-11 17:44 - 2021-12-03 10:48 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-05-09 17:02 - 2023-05-12 07:49 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2024-05-02 12:49 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\VirtualStore
2024-05-02 06:24 - 2021-11-15 06:32 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-27 07:46 - 2022-11-06 16:33 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2024-04-27 07:43 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\Packages
2024-04-26 09:37 - 2021-11-15 20:38 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Microsoft\Word
==================== Fichiers à la racine de certains dossiers ========
2024-02-08 12:08 - 2024-02-18 08:39 - 000000004 ____H () C:\ProgramData\rc61.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000008 ____H () C:\ProgramData\ts61.dat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Albert (administrateur) sur ALBERT (ASUS System Product Name) (26-05-2024 13:32:49)
Exécuté depuis C:\Users\Albert\Desktop\FRST64.exe
Profils chargés: Albert
Plate-forme: Microsoft Windows 11 Professionnel Version 21H2 22000.2538 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Areson Technology -> ) C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe
(C:\Program Files (x86)\DriverHub\net_updater32.exe ->) (BrightData Ltd.) [Fichier non signé] C:\ProgramData\BrightData\b5f277be9e9b996633e463ee548565b6bbfbe374\brightdata.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxEMN.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (Bright Data Ltd -> BrightData Ltd.) C:\Program Files (x86)\DriverHub\net_updater32.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel Arc Control\ArcControlService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05a153f767b80b04\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_3befaa646f991169\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_29670c30dd54a556\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_c5bff5a2bdb4f7e7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_e66412af875019f8\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11030.15001.0_x64__8wekyb3d8bbwe\PhotosService\PhotosService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2419.11.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11030.15001.0_x64__8wekyb3d8bbwe\PhotosApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.086.0428.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21904.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2023-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe (Pas de fichier)
HKLM-x32\...\Run: [uni mouse driver] => C:\Program Files (x86)\Hama Mouse Assistant\mouse_driver.exe [1634296 2015-04-12] (Areson Technology -> )
HKLM-x32\...\Run: [Intel® Arc™ Control] => C:\Program Files\Intel\Intel Arc Control\ArcControl.exe [1630248 2024-04-25] (Intel Corporation -> Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\WindowsFirewall: Restriction <==== ATTENTION
HKU\S-1-5-21-3912252802-1353675308-2067236856-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3851184 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3912252802-1353675308-2067236856-1001\...\Run: [MicrosoftEdgeAutoLaunch_6B17572A1704D8C13662839B53354D5E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4136912 2024-05-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\ASUS\ROG Live Service\vga\AacVga_UserApp_x64.exe /RestartByRestartManager:1AD14EED-F1BA-4f3f-B069-7770A86DED10 (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\125.0.6422.77\Installer\chrmstp.exe [2024-05-26] (Google LLC -> Google LLC)
Startup: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-29]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\Albert\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05C85022-C53B-4CA2-9619-B02DA073F526} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d7da0f91b0f115 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {3970CD62-A74F-4537-90E0-978879AD4189} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {28660538-E04B-4E7E-B7D9-5B9BAB67D26F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem127.0.6490.0{7B6E7E98-D9D1-495C-A555-AE20DA9A06AC} => C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
Task: {ACA2237B-6A5F-4D8E-8A25-CB15FC7A39A2} - System32\Tasks\IeOJvWmSeoRPcCO2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\npNmYjtMU\hQuOXR.dll",#1 <==== ATTENTION
