Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-12-2022
Exécuté par joseph (administrateur) sur PCSALON (Gigabyte Technology Co., Ltd. H97M-HD3) (02-01-2023 12:31:16)
Exécuté depuis C:\Users\joseph\Desktop
Profils chargés: joseph
Plate-forme: Microsoft Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AVSolution\mcshield.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfehcs.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Endpoint Security\Adaptive Threat Protection\mfeatp.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Endpoint Security\Endpoint Security Platform\mfeesp.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Endpoint Security\Firewall\mfefw.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Endpoint Security\Threat Prevention\mfetp.exe
(C:\Program Files\McAfee\Agent\masvc.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\x86\mfemactl.exe
(C:\Program Files\McAfee\Agent\x86\UpdaterUI.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\x86\mctray.exe
(C:\Users\joseph\AppData\Local\Apps\2.0\YA78Y90J.E0R\D8RDEZ9X.8RN\scre..tion_2c2536e5112611c9_0006.0003_ae1d6f58d229bc33\ScreenConnect.ClientService.exe ->) (ScreenConnect Software -> ScreenConnect Software) C:\Users\joseph\AppData\Local\Apps\2.0\YA78Y90J.E0R\D8RDEZ9X.8RN\scre..tion_2c2536e5112611c9_0006.0003_ae1d6f58d229bc33\ScreenConnect.WindowsClient.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\x86\UpdaterUI.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Digital Care Solutions) [Fichier non signé] C:\Program Files\BDServices\BitDefenderCOM.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Intel(R) Biometric and Context Agent -> Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\macmnsvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\masvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee LLC.) C:\Program Files\McAfee\Agent\x86\macompatsvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(services.exe ->) (McAfee, Inc. -> McAfee, LLC.) C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\mfewc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(services.exe ->) (ScreenConnect Software -> ) C:\Users\joseph\AppData\Local\Apps\2.0\YA78Y90J.E0R\D8RDEZ9X.8RN\scre..tion_2c2536e5112611c9_0006.0003_ae1d6f58d229bc33\ScreenConnect.ClientService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Corel Corporation -> Corel Corporation) C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe
(svchost.exe ->) (Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FLEXnet\Connect\11\agent.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
Impossible d'accéder au processus -> mepService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7575768 2014-05-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2068856 ] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [DNS7reminder] => C:\Program Files (x86)\Nuance\NaturallySpeaking12\Ereg\Ereg.exe [328992 2010-10-27] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [McAfeeUpdaterUI] => C:\Program Files\McAfee\Agent\x86\UpdaterUI.exe [653096 2020-12-23] (McAfee, Inc. -> McAfee LLC.)
HKLM-x32\...\Run: [Malwarebytes' Anti-Malware] => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584 2010-03-29] (Malwarebytes Corporation -> Malwarebytes Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4042153852-397985973-1171778520-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4042153852-397985973-1171778520-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2068856 2011-10-12] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-4042153852-397985973-1171778520-1001\...\Run: [] => [X]
HKU\S-1-5-21-4042153852-397985973-1171778520-1001\...\MountPoints2: {c9b7fd24-7885-11e5-8271-fcaa14391814} - "F:\AutoRun.exe"
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" (Pas de fichier)
HKLM\...\Print\Monitors\EPSON XP-422 423 425 Series 64MonitorBE: C:\Windows\system32\E_YLMBNDE.DLL [179712 2013-12-05] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.100\Installer\chrmstp.exe [2022-12-15] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2016-07-22] (McAfee, Inc. -> McAfee, Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Mises à jour.lnk [2017-05-01]
ShortcutTarget: Notifications de Mises à jour.lnk -> C:\Program Files\WinZip\WZUpdateNotifier.exe (WinZip) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2017-05-01]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing LLC -> WinZip Computing, S.L.)
