Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-03-2023
Exécuté par Maurice (administrateur) sur DESKTOP-H4VBGPS (22-03-2023 09:37:18)
Exécuté depuis C:\Users\loic\Desktop
Profils chargés: Maurice
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2728 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ->) (Michael Maltsev -> RaMMicHaeL) [Fichier non signé] C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCopyAccelerator.exe
(C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(C:\PVSW\Bin\WGE_SRV.exe ->) () [Fichier non signé] C:\PVSW\Bin\w3dbsmgr.exe
(explorer.exe ->) () [Fichier non signé] C:\Program Files (x86)\Holiline\Holiline Reminder\holiline.exe
(explorer.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(explorer.exe ->) (OLYMPUS CORPORATION -> Olympus Corporation) C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(services.exe ->) () [Fichier non signé] C:\PVSW\Bin\WGE_SRV.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Michael Maltsev -> RaMMicHaeL) [Fichier non signé] C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2212.31.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(svchost.exe ->) (Orange -> Orange) C:\Users\loic\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [752168 2019-03-25] (Acronis International GmbH -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4992504 2022-01-12] (Acronis International GmbH -> )
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [40400 2018-06-18] (OLYMPUS CORPORATION -> Olympus Corporation)
HKLM-x32\...\Run: [adc_launcher] => C:\Program Files (x86)\FreeStyle Libre\adc_launcher.exe [211456 2018-12-06] (Abbott Diabetes Care) [Fichier non signé]
HKLM-x32\...\Run: [C16A] => C:\WINDOWS\twain_32\Brimc16a\Common\TwDsUiLaunch.exe [94544 2019-09-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-12-07] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-07-26] (Intel Corporation -> Intel)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [441448 2019-03-25] (Acronis International GmbH -> Acronis International GmbH)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe [415696 2018-06-18] (OLYMPUS CORPORATION -> Olympus Corporation)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [Holiline Reminder] => C:\Program Files (x86)\Holiline\Holiline Reminder\holiline.exe [4275712 2015-06-23] () [Fichier non signé]
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [MicrosoftEdgeAutoLaunch_84AFA9A0CD04522DD60C55E9BB0FDE81] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4056016 2023-03-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1737792242-3146974705-902076100-1006\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630536 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\111.0.5563.65\Installer\chrmstp.exe [2023-03-14] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B9416E2-B7F4-40E5-8659-CCCBB39B078E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\loic\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Pas de fichier)
Task: {0DEE769A-FAC0-4475-88CF-BC4A740FFE6C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718752 2023-03-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {0FEDA22E-EC08-45F1-B54A-FB33366DFA70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C8F7DF0-C567-4284-ADEB-89C8A1F14447} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E874D7D-F7BB-473B-99DA-D0A444918925} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {3A24F583-5D7D-44B2-A3BD-160FC75556C0} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {3A57111C-EE4A-4091-BE3A-38809837CD3B} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [73184 2023-03-21] (Microsoft Corporation -> Microsoft)
Task: {52A33671-70BD-4D6C-B165-CAB2E00A1605} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {58FBC9BA-58EA-4E17-BEF6-0F66E09E3104} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-08] (Google Inc -> Google Inc.)
Task: {5BA8AF1A-FFE0-46C4-BB58-FD0BD370C3A6} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {6AAB3B2B-2810-43C9-AD6F-C9642BE3CD57} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70FD7090-DB53-4307-A5DF-59851ECCD950} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82646E77-5E52-44E7-8C1A-B936094F3887} - System32\Tasks\CCleanerSkipUAC - loic => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {892E75D1-0DB2-4657-A4CF-0EEC7D6F5F1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-08] (Google Inc -> Google Inc.)