Task: {B29D1D57-DD30-4D1B-8CCD-F100EFA75EE2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_367008a610747d24\lib\IntelPTTEKRecertification.exe [862200 2022-12-21] (Intel Corporation -> Intel(R) Corporation)
Task: {442101EB-DAB1-4D1A-8F90-46EDEDF63164} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {C437FC96-C9BB-4E93-8BBD-A1DDC6E63209} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4910680 2024-02-21] (Intel Corporation -> Intel Corporation)
Task: {B9D17ED0-93B1-46FC-973B-3FC763BE6166} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {D044B486-2D7F-4E19-BC1C-B17A9EFF658C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {268BB1F6-6420-433C-85A4-9134EAD2B864} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28435936 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E59242F7-47E1-42BF-9529-2BB02B5C12A0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {66E77022-BE69-4B2C-8C9D-C241AF0FE498} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309832 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {20A480F0-D398-4B06-AA72-D7787CAD3B3A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168928 2024-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D6F3110-5075-4144-80C7-AC64261D7DFF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {36711CBB-C865-4D40-8D13-C99FD6C32C00} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECDA703B-9AC3-44FE-AE37-7AD9AF5E211A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BC76836-A46F-41DD-8C69-5EBFDD7B1FA2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpCmdRun.exe [1658408 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86E1FB9A-B2E1-47C2-9C0D-AE49A3B69A63} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {28FDBCEB-B71E-4C9A-9701-BCA44A9B7861} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {59BAFD94-0A44-4748-BDC3-C38109AB82B6} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3912252802-1353675308-2067236856-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209072 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {08AA4513-8F42-407F-9980-BCFE6E7E327A} - System32\Tasks\Opera GX scheduled Autoupdate 1707407781 => C:\Users\Albert\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {098CA2B5-39C5-4378-9DE0-D6EA1CEBD38C} - System32\Tasks\qFzXfCkYIObIkx => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\AfaEkywlsxAU2\VhIQauNOzXKRR.dll",#1 <==== ATTENTION
Task: {F7045969-1229-4B3A-959D-124E6976733E} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [172032 2021-06-05] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {34925776-2467-4EF7-80F8-8C803BD11E1F} - System32\Tasks\yLkCcjvaurQLrvwXY2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\vzBDZHBYsrGDnLSmMyR\xTbIBNZ.dll",#1 <==== ATTENTION
Task: {C79F484B-4E8D-4DAC-ABB6-2FBC037CDF6A} - System32\Tasks\ZLWyphSYBXIoH2 => C:\Windows\System32\forfiles.exe [69632 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> /p C:\Windows\system32 /m wscript.exe /c "cmd /C @FNAME ^"C:\ProgramData\ZVyJIAgVzYZVmRVB\qKIJwqQ.wsf^""
Task: {001D80B3-F899-4D64-89AC-A7E70342E219} - System32\Tasks\zzjzbgIdYrIEMHAbruR2 => C:\Windows\system32\rundll32.exe [73728 2022-05-13] (Microsoft Windows -> Microsoft Corporation) -> "C:\Program Files (x86)\xFfZxkujbxxjC\xGMrxOL.dll",#1 <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\356425D216561303: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\356425D216561303: [DhcpDomain] numericable-caraibes.fr
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\C496675626F687D223446413F5537484A5: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0bfa7eda-2afe-44c5-ac32-6c6084f9fb8d}\C496675626F687D223446413F5537484A5: [DhcpDomain] home
Tcpip\..\Interfaces\{1b7f5b0d-8d53-4b01-aee6-3c27ebdf212a}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Tcpip\..\Interfaces\{1b7f5b0d-8d53-4b01-aee6-3c27ebdf212a}: [DhcpDomain] numericable-caraibes.fr
Tcpip\..\Interfaces\{c1ddfb61-e9de-406a-bf0d-e005cbb54c6a}: [DhcpNameServer] 109.62.67.1 109.62.67.2
Edge:
=======
Edge Profile: C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-26]
Edge HomePage: Default -> hxxps://find-it.pro/?utm_source=distr_m
Edge StartupUrls: Default -> "hxxps://find-it.pro/?utm_source=distr_m"
Edge DefaultSearchURL: Default -> hxxp://search-cdn.net/fip/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> cdn
Edge DefaultSuggestURL: Default -> hxxps://www.google.ru/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&q={searchTerms}