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1AD4890D-4874-4E3D-9FFA-FEA25BA9D446} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4042153852-397985973-1171778520-1001UA => C:\Users\joseph\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {1CD45CF7-93B8-4001-B8F4-CB5E6AE89E23} - System32\Tasks\{BAB63BBF-87B5-4996-B0D7-666B2565D101} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.24.0.104/fr/abandoninstall?source=lightinstaller&page=tsBing
Task: {355EFF76-D82E-45FD-81C8-4E5334B52773} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-25] (Google LLC -> Google LLC)
Task: {47789947-239A-43A0-A129-4873733FF106} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {4AD3B75C-8DB3-4AB3-8637-0772109A5CC2} - pas de chemin du fichier
Task: {4F150C00-701E-4009-A7AA-2E22FFE21E99} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-4042153852-397985973-1171778520-1001 => C:\Users\joseph\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2016-09-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {565D0647-5D3C-480F-8718-85E85A57CB2A} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files (x86)\NCH Software\Pixillion\Pixillion.exe [1442480 2017-02-28] (NCH Software -> NCH Software)
Task: {5D1A4692-2277-4278-AFAB-58755DB08593} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4042153852-397985973-1171778520-1001Core => C:\Users\joseph\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier)
Task: {5EB7E6C1-8DEC-4D97-8B30-E29371BE2C29} - System32\Tasks\{52FE9A55-5598-45F9-BCF3-C0B87616D315} => "c:\program files\internet explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=5.9.0.114.259&LastError=404
Task: {5FB3A2CC-2958-4DF8-BA5B-49B0A5BA9BEE} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {6BC914D5-4B8B-4175-B5C9-E386F2FADF8E} - System32\Tasks\WinZipBackGroundToolsTask => C:\Program Files\WinZip\WzBGTools.exe [249440 2017-02-13] (WinZip Computing LLC -> WinZip Computing, S.L.)
Task: {6F1F5F98-FFF0-473E-AD9F-5F1BC0E87C5F} - System32\Tasks\wmp_notifier_executor => C:\Program Files (x86)\WinZip Malware Protector\notifier.exe [1888424 2021-12-01] (Corel Corporation -> Corel Corporation) <==== ATTENTION
Task: {90302712-C9B2-4EAC-9B0F-AF2CD2849E71} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-25] (Google LLC -> Google LLC)
Task: {9483F963-E6DD-4CB6-9C4F-A923F3AF6721} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.)
Task: {95D175BE-D94F-4A69-A844-2D5F6F2E7A37} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {A2096975-79DE-4FFB-96B2-9808A54B56FD} - System32\Tasks\GlaryUpdate 5 => C:\Program Files (x86)\Glary Utilities 5\CheckUpdate.exe [48896 2022-11-27] (Glarysoft LTD -> Glarysoft Ltd)
Task: {ADC19217-3D28-410D-AA0F-7C4D1BBCE990} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {B37A37B0-FA1D-4B69-A1B7-678D86867369} - System32\Tasks\{2980B3F6-7374-4258-96A8-7A53E690B688} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/7.6.0.105/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {B58D3631-69BB-419C-B0B1-8A4B43FFB2B9} - System32\Tasks\NCH Software\PhotoStageSevenDays => C:\Program Files (x86)\NCH Software\PhotoStage\PhotoStage.exe [8369696 2021-03-16] (NCH Software, Inc. -> NCH Software)
Task: {BA80D456-A1D9-46F5-9C04-EB2ACA71D834} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2017-07-24] (Apple Inc. -> Apple Inc.)
Task: {BE6A97DC-FE80-4FDB-B6A4-98DC741B0483} - System32\Tasks\NCH Software\VideoPadSevenDays => C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe [11085352 2021-10-15] (NCH Software, Inc. -> NCH Software)
Task: {C4C1C807-46EB-4479-A464-5CB5965CC82A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\MRT.exe [148633544 2022-12-15] (Microsoft Windows -> Microsoft Corporation)
Task: {CE57B822-7FC1-40FA-BC78-E7E9DC1A4A21} - System32\Tasks\{2BB8BC95-2A67-4967-B540-F71FBEFE37A6} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.33.0.105/fr/abandoninstall?page=tsBing
Task: {DBA9E626-D0E9-4EDE-A66D-CE1EAF55F7E9} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {DE351DD3-68AC-4EB0-A438-FC200EA4C69B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {F0B21E71-F578-4730-B389-EEA3A30B406B} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\Engine\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2022-12-15] (McAfee, Inc. -> McAfee, LLC.)