Task: {99E7450D-28B1-4626-9C3B-5DAD15C20651} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\loic\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {A3564B68-E9B7-409D-83A1-1F7D4CB2532F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AFB8E389-C632-416A-B016-718AC53E2A9D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-03-17] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {B3B1E550-D45E-4217-9400-451687D68D49} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {B8E12B53-BE88-4A0D-9A74-6EB54B892F46} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1fb16fae-2c9b-4c05-96be-8d5b0de338cb" --version "6.10.10347" --silent
Task: {B9E73B08-074B-4EAE-AD94-8DAF53C69785} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1006 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7A73905-F019-4BB4-87C0-9A50C444E9A8} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\loic\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Pas de fichier)
Task: {FBEF3214-3E91-4EEE-B1B4-C1E47603F888} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{afaf3e51-ac68-4680-88d5-dfd642ecc087}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c3ca12fb-0018-483e-801b-00aac3758c4e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\loic\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1737792242-3146974705-902076100-1003 -> hxxps://www.orange.fr/portail
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2021-10-13]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2021-10-13]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-10-13]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-22]
Edge HomePage: Default -> hxxps://r.orange.fr/r/Oodc_oi_promoHP
Edge StartupUrls: Default -> "hxxps://orange.fr/"
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-03-15]
Edge Extension: (uBlock Origin) - C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-03-22]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: hqwiwi7u.default
FF DefaultProfile: phkg75ew.default-1582620319180
FF ProfilePath: C:\Users\loic\AppData\Roaming\Waterfox\Profiles\hqwiwi7u.default [2019-02-03]
FF Homepage: Waterfox\Profiles\hqwiwi7u.default -> hxxps://www.orange.fr/portail
FF Extension: (uBlock Origin) - C:\Users\loic\AppData\Roaming\Waterfox\Profiles\hqwiwi7u.default\Extensions\uBlock0@raymondhill.net.xpi [2019-02-02]
FF ProfilePath: C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 [2023-03-22]
FF DownloadDir: C:\Users\SAV JPH\Downloads
FF Homepage: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> hxxps://www.orange.fr/portail
FF HomepageOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: qwant@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: google@search.mozilla.org
FF Extension: (Group Speed Dial) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2023-03-18]
FF Extension: (I don't care about cookies) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-02-22]
FF Extension: (uBlock Origin) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\uBlock0@raymondhill.net.xpi [2023-03-08]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-10]
FF Extension: (Noctourniquet (orange)) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{76493516-f52d-4706-9c34-c5194048f65d}.xpi [2022-08-06]
FF Extension: (Mozilla: Firefox OS) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{93645565-f282-4c96-a85a-8133740c6273}.xpi [2020-02-25]
FF Extension: (Floating Player: YouTube, Twitch.tv, etc.) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{a37dbe97-b3d9-4641-9c9c-9e790132e51b}.xpi [2020-05-08]
FF Extension: (Firefox B) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{ac40163c-8804-4dad-90fc-e25ebd6e9a57}.xpi [2020-02-25]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-02-10]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
Opera:
=======
OPR Profile: C:\Users\loic\AppData\Roaming\Opera Software\Opera Stable [2022-11-08]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.fr/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [4387696 2022-01-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1155344 2019-03-25] (Acronis International GmbH -> )