Edge Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\geiolieogaichbpfhcannipendgnnbkn [2024-05-26] [UpdateUrl:hxxps://clients94.google.com/service/update2/crx] <==== ATTENTION
Edge Extension: (Google Docs Offline) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
Edge Extension: (Edge relevant text changes) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (X-finder.pro) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oikgcnjambfooaigmdljblbaeelmekem [2024-02-08]
FireFox:
========
FF DefaultProfile: x3eh2x2n.default
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\x3eh2x2n.default [2024-02-08]
FF SearchPlugin: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\x3eh2x2n.default\searchplugins\cdnsearch.xml [2024-05-26]
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 [2024-05-26]
FF Homepage: Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 -> hxxps://find-it.pro/?utm_source=distr_m
FF Notifications: Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830 -> hxxps://web.whatsapp.com; hxxps://www.dominicancupid.com; hxxps://www.instagram.com; hxxps://community.lecrabeinfo.net; hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz; hxxps://www.instacams.com; hxxps://assiste.com
FF Extension: (AdBlocker Ultimate) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\adblockultimate@adblockultimate.net.xpi [2024-05-16]
FF Extension: (SaveFrom.net Helper) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\helper@savefrom.net.xpi [2024-05-11]
FF Extension: (Language: English (GB)) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2024-05-16]
FF Extension: (Language: Español (ES) (Spanish, Spain)) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2024-05-16]
FF SearchPlugin: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\uowr16z6.default-release-1639582109830\searchplugins\cdnsearch.xml [2024-05-26]
FF Extension: (Google Slides Offline) - C:\Program Files\Mozilla Firefox\browser\features\{233F6607-0777-485E-81F1-D3A5441FE9F1}.xpi [2024-05-26] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\browser\features\{85FD6ACE-3736-491B-8514-6C8C9556E131}.xpi [2024-02-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2022-11-06] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default [2024-05-26]
CHR HomePage: Default -> hxxp://webmail1e.orange.fr/webmail/fr_FR/inbox.html
CHR StartupUrls: Default -> "hxxps://mail02.orange.fr/appsuite/#!&app=io.ox/mail&folder=default0//yixl6LWIWZ2Mi%C3%B2i3Voir2Xvy7Od%C3%AFn&id=42","hxxps://find-it.pro/?utm_source=distr_m"
CHR Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\agcghmjnenlfcjmnldooeaadankclolo [2024-05-26] [UpdateUrl:hxxps://clients92.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Docs hors connexion) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-15]
CHR Profile: C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-26]
CHR HomePage: System Profile -> hxxps://find-it.pro/?utm_source=distr_m
CHR StartupUrls: System Profile -> "hxxps://find-it.pro/?utm_source=distr_m"
CHR DefaultSearchKeyword: System Profile -> cdn
CHR DefaultSuggestURL: System Profile -> hxxps://www.google.ru/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&q={searchTerms}
CHR Extension: (YoutubeDownloader) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\agcghmjnenlfcjmnldooeaadankclolo [2024-05-26] [UpdateUrl:hxxps://clients48.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (X-finder.pro) - C:\Users\Albert\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\oikgcnjambfooaigmdljblbaeelmekem [2024-02-08]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [167384 2021-11-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-05-26] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14248016 2024-05-09] (Microsoft Corporation -> Microsoft Corporation)
R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3963120 2023-12-13] (Wondershare Technology Group Co.,Ltd -> wondershare)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2024-05-02] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [290568 2024-05-02] (Intel Corporation -> Intel)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.086.0428.0003\FileSyncHelper.exe [3508128 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
S2 GoogleUpdaterInternalService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
S2 GoogleUpdaterService127.0.6490.0; C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe [4785440 2024-05-20] (Google LLC -> Google LLC)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-05-11] (HP Inc. -> HP Inc.)