Task: {F537E71E-0726-4DD2-815B-E83B9A1AC865} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe [1686016 2017-02-13] (WinZip) [Fichier non signé]
Task: {F874992B-8D85-49EB-8740-69C48DD47F25} - System32\Tasks\NCH Software\VideoPadDowngrade => C:\Program Files (x86)\NCH Software\VideoPad\videopad.exe [11085352 2021-10-15] (NCH Software, Inc. -> NCH Software)
Task: {FA56D2EE-D053-4FBB-9F5C-A1FC081F77E4} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [7229096 2021-12-01] (Corel Corporation -> Corel Corporation) <==== ATTENTION
Task: {FC4A9E1E-7B96-4D6A-9AA8-FA9A695891FD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [148633544 2022-12-15] (Microsoft Windows -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6B704841-C23D-481A-86CB-941A18182122}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\joseph\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-02]
Edge Extension: (Avira Safe Shopping) - C:\Users\joseph\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-12-15]
Edge Extension: (Avira Password Manager) - C:\Users\joseph\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-12-15]
Edge Extension: (Contrôle Web Trellix Endpoint Security) - C:\Users\joseph\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jjkchpdmjjdmalgembblgafllbpcjlei [2022-12-15]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [jjkchpdmjjdmalgembblgafllbpcjlei] - C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\mcchplg.crx [2021-01-22]

FireFox:
========
FF DefaultProfile: 380n021v.default-1597586461403
FF ProfilePath: C:\Users\joseph\AppData\Roaming\Mozilla\Firefox\Profiles\nmbk7u46.default-release [2022-12-20]
FF Notifications: Mozilla\Firefox\Profiles\nmbk7u46.default-release -> hxxps://www.francoisesaget.com; hxxps://www.lionhillaryplus.com; hxxps://fr.shopping.rakuten.com; hxxps://www.pagesjaunes.fr; hxxps://www.cam4.fr; hxxps://fr-catalogues.com; hxxps://www.justacote.com; hxxps://www.lesnumeriques.com; hxxps://www.aramisauto.com; hxxps://jinneevaran.live; hxxps://www.boulanger.com
FF Extension: (Coupert - Automatic Coupon Finder & Cashback) - C:\Users\joseph\AppData\Roaming\Mozilla\Firefox\Profiles\nmbk7u46.default-release\Extensions\appledev@soarinfotech.com.xpi [2022-11-24] [UpdateUrl:hxxps://www.coupert.com/api/v2/extension/ffupdate]
FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\joseph\AppData\Roaming\Mozilla\Firefox\Profiles\nmbk7u46.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-12-15]
FF Extension: (Search and Print Recipes Search) - C:\Users\joseph\AppData\Roaming\Mozilla\Firefox\Profiles\nmbk7u46.default-release\Extensions\{05d16aec-af04-4d37-8eea-0306fad42be5}.xpi [2022-10-26] [UpdateUrl:hxxps://cdn.searchandprint-cdn.recipes/xpi/searchandprint/yhs/1020/search/updates.json]
FF ProfilePath: C:\Users\joseph\AppData\Roaming\Mozilla\Firefox\Profiles\380n021v.default-1597586461403 [2022-12-15]
FF HKLM\...\Firefox\Extensions: [{cb40da56-497a-4add-955d-3377cae4c33b}] - C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\e10swcffplg.xpi
FF Extension: (McAfee Endpoint Security Web Control) - C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\e10swcffplg.xpi [2021-01-19]
FF HKLM-x32\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi
FF Extension: (Dragon NaturallySpeaking Rich Internet Application Support) - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi [2012-07-13] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{cb40da56-497a-4add-955d-3377cae4c33b}] - C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\e10swcffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-09] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DragonRIAPlugin -> C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\npDgnRia.dll [2012-07-13] (Nuance Communications, Inc. -> Nuance Communications Inc.)