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6341824 2022-07-23] (Acronis International GmbH -> )
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-12-07] (Brother Industries, Ltd.) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1072440 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-07-26] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [177080 2021-07-26] (Intel Corporation -> Intel)
R2 EBP Pervasive.SQL; C:\PVSW\Bin\WGE_SRV.exe [32768 2006-12-07] () [Fichier non signé]
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.043.0226.0001\FileSyncHelper.exe [3412400 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9084512 2023-03-21] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2022-01-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-11-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1782696 2022-01-12] (Acronis International GmbH -> )
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2019-06-26] () [Fichier non signé]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.043.0226.0001\OneDriveUpdaterService.exe [3795336 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14711736 2022-09-13] (ADLICE -> )
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-09-24] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-09-24] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7184848 2022-01-12] (Acronis International GmbH -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7099408 2019-03-25] (Acronis International GmbH -> Acronis International GmbH)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [111208 2018-12-08] (Michael Maltsev -> RaMMicHaeL) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BrSerIb; C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [87552 2011-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [14592 2011-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [667144 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [182832 2019-03-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198112 2023-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77736 2023-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181816 2023-03-22] (Malwarebytes Inc. -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [885880 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171976 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-22 09:37 - 2023-03-22 09:38 - 000032683 _____ C:\Users\loic\Desktop\FRST.txt
2023-03-22 09:36 - 2023-03-22 09:37 - 000000000 ____D C:\FRST
2023-03-22 09:34 - 2023-03-22 09:34 - 002378752 _____ (Farbar) C:\Users\loic\Desktop\FRST64.exe
2023-03-22 09:21 - 2023-03-22 09:21 - 000181816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-03-21 20:47 - 2023-03-21 20:47 - 000668651 _____ C:\Users\SAV JPH\Downloads\F006473.gerX.pdf_froyer.365-1.pdf
2023-03-21 20:45 - 2023-03-21 20:45 - 000668651 _____ C:\Users\SAV JPH\Downloads\F006473.gerX.pdf_froyer.365.pdf
2023-03-21 12:55 - 2023-03-21 12:55 - 000003838 _____ C:\Users\SAV JPH\Downloads\Re Fwd certificat 2705A KETTERER VALERIE(1).zip
2023-03-21 10:15 - 2023-03-21 10:15 - 000049679 _____ C:\Users\SAV JPH\Downloads\SUCCESSION SCHUH VALERIE NEE KETTERER SUCCESSION (TP_BL).zip
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\source
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\AppData\Local\Microsoft SDKs
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\AppData\Local\IdentityNexusIntegration
2023-03-21 08:46 - 2023-03-21 08:46 - 000001777 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022.lnk
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\Users\loic\AppData\Local\ServiceHub
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\Users\loic\AppData\Local\.IdentityService
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022
2023-03-21 08:45 - 2023-03-21 08:45 - 000000000 ____D C:\Program Files\Microsoft Visual Studio
2023-03-21 08:44 - 2023-03-21 08:44 - 000001453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2023-03-21 08:44 - 2023-03-21 08:44 - 000000000 ____D C:\Users\loic\AppData\Roaming\Visual Studio Setup