R2 IntelArcControlService; C:\Program Files\Intel\Intel Arc Control\ArcControlService.exe [1666088 2024-04-25] (Intel Corporation -> Intel Corporation)
R2 luminati_net_updater_win_drvhub_net; C:\Program Files (x86)\DriverHub\net_updater32.exe [9784312 2024-04-24] (Bright Data Ltd -> BrightData Ltd.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MpDefenderCoreService.exe [1489000 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.086.0428.0003\OneDriveUpdaterService.exe [3848104 2024-05-21] (Microsoft Corporation -> Microsoft Corporation)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402248 2023-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\NisSrv.exe [3236840 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24040.4-0\MsMpEng.exe [133704 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [X]
S2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\WirelessBackupService.exe [X]
S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [507904 2021-10-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-19] (Intel Corporation -> Intel Corporation)
R3 MpKsl8346166b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9F0CC579-278B-4459-8646-978CA050287E}\MpKslDrv.sys [271648 2024-05-26] (Microsoft Windows -> Microsoft Corporation)
S3 PAC7302; C:\Windows\system32\DRIVERS\PAC7302.SYS [526848 2007-06-14] (Microsoft Windows Hardware Compatibility Publisher -> PixArt Imaging Inc.)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)
R3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [21056 2024-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [103656 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601496 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105880 2024-05-17] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-26 13:32 - 2024-05-26 13:33 - 000029415 _____ C:\Users\Albert\Desktop\FRST.txt
2024-05-26 13:32 - 2024-05-26 13:33 - 000000000 ____D C:\FRST
2024-05-26 13:30 - 2024-05-26 13:30 - 002395136 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2024-05-26 12:48 - 2024-05-26 12:48 - 000003356 _____ C:\Windows\system32\Tasks\qFzXfCkYIObIkx
2024-05-26 12:48 - 2024-05-26 12:48 - 000003164 _____ C:\Windows\system32\Tasks\ZLWyphSYBXIoH2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003034 _____ C:\Windows\system32\Tasks\yLkCcjvaurQLrvwXY2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003026 _____ C:\Windows\system32\Tasks\zzjzbgIdYrIEMHAbruR2
2024-05-26 12:48 - 2024-05-26 12:48 - 000003008 _____ C:\Windows\system32\Tasks\IeOJvWmSeoRPcCO2
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\ProgramData\ZVyJIAgVzYZVmRVB
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\xFfZxkujbxxjC
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\vzBDZHBYsrGDnLSmMyR
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\ngNQLIQOgYUn
2024-05-26 12:48 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\AfaEkywlsxAU2
2024-05-26 12:47 - 2024-05-26 12:48 - 000000000 ____D C:\Program Files (x86)\npNmYjtMU
2024-05-26 12:47 - 2024-05-26 12:47 - 000009994 __RSH C:\ProgramData\ntuser.pol
2024-05-23 16:50 - 2024-05-23 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2024-05-23 16:47 - 2024-05-16 11:47 - 000750616 _____ (Intel) C:\Windows\system32\libvpl.dll
2024-05-23 16:47 - 2024-05-16 11:47 - 000637328 _____ (Intel) C:\Windows\SysWOW64\libvpl.dll
2024-05-23 16:47 - 2024-05-16 11:45 - 000942696 _____ (Intel Corporation) C:\Windows\system32\libmfxhw64.dll
2024-05-23 16:47 - 2024-05-16 11:45 - 000705488 _____ (Intel Corporation) C:\Windows\SysWOW64\libmfxhw32.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000591480 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000560504 _____ C:\Windows\SysWOW64\IntelControlLib32.dll
2024-05-23 16:47 - 2024-05-16 11:44 - 000453000 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 002018768 _____ C:\Windows\system32\ze_intel_gpu_raytracing.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000772048 _____ C:\Windows\system32\ze_loader.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000540624 _____ C:\Windows\system32\ze_tracing_layer.dll