FF Plugin HKU\S-1-5-21-4042153852-397985973-1171778520-1001: @tools.google.com/Google Update;version=3 -> C:\Users\joseph\AppData\Local\Google\Update\1.3.34.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-4042153852-397985973-1171778520-1001: @tools.google.com/Google Update;version=9 -> C:\Users\joseph\AppData\Local\Google\Update\1.3.34.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-4042153852-397985973-1171778520-1001: SkypePlugin -> C:\Users\joseph\AppData\Local\SkypePlugin\7.5.0.123\npGatewayNpapi.dll [2015-07-17] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-4042153852-397985973-1171778520-1001: SkypePlugin64 -> C:\Users\joseph\AppData\Local\SkypePlugin\7.5.0.123\npGatewayNpapi-x64.dll [2015-07-17] (Microsoft Corporation -> Skype Technologies S.A.)

Chrome:
=======
CHR Profile: C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default [2022-12-15]
CHR Notifications: Default -> hxxps://fr.stumbleuponresults.com; hxxps://www.facebook.com
CHR Extension: (Avira Password Manager) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-12-05]
CHR Extension: (Avira Safe Shopping) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-12-15]
CHR Extension: (Kaspersky Password Manager) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2022-12-15]
CHR Extension: (Protection Web Avira) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-12-15]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-12-15]
CHR Extension: (Skype) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2022-12-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26]
CHR Extension: (Green Blocker) - C:\Users\joseph\AppData\Local\Google\Chrome\User Data\Default\Extensions\pegbcdkgejkhafedjabljgfjkmknghab [2022-02-16]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [jjkchpdmjjdmalgembblgafllbpcjlei] - C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\mcchplg.crx [2021-01-22]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32\...\Chrome\Extension: [mikhcaiakabeeokmenglcdebplfdjicn] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\chromeShim.crx [2012-07-13]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [1028096 2016-11-21] (Digital Care Solutions) [Fichier non signé]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606120 2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) [Fichier non signé]
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [886016 2022-11-27] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [73984 2022-11-27] (Glarysoft LTD -> Glarysoft Ltd)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Biometric and Context Agent -> Intel(R) Corporation)
R2 macmnsvc; C:\Program Files\McAfee\Agent\macmnsvc.exe [240440 2020-12-22] (McAfee, Inc. -> McAfee LLC.)
R2 masvc; C:\Program Files\McAfee\Agent\masvc.exe [179048 2020-12-22] (McAfee, Inc. -> McAfee LLC.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [303952 2010-03-29] (Malwarebytes Corporation -> Malwarebytes Corporation)
R3 McAfeeFramework; C:\Program Files\McAfee\Agent\x86\macompatsvc.exe [260624 2020-12-22] (McAfee, Inc. -> McAfee LLC.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [645736 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [645736 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [645736 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R2 mfewc; C:\Program Files (x86)\McAfee\Endpoint Security\Web Control\mfewc.exe [415888 2021-01-22] (McAfee, Inc. -> McAfee, LLC.)