2023-03-21 08:44 - 2023-03-21 08:44 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2023-03-20 17:58 - 2023-03-20 17:58 - 018985736 _____ C:\Users\SAV JPH\Downloads\327058994_511547134444875_4629760558672134194_n.mp4
2023-03-20 17:27 - 2023-03-20 17:27 - 001480328 _____ (Orange) C:\Users\SAV JPH\Downloads\Orange-assistant-page-de-demarrage.exe
2023-03-18 18:45 - 2023-03-18 18:45 - 007978308 _____ C:\Users\SAV JPH\Downloads\POPECK_SEINS_NUS_SUR_LA___CROISETTE12.mp4
2023-03-18 18:45 - 2023-03-18 18:45 - 004465212 _____ C:\Users\SAV JPH\Downloads\Ape_ro-1.mp4
2023-03-18 18:37 - 2023-03-18 18:37 - 007047803 _____ C:\Users\SAV JPH\Downloads\Het piept.mp4
2023-03-17 21:07 - 2023-03-17 21:07 - 000967715 _____ C:\Users\SAV JPH\Downloads\IL230317102.pdf
2023-03-17 16:25 - 2023-03-17 16:25 - 000487398 _____ C:\Users\SAV JPH\Downloads\vaccins-presse.jpeg
2023-03-17 09:24 - 2023-03-17 09:24 - 000002298 _____ C:\Users\SAV JPH\Downloads\Re Fwd certificat 2705A KETTERER VALERIE.zip
2023-03-16 17:28 - 2023-03-16 17:28 - 010231944 _____ C:\Users\SAV JPH\Downloads\Superbe et sacrément bien fait CM.mp4
2023-03-16 10:36 - 2023-03-16 10:36 - 000084458 _____ C:\Users\SAV JPH\Downloads\AttestationFiscale.pdf
2023-03-15 15:52 - 2023-03-15 15:52 - 000331520 _____ C:\Users\SAV JPH\Downloads\imageeb246cd6-c754-49f0-ba20-c8823d0e03cd
2023-03-15 08:32 - 2023-03-15 08:32 - 000266855 _____ C:\Users\SAV JPH\Downloads\SKM_C250i23030115310.pdf
2023-03-14 19:26 - 2023-03-14 19:26 - 000000000 ___HD C:\$WinREAgent
2023-03-14 11:32 - 2023-03-14 11:32 - 005117108 _____ C:\Users\SAV JPH\Downloads\Que sommes-nous les humains.1.mp4
2023-03-13 20:16 - 2023-03-13 20:16 - 003202913 _____ C:\Users\SAV JPH\Downloads\Succession Valérie SCHUH.zip
2023-03-13 19:44 - 2023-03-13 19:45 - 000000000 ____D C:\Users\loic\plafond tendu wolfi
2023-03-13 17:37 - 2023-03-13 17:37 - 008741781 _____ C:\Users\SAV JPH\Downloads\Monseigneur_di_Falco_Changer_le_genre_deDieu1-2.mp4
2023-03-13 17:37 - 2023-03-13 17:37 - 005042025 _____ C:\Users\SAV JPH\Downloads\Que du sable !.MP4
2023-03-13 17:35 - 2023-03-13 17:35 - 003703586 _____ C:\Users\SAV JPH\Downloads\incroyable-DA.mp4
2023-03-13 17:35 - 2023-03-13 17:35 - 002077900 _____ C:\Users\SAV JPH\Downloads\taille crayon offert par Macron auxretraite1111.mp4
2023-03-13 17:31 - 2023-03-13 17:31 - 009951513 _____ C:\Users\SAV JPH\Downloads\i-want-to-break-free-coreia-do-norte-165694.mp4
2023-03-13 16:06 - 2023-03-13 16:06 - 001240636 _____ C:\Users\SAV JPH\Downloads\plafond tendu LM.zip
2023-03-13 15:35 - 2023-03-13 15:35 - 000000000 ____D C:\ProgramData\Etiam
2023-03-13 08:45 - 2023-03-13 08:45 - 011650560 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1(1).pps
2023-03-13 08:44 - 2023-03-13 08:44 - 000753664 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1.jEsplxX6.pps.part
2023-03-13 08:44 - 2023-03-13 08:44 - 000000000 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1.pps
2023-03-11 19:50 - 2023-03-11 19:50 - 000279560 _____ C:\Users\SAV JPH\Downloads\CrucialFRScan.exe
2023-03-11 11:06 - 2023-03-11 11:06 - 008804864 _____ C:\Users\SAV JPH\Downloads\Cartes-postales-anciennes-Bas-Rhin-Alsace1-1.pps
2023-03-10 15:59 - 2023-03-10 15:59 - 008850325 _____ C:\Users\SAV JPH\Downloads\Les Compagnons de la Chanson vertecampagne.mp4
2023-03-10 09:14 - 2023-03-10 09:14 - 000118123 _____ C:\Users\SAV JPH\Downloads\RE RE Message en provenance du site LM Plafond Tendu _ Plafond tendu_ .zip
2023-03-09 17:50 - 2023-03-09 17:50 - 000501981 _____ C:\Users\SAV JPH\Downloads\[Pas de sujet].zip
2023-03-09 17:46 - 2023-03-09 17:46 - 008260358 _____ C:\Users\SAV JPH\Downloads\324242167_970499074337121_6511800013684338074_n.mp4
2023-03-09 11:48 - 2023-03-09 11:48 - 002067960 _____ C:\Users\SAV JPH\Downloads\TR 8 mars, journée internationale des droits des femmes.zip
2023-03-08 08:14 - 2023-03-08 08:14 - 000047496 _____ C:\Users\SAV JPH\Downloads\FACTURE ACQUITEE OBSEQUES SCHUH VALERIE(1).zip
2023-03-07 17:53 - 2023-03-07 17:53 - 000047496 _____ C:\Users\SAV JPH\Downloads\FACTURE ACQUITEE OBSEQUES SCHUH VALERIE.zip