2024-05-23 16:47 - 2024-05-16 11:42 - 000329680 _____ C:\Windows\system32\ze_validation_layer.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 027963856 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 020687928 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 002095056 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 002095056 _____ C:\Windows\system32\vulkaninfo.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001653200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001653200 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-05-23 16:47 - 2024-05-16 11:41 - 001442768 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001442768 _____ C:\Windows\system32\vulkan-1.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001285072 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-05-23 16:47 - 2024-05-16 11:41 - 001285072 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-05-23 16:47 - 2024-05-16 11:39 - 000305784 _____ C:\Windows\system32\ControlLib.dll
2024-05-23 16:47 - 2024-05-16 11:39 - 000253128 _____ C:\Windows\SysWOW64\ControlLib32.dll
2024-05-23 07:29 - 2024-05-23 17:15 - 104071168 _____ C:\Windows\system32\config\SOFTWARE
2024-05-19 12:57 - 2024-05-19 12:57 - 000560231 _____ C:\Users\Albert\Downloads\03233545_Echéancier_2023.pdf
2024-05-16 12:35 - 2024-05-16 12:38 - 000000000 ____D C:\AdwCleaner
2024-05-16 12:35 - 2024-05-16 12:35 - 008790880 _____ (Malwarebytes) C:\Users\Albert\Downloads\adwcleaner.exe
2024-05-16 12:00 - 2024-05-16 12:01 - 000003856 _____ C:\Users\Albert\Desktop\Rkill.txt
2024-05-16 11:59 - 2024-05-16 11:59 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Albert\Downloads\rkill.exe
2024-05-16 11:29 - 2024-05-16 11:29 - 000000000 ____D C:\Users\Albert\AppData\Local\Microsoft_Corporation
2024-05-16 06:42 - 2024-05-16 06:42 - 000045233 _____ C:\Users\Albert\Downloads\Invitation-1.pdf
2024-05-16 05:09 - 2024-05-16 09:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-05-07 16:33 - 2024-05-07 16:33 - 000264421 _____ C:\Users\Albert\Documents\Accusé de réception(Biens immobiliers).pdf
2024-05-07 16:32 - 2024-05-07 16:32 - 000264421 _____ C:\Users\Albert\Downloads\Accusé de réception.pdf
2024-05-02 06:24 - 2024-05-02 06:24 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-27 13:41 - 2024-04-27 13:41 - 000045233 _____ C:\Users\Albert\Downloads\Invitation.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-26 13:24 - 2021-06-05 08:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-26 12:58 - 2021-11-15 06:28 - 001800264 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-26 12:58 - 2021-11-15 06:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-26 12:58 - 2021-06-05 14:15 - 000806506 _____ C:\Windows\system32\perfh00C.dat
2024-05-26 12:58 - 2021-06-05 14:15 - 000156164 _____ C:\Windows\system32\perfc00C.dat
2024-05-26 12:58 - 2021-06-05 08:10 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-26 12:58 - 2021-06-05 08:10 - 000000000 ____D C:\Windows\AppReadiness
2024-05-26 12:58 - 2021-06-05 08:09 - 000000000 ____D C:\Windows\INF
2024-05-26 12:57 - 2021-06-05 08:10 - 000000000 ____D C:\Windows\SystemTemp
2024-05-26 12:55 - 2022-02-08 15:29 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-05-26 12:52 - 2021-11-15 06:23 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-05-26 12:52 - 2021-11-15 06:23 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-05-26 12:49 - 2023-09-05 11:52 - 000016811 _____ C:\Users\Albert\AppData\LocalLow\2cbe7e0329776f2a482ffdc2b19038bcb5c1f46e40a2e41a4ecd7ace4ad77dfc
2024-05-26 12:47 - 2022-03-30 17:23 - 000000000 __SHD C:\Users\Albert\IntelGraphicsProfiles
2024-05-26 12:47 - 2021-11-15 06:44 - 000000000 ____D C:\Intel
2024-05-26 12:47 - 2021-11-15 06:23 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2024-05-26 12:47 - 2021-11-15 06:23 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-05-26 12:47 - 2021-11-15 06:23 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-26 12:47 - 2021-11-15 06:23 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-23 17:15 - 2021-06-05 08:01 - 000524288 _____ C:\Windows\system32\config\BBI
2024-05-23 17:00 - 2021-12-23 10:04 - 000000000 ____D C:\Program Files (x86)\Intel
2024-05-23 16:55 - 2021-11-15 06:56 - 000000000 ____D C:\ProgramData\Package Cache
2024-05-23 16:54 - 2023-09-05 11:52 - 000002264 _____ C:\Users\Albert\AppData\LocalLow\de2a3fabbde13c1d04923a348b8f49247568421666d7991f868fca1b85ccf748