S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 ScreenConnect Client (e05cfdfb-7420-426a-a034-b86f8fcd6df8); C:\Users\joseph\AppData\Local\Apps\2.0\YA78Y90J.E0R\D8RDEZ9X.8RN\scre..tion_2c2536e5112611c9_0006.0003_ae1d6f58d229bc33\ScreenConnect.ClientService.exe [90768 2022-12-15] (ScreenConnect Software -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13086224 2020-07-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-22] (McAfee, Inc. -> McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-22] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-22] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S3 kpm_launch_service; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe" [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 DrvAgent64; C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [20872 2014-11-24] (eSupport.com, Inc -> Phoenix Technologies)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-04-22] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-04-22] (Disc Soft Ltd -> Disc Soft Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2022-12-15] (Glarysoft LTD -> Glarysoft Ltd)
R3 mfeaack; C:\Windows\system32\drivers\mfeaack.sys [544704 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [385984 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [107456 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [85944 2022-12-15] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfeepmpk; C:\Windows\System32\drivers\mfeepmpk.sys [226304 2022-12-15] (McAfee, Inc. -> McAfee, LLC.)
S3 MfeEpNfcp; C:\Windows\System32\drivers\MfeEpNfcp.sys [89848 2022-10-26] (McAfee, Inc. -> McAfee, Inc.)
R3 mfefirek; C:\Windows\system32\drivers\mfefirek.sys [522176 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfehck; C:\Windows\system32\drivers\mfehck.sys [91584 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [1027520 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [608192 2022-12-15] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [107968 2022-12-15] (McAfee, Inc. -> McAfee LLC.)
U5 mfenlfk; C:\Windows\System32\Drivers\mfenlfk.sys [82368 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfeplk; C:\Windows\system32\drivers\mfeplk.sys [116672 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [252352 2022-12-15] (McAfee, Inc. -> McAfee, LLC)
S3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3567488 2011-10-17] () [Fichier non signé]
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
U3 TrueSight; C:\Windows\SysWOW64\drivers\TrueSight.sys [33512 2015-08-13] (Adlice -> )
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [485512 2016-11-10] (Bitdefender SRL -> BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; pas de ImagePath
S3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-02 12:31 - 2023-01-02 12:33 - 000032837 _____ C:\Users\joseph\Desktop\FRST.txt
2023-01-02 12:30 - 2023-01-02 12:32 - 000000000 ____D C:\FRST
2023-01-02 12:13 - 2023-01-02 12:07 - 002376192 _____ (Farbar) C:\Users\joseph\Desktop\FRST64.exe
2023-01-02 11:55 - 2023-01-02 11:55 - 000000000 ____D C:\ProgramData\TrueKey
2022-12-15 17:41 - 2022-12-15 17:41 - 000244068 _____ C:\Users\joseph\Desktop\message.odt
2022-12-15 16:32 - 2022-12-15 16:32 - 000088904 _____ C:\Users\joseph\Downloads\DuplicataBrevetPension130191M.pdf
2022-12-15 16:07 - 2022-12-15 16:07 - 000133722 _____ C:\Users\joseph\Downloads\ACTE DE DECES-1.pdf
2022-12-15 16:07 - 2022-12-15 16:07 - 000133722 _____ C:\Users\joseph\Downloads\ACTE DE DECES.pdf
2022-12-15 15:18 - 2022-12-15 15:18 - 000462756 _____ C:\Users\joseph\Downloads\1 - GUIDE SUCCESSIONS.pdf
2022-12-15 13:23 - 2022-12-15 13:28 - 000000000 ____D C:\ProgramData\GlarySoft