2023-03-07 16:29 - 2023-03-07 16:29 - 000059548 _____ C:\Users\SAV JPH\Downloads\RE RE facture obsèques Valérie SCHUH.zip
2023-03-07 16:29 - 2023-03-07 16:29 - 000059548 _____ C:\Users\SAV JPH\Downloads\RE RE facture obsèques Valérie SCHUH(1).zip
2023-03-07 16:22 - 2023-03-07 16:22 - 000002413 _____ C:\Users\SAV JPH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000002376 _____ C:\Users\SAV JPH\Desktop\Microsoft Edge.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000002354 _____ C:\Users\SAV JPH\Desktop\Google Chrome.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000000020 ___SH C:\Users\SAV JPH\ntuser.ini
2023-03-06 18:08 - 2023-03-06 18:08 - 000513390 _____ C:\Users\SAV JPH\Downloads\IL230306002-1.pdf
2023-03-06 18:07 - 2023-03-06 18:07 - 000513390 _____ C:\Users\SAV JPH\Downloads\IL230306002.pdf
2023-03-06 15:50 - 2023-03-06 15:50 - 000507344 _____ C:\Users\SAV JPH\Downloads\complémentaire-1-2.pdf
2023-03-06 15:39 - 2023-03-06 15:39 - 000115937 _____ C:\Users\SAV JPH\Downloads\631662.pdf
2023-03-06 10:39 - 2023-03-06 10:39 - 005666443 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-03-04-10-59-24(1).mp4
2023-03-05 19:39 - 2023-03-05 19:39 - 000172005 _____ C:\Users\loic\vitale Maurice Schuh.pdf
2023-03-05 09:15 - 2023-03-05 09:15 - 022791552 _____ C:\Users\SAV JPH\Downloads\TR images et vidéo.zip
2023-03-05 09:15 - 2023-03-05 09:15 - 015203042 _____ C:\Users\SAV JPH\Downloads\WhatsApp Video 2023-01-19 at 07.48.19(1).mp4
2023-03-05 09:14 - 2023-03-05 09:14 - 015203042 _____ C:\Users\SAV JPH\Downloads\WhatsApp Video 2023-01-19 at 07.48.19.mp4
2023-03-05 09:12 - 2023-03-05 09:12 - 005666443 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-03-04-10-59-24.mp4
2023-03-04 19:46 - 2023-03-04 19:46 - 000012276 _____ C:\Users\SAV JPH\Downloads\Part_2(3).jpeg
2023-03-04 19:45 - 2023-03-04 19:45 - 000012276 _____ C:\Users\SAV JPH\Downloads\Part_2(2).jpeg
2023-03-04 19:45 - 2023-03-04 19:45 - 000008604 _____ C:\Users\SAV JPH\Downloads\Part_2(1).jpeg
2023-03-04 16:20 - 2023-03-04 16:20 - 000013569 _____ C:\Users\SAV JPH\Downloads\Part_2.jpeg
2023-03-03 20:17 - 2023-03-03 20:17 - 000075179 _____ C:\Users\SAV JPH\Downloads\8cf64b56-09eb-4a6e-9efd-0468b69cf9a9.jpeg
2023-03-03 20:17 - 2023-03-03 20:17 - 000075179 _____ C:\Users\SAV JPH\Downloads\8cf64b56-09eb-4a6e-9efd-0468b69cf9a9(1).jpeg
2023-03-03 12:55 - 2023-03-03 12:55 - 000026821 _____ C:\Users\SAV JPH\Downloads\RE Devis estimatif plafond tendu pour chambre d'enfant.zip
2023-03-03 12:29 - 2023-03-03 12:29 - 000401903 _____ C:\Users\SAV JPH\Downloads\Convocation.zip
2023-03-02 11:40 - 2023-03-02 11:40 - 003617328 _____ C:\Users\SAV JPH\Downloads\TR Fwd Tr Betschdorf et environs.zip
2023-03-02 11:40 - 2023-03-02 11:40 - 003617328 _____ C:\Users\SAV JPH\Downloads\TR Fwd Tr Betschdorf et environs(1).zip
2023-03-02 10:09 - 2023-03-02 10:09 - 007394948 _____ C:\Users\SAV JPH\Downloads\oiseau et homme qui chantent.mp4
2023-03-01 12:51 - 2023-03-01 12:51 - 000122068 _____ C:\Users\SAV JPH\Downloads\RE CRG [252].zip
2023-02-28 17:40 - 2023-02-28 17:40 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-3.pdf
2023-02-28 17:29 - 2023-02-28 17:29 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-2.pdf
2023-02-28 17:13 - 2023-02-28 17:13 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-1.pdf
2023-02-28 17:10 - 2023-02-28 17:10 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217.pdf
2023-02-28 16:39 - 2023-02-28 16:39 - 010121601 _____ C:\Users\SAV JPH\Downloads\TR Les boutiques de demain .zip
2023-02-28 16:36 - 2023-02-28 16:37 - 010250734 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-01-20-09-15-55.mp4
2023-02-28 16:12 - 2023-02-28 16:12 - 004118743 _____ C:\Users\SAV JPH\Downloads\RE Message en provenance du site LM Plafond Tendu _ Plafond tendu_ .zip
2023-02-28 11:09 - 2023-02-28 11:09 - 000652458 _____ C:\Users\SAV JPH\Downloads\Devis estimatif plafond tendu pour chambre d'enfant.zip
2023-02-27 11:22 - 2023-02-27 11:22 - 002531366 _____ C:\Users\SAV JPH\Downloads\Fwd .zip
2023-02-27 09:16 - 2023-02-27 09:16 - 001645403 _____ C:\Users\SAV JPH\Downloads\photos suite.zip