2024-05-23 16:54 - 2023-09-05 11:52 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\a007d0391391364a29c2cd570292f26091bef01000b1f1466032d614adc4f147
2024-05-23 16:52 - 2023-09-05 11:52 - 000011216 _____ C:\Users\Albert\AppData\LocalLow\1df677b04876a9ea6387171540515b9f878e68ba814a801fdc4733f0d87b2af8
2024-05-23 16:52 - 2023-09-05 11:52 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\2ad6e48c99fda16b354293830e7803db94da0998d91b1d9977ba914bcb8528d8
2024-05-23 16:52 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\D3DSCache
2024-05-23 16:51 - 2022-03-30 17:14 - 000000000 ____D C:\Program Files\Intel
2024-05-23 16:47 - 2022-08-18 07:28 - 000000000 ____D C:\Program Files\dotnet
2024-05-23 16:43 - 2021-12-14 08:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-05-23 07:29 - 2022-07-11 10:07 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-05-21 08:04 - 2021-11-15 06:27 - 000000000 ____D C:\ProgramData\Packages
2024-05-21 06:44 - 2021-11-15 20:34 - 000000000 ____D C:\Program Files\Microsoft Office
2024-05-21 06:43 - 2021-12-14 08:38 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3912252802-1353675308-2067236856-1001
2024-05-21 06:43 - 2021-11-15 20:36 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-05-21 06:43 - 2021-11-15 20:36 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-20 09:04 - 2024-04-25 10:21 - 000000000 ____D C:\Users\Albert\Documents\Yen
2024-05-17 10:49 - 2021-11-15 06:23 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-05-17 10:48 - 2021-11-15 06:23 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-16 12:39 - 2023-09-05 12:20 - 000000130 _____ C:\Users\Albert\AppData\LocalLow\398da93bb7201f03906f29aff0f1322facb3e32c4cbc6f12882abe0874d920fc
2024-05-16 12:38 - 2023-09-05 12:20 - 000029025 _____ C:\Users\Albert\AppData\LocalLow\3ece48033804a7a357891e119d56d13ad4d4a2ddf059e7d7ce4f27109ce5dd78
2024-05-16 11:12 - 2021-11-15 22:07 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Microsoft\MMC
2024-05-16 10:54 - 2023-09-05 13:48 - 000000000 ____D C:\Users\Albert\Downloads\intel-wi-fi-6-ax201-160mhz-1591054
2024-05-16 09:51 - 2024-01-01 14:49 - 000163126 _____ C:\Users\Albert\AppData\LocalLow\2f4eee895be6b3c84106e390b00588d8050313362698cfad9ba6d185f894814a
2024-05-16 09:50 - 2024-01-01 14:49 - 000000026 _____ C:\Users\Albert\AppData\LocalLow\fe0a6459340f13ed6e64df08440d46b074eeee7bb52969e8efad72139c8b1743
2024-05-16 09:13 - 2021-11-15 06:54 - 000000000 ____D C:\Windows\system32\MRT
2024-05-16 09:12 - 2021-11-15 06:54 - 196465576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-05-16 09:11 - 2023-09-13 10:15 - 000001425 _____ C:\Windows\system32\default_error_stack-000000-000000.txt
2024-05-16 09:11 - 2021-11-19 10:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-05-16 08:59 - 2021-11-19 10:05 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-05-16 04:59 - 2023-12-23 14:17 - 000002264 _____ C:\Users\Albert\AppData\LocalLow\2c55b0d36744d2e65e61e40de4d2e58b0f239498a26a087584c5289c6c8ba18c
2024-05-11 17:44 - 2022-03-22 09:36 - 000000000 ____D C:\Windows\system32\Tasks\HP
2024-05-11 17:44 - 2021-12-03 10:48 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2024-05-09 17:02 - 2023-05-12 07:49 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2024-05-02 12:49 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\VirtualStore
2024-05-02 06:24 - 2021-11-15 06:32 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-27 07:46 - 2022-11-06 16:33 - 000018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2024-04-27 07:43 - 2021-11-15 06:27 - 000000000 ____D C:\Users\Albert\AppData\Local\Packages
2024-04-26 09:37 - 2021-11-15 20:38 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Microsoft\Word
==================== Fichiers à la racine de certains dossiers ========
2024-02-08 12:08 - 2024-02-18 08:39 - 000000004 ____H () C:\ProgramData\rc61.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000128 ____H () C:\ProgramData\resource-a.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000128 ____H () C:\ProgramData\resource-b.dat
2024-02-08 12:07 - 2024-02-08 12:07 - 000000008 ____H () C:\ProgramData\ts61.dat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================