2022-12-15 13:21 - 2022-12-20 09:15 - 000000000 ____D C:\Windows\system32\Tasks\McAfee
2022-12-15 13:14 - 2022-12-15 13:14 - 000001457 _____ C:\Users\joseph\Desktop\McAfee Endpoint Security.lnk
2022-12-15 13:10 - 2022-12-15 13:15 - 000000000 ___HD C:\$MfeDeepRem
2022-12-15 12:40 - 2022-12-15 13:10 - 000000000 ____D C:\Quarantine
2022-12-15 12:40 - 2022-12-15 12:40 - 000226304 _____ (McAfee, LLC.) C:\Windows\system32\Drivers\mfeepmpk.sys
2022-12-15 12:40 - 2022-12-15 12:39 - 000608192 _____ (McAfee LLC.) C:\Windows\system32\Drivers\mfencbdc.sys
2022-12-15 12:40 - 2022-12-15 12:39 - 000107968 _____ (McAfee LLC.) C:\Windows\system32\Drivers\mfencrk.sys
2022-12-15 12:40 - 2022-12-15 12:39 - 000030144 _____ (McAfee LLC.) C:\Windows\system32\Drivers\mfeclnrk.sys
2022-12-15 12:40 - 2022-10-26 21:54 - 000089848 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\MfeEpNfcp.sys
2022-12-15 12:23 - 2022-12-15 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2022-12-15 12:21 - 2022-12-15 12:21 - 000000000 ____D C:\Users\joseph\AppData\Roaming\McAfee
2022-12-15 12:20 - 2022-12-15 12:22 - 000000000 ____D C:\Program Files\McAfee
2022-12-15 12:20 - 2022-12-15 12:19 - 000082368 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfenlfk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 001027520 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfehidk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000583720 _____ (McAfee, LLC) C:\Windows\system32\mfevtps.exe
2022-12-15 12:19 - 2022-12-15 12:19 - 000544704 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfeaack.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000522176 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfefirek.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000385984 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfeavfk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000252352 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfewfpk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000116672 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfeplk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000107456 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfedisk.sys
2022-12-15 12:19 - 2022-12-15 12:19 - 000091584 _____ (McAfee, LLC) C:\Windows\system32\Drivers\mfehck.sys
2022-12-15 12:18 - 2022-12-15 12:18 - 000000000 ____D C:\Users\joseph\Downloads\McAfee_Endpoint_Security_10.7.0.1045.11
2022-12-15 11:48 - 2022-12-15 11:48 - 000028936 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2022-12-15 11:48 - 2022-12-15 11:48 - 000003616 _____ C:\Windows\system32\Tasks\GlaryUpdate 5
2022-12-15 11:48 - 2022-12-15 11:48 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2022-12-15 11:48 - 2022-12-15 11:48 - 000001092 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2022-12-15 11:48 - 2022-12-15 11:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2022-12-15 11:47 - 2022-12-15 11:48 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-12-15 11:47 - 2022-12-15 11:47 - 000000000 ____D C:\Users\joseph\AppData\Roaming\GlarySoft
2022-12-15 11:47 - 2022-12-15 11:47 - 000000000 ____D C:\Users\joseph\AppData\Roaming\DiskDefrag
2022-12-15 11:45 - 2022-12-16 11:31 - 000000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2022-12-15 11:45 - 2022-12-15 11:45 - 000001021 _____ C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
2022-12-15 11:45 - 2022-12-15 11:45 - 000000000 ____D C:\Users\joseph\AppData\Roaming\Malwarebytes
2022-12-15 11:45 - 2022-12-15 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
2022-12-15 11:45 - 2010-03-29 15:24 - 000038224 _____ (Malwarebytes Corporation) C:\Windows\SysWOW64\Drivers\mbamswissarmy.sys
2022-12-15 11:30 - 2022-12-15 11:30 - 020610352 _____ (Glarysoft Ltd) C:\Users\joseph\Downloads\gu5setup.exe
2022-12-15 11:30 - 2022-12-15 11:30 - 000000000 ____D C:\security
2022-12-15 11:29 - 2022-12-15 11:36 - 277742214 _____ C:\Users\joseph\Downloads\McAfee_Endpoint_Security_10.7.0.1045.11.rar
2022-12-15 11:28 - 2022-12-15 11:28 - 000002278 _____ C:\Users\joseph\Desktop\Microsoft Edge.lnk
2022-12-15 11:12 - 2022-12-15 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assist° TECH° 01.84.14.26.19
2022-12-15 11:09 - 2022-12-15 11:09 - 000676418 _____ C:\Users\joseph\Desktop\Facture Ordi 01.84.14.26.19.pdf
2022-12-15 10:09 - 2022-12-20 09:09 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_ae1d6f58d229bc33
2022-12-15 10:03 - 2022-12-15 10:03 - 000086672 _____ C:\Users\joseph\Downloads\ConnectWiseControl.Client (3).exe
2022-12-15 09:43 - 2022-12-15 10:10 - 000000000 ____D C:\Users\joseph\AppData\Local\Deployment
2022-12-14 09:28 - 2022-12-14 09:28 - 000263353 _____ C:\Users\joseph\Downloads\ATTESTATION DE PROPRIETE Eliane SÉVENO née LE GALLIARD.pdf
2022-12-14 09:26 - 2022-12-14 09:26 - 000607363 _____ C:\Users\joseph\Downloads\RE Re SUCCESSION Eliane SÉVENO née LE GALLIARD(1).zip
2022-12-14 09:22 - 2022-12-14 09:22 - 000607363 _____ C:\Users\joseph\Downloads\RE Re SUCCESSION Eliane SÉVENO née LE GALLIARD.zip

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-02 12:30 - 2014-03-18 11:02 - 000174262 _____ C:\Windows\system32\PerfStringBackup.INI
2023-01-02 12:30 - 2014-03-18 10:26 - 000088792 _____ C:\Windows\system32\perfh00C.dat
2023-01-02 12:30 - 2014-03-18 10:26 - 000017870 _____ C:\Windows\system32\perfc00C.dat
2023-01-02 12:30 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2023-01-02 12:29 - 2015-07-20 06:34 - 000000000 __SHD C:\Users\joseph\IntelGraphicsProfiles
2023-01-02 12:23 - 2015-08-30 08:04 - 000000000 ____D C:\Users\joseph\AppData\Local\CrashDumps
2023-01-02 12:18 - 2015-07-19 16:17 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4042153852-397985973-1171778520-1001
2023-01-02 12:04 - 2015-07-19 16:31 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-02 11:56 - 2015-07-19 16:16 - 000000000 __RDO C:\Users\joseph\OneDrive
2022-12-20 09:20 - 2022-02-13 09:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-12-20 09:20 - 2016-11-19 07:00 - 000000000 ____D C:\Users\joseph\AppData\LocalLow\Mozilla
2022-12-20 09:17 - 2022-04-12 14:42 - 000001681 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2022-12-20 09:11 - 2015-07-19 16:11 - 000000000 ____D C:\Users\joseph\AppData\Local\VirtualStore
2022-12-20 09:10 - 2015-07-20 15:09 - 000149504 ___SH C:\Users\joseph\Desktop\Thumbs.db
2022-12-18 09:36 - 2015-12-09 08:30 - 000000000 ____D C:\Users\joseph\AppData\Roaming\vlc
2022-12-16 11:57 - 2015-07-26 14:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-12-16 11:56 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-12-16 11:56 - 2013-08-22 15:44 - 000676184 _____ C:\Windows\system32\FNTCACHE.DAT
2022-12-16 11:31 - 2021-11-18 08:20 - 000000000 ____D C:\Users\joseph\AppData\Local\Avast Software
2022-12-16 11:31 - 2017-05-01 07:23 - 000000000 ____D C:\ProgramData\AVAST Software
2022-12-16 09:59 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2022-12-16 09:39 - 2013-08-22 16:36 - 000000000 ____D C:\Program Files\Common Files\System
2022-12-15 18:15 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2022-12-15 18:02 - 2015-08-02 10:27 - 000000000 ____D C:\Windows\system32\MRT
2022-12-15 17:48 - 2015-08-02 10:27 - 148633544 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-12-15 16:43 - 2022-09-07 07:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-12-15 16:43 - 2020-08-31 07:35 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-12-15 16:43 - 2018-07-06 14:42 - 000001248 _____ C:\Users\joseph\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-12-15 16:43 - 2015-07-26 14:38 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-12-15 16:42 - 2015-07-19 16:10 - 000000000 ____D C:\Users\joseph
2022-12-15 16:26 - 2015-07-26 14:38 - 000000000 ____D C:\ProgramData\Mozilla
2022-12-15 15:06 - 2022-01-09 15:34 - 000000000 ____D C:\ProgramData\TEMP
2022-12-15 15:01 - 2015-08-09 09:15 - 000011548 _____ C:\Users\joseph\AppData\Roaming\PCSALON.MTBF.txt
2022-12-15 15:01 - 2015-08-09 09:03 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2022-12-15 15:01 - 2015-08-09 09:01 - 000000000 ____D C:\Users\joseph\AppData\Local\Pinnacle
2022-12-15 14:58 - 2022-01-09 15:51 - 000001555 _____ C:\Users\joseph\AppData\Roaming\SAS7_000.DAT
2022-12-15 13:31 - 2017-03-24 10:19 - 000000000 ____D C:\Users\joseph\AppData\Roaming\TeamViewer
2022-12-15 13:30 - 2017-12-05 07:17 - 000000000 ____D C:\Windows\Minidump
2022-12-15 13:20 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\ELAM
2022-12-15 13:10 - 2016-01-16 07:38 - 000000000 ____D C:\ProgramData\McAfee
2022-12-15 12:40 - 2016-04-25 09:58 - 000000000 ____D C:\Program Files\Common Files\McAfee
2022-12-15 12:23 - 2016-04-25 09:58 - 000000000 ____D C:\Program Files (x86)\McAfee
2022-12-15 12:22 - 2015-11-20 15:09 - 000000000 ____D C:\ProgramData\Package Cache
2022-12-15 12:20 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-12-15 11:54 - 2018-10-06 09:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-12-15 11:44 - 2020-07-15 08:21 - 000002319 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-12-15 09:49 - 2022-01-26 10:12 - 000003116 _____ C:\Windows\system32\Tasks\WinZip Malware Protector_startup
2022-12-15 09:49 - 2021-05-25 15:02 - 000003504 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-12-15 09:49 - 2021-05-25 15:02 - 000003376 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2022-12-15 09:49 - 2020-07-15 08:21 - 000003590 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-15 09:49 - 2020-07-15 08:21 - 000003462 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-15 09:49 - 2016-04-25 09:47 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-12-15 09:49 - 2015-07-19 16:39 - 000003678 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-4042153852-397985973-1171778520-1001UA
2022-12-15 09:43 - 2018-09-23 07:53 - 000000000 ____D C:\Users\joseph\AppData\Local\Apps\2.0
2022-12-15 09:28 - 2021-05-25 15:05 - 000002188 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Fichiers à la racine de certains dossiers ========

2015-08-25 08:39 - 2015-11-16 10:19 - 000549376 _____ (Avid) C:\Program Files (x86)\X_ImportComponents.dll
2015-11-13 16:08 - 2015-11-16 10:19 - 000000022 _____ () C:\Program Files (x86)\X_ImportComponents.dll.old.zip
2016-01-03 08:13 - 2016-01-03 08:13 - 000000000 _____ () C:\Users\joseph\AppData\Roaming\.NANotifyHere
2015-08-09 09:15 - 2022-12-15 15:01 - 000011548 _____ () C:\Users\joseph\AppData\Roaming\PCSALON.MTBF.txt
2022-01-09 15:51 - 2022-12-15 14:58 - 000001555 _____ () C:\Users\joseph\AppData\Roaming\SAS7_000.DAT
2015-08-09 09:28 - 2021-12-02 15:58 - 000015360 _____ () C:\Users\joseph\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-06-25 09:46 - 2022-06-25 09:46 - 000000000 _____ () C:\Users\joseph\AppData\Local\{2823C205-1868-4853-9A51-F51889BD46A5}
2022-06-25 09:46 - 2022-06-25 09:46 - 000000000 _____ () C:\Users\joseph\AppData\Local\{A22EBF85-545A-4B66-8329-0D83581601DC}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2016-03-31 06:15
==================== Fin de FRST.txt ========================