2023-02-26 20:06 - 2023-02-26 20:06 - 001523395 _____ C:\Users\SAV JPH\Downloads\download.pdf
2023-02-26 20:01 - 2023-02-26 20:01 - 001523395 _____ C:\Users\loic\urologue.pdf
2023-02-26 09:43 - 2023-02-26 09:43 - 004193280 _____ C:\Users\SAV JPH\Downloads\Tu_les_reconnais_encore____-1.pps
2023-02-25 17:16 - 2023-02-25 17:16 - 006195712 _____ C:\Users\SAV JPH\Downloads\Mont_des_Oliviers111.pps
2023-02-25 17:15 - 2023-02-25 17:15 - 000209492 _____ C:\Users\SAV JPH\Downloads\ATT000431-1.pdf
2023-02-25 10:35 - 2023-02-25 10:35 - 006157696 _____ C:\Users\SAV JPH\Downloads\origine de la danse celtique 1.mp4
2023-02-24 18:47 - 2023-02-24 18:47 - 000870430 _____ C:\Users\SAV JPH\Downloads\2.pdf
2023-02-24 18:47 - 2023-02-24 18:47 - 000657140 _____ C:\Users\SAV JPH\Downloads\5.pdf
2023-02-24 15:41 - 2023-02-24 15:41 - 001377911 _____ C:\Users\SAV JPH\Downloads\Fw Fwd Fwd Les gaulois en grève une ritournelle sempiternelle !!!.zip
2023-02-23 19:48 - 2023-02-23 19:48 - 000000000 _____ C:\Users\SAV JPH\Downloads\5A30I7X6.htm
2023-02-22 20:18 - 2023-02-22 20:18 - 010317824 _____ C:\Users\SAV JPH\Downloads\Les Femmes au Volant(1).pps
2023-02-22 18:11 - 2023-02-22 18:11 - 000601942 _____ C:\Users\SAV JPH\Downloads\IL230222101-1.pdf
2023-02-22 18:08 - 2023-02-22 18:08 - 000601957 _____ C:\Users\SAV JPH\Downloads\IL230222101.pdf
2023-02-22 16:59 - 2023-02-22 16:59 - 010320896 _____ C:\Users\SAV JPH\Downloads\Les Femmes au Volant.pps
2023-02-22 15:35 - 2023-02-22 15:35 - 000424322 _____ C:\Users\SAV JPH\Downloads\PROBTP-Optique - Attente de remboursement-23 06 2022(1).jpeg
2023-02-22 15:34 - 2023-02-22 15:34 - 000661771 _____ C:\Users\SAV JPH\Downloads\PROBTP-Optique - Attente de remboursement-23 06 2022.jpeg
2023-02-22 15:33 - 2023-02-22 15:33 - 000056014 _____ C:\Users\SAV JPH\Downloads\PROBTP-Information paiement-Remboursement santé-24 01 2023.pdf
2023-02-22 15:18 - 2023-02-22 15:18 - 000143271 _____ C:\Users\SAV JPH\Downloads\F025342.gerX.pdf_froyer.276.pdf
2023-02-22 15:08 - 2023-02-22 15:08 - 000144687 _____ C:\Users\SAV JPH\Downloads\F010629.gerX.pdf_lgeissle.277.pdf
2023-02-22 11:52 - 2023-02-22 11:52 - 003870001 _____ C:\Users\SAV JPH\Downloads\Laurent Gerra - Henry Salvador11.mp4
2023-02-22 10:21 - 2023-02-22 10:21 - 003030528 _____ C:\Users\SAV JPH\Downloads\TRUCS - Bons _ savoir (_).pps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-22 09:37 - 2018-12-08 14:48 - 000000000 ____D C:\Users\loic\AppData\LocalLow\Mozilla
2023-03-22 09:30 - 2020-09-06 16:20 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3461CAB5-BDA3-41B0-8F87-8C23500F1D37}
2023-03-22 09:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-22 09:25 - 2020-09-06 16:17 - 001681434 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-22 09:25 - 2019-12-07 15:49 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-22 09:25 - 2019-12-07 15:49 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-22 09:25 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-22 09:24 - 2022-02-09 12:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-22 09:23 - 2021-04-21 06:18 - 000000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-03-22 09:23 - 2018-12-08 14:40 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-22 09:23 - 2018-12-08 14:26 - 000000000 ____D C:\Program Files\CCleaner
2023-03-22 09:21 - 2020-09-06 16:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-22 09:21 - 2020-09-06 16:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-22 09:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-22 09:21 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-22 09:21 - 2018-12-08 14:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-03-22 09:15 - 2019-02-01 17:21 - 000000000 __SHD C:\Users\loic\IntelGraphicsProfiles
2023-03-21 20:49 - 2020-09-06 15:51 - 000000000 ____D C:\Users\loic
2023-03-21 19:34 - 2020-09-06 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-21 17:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-21 08:49 - 2020-09-06 16:13 - 000641168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-03-21 08:46 - 2020-02-14 18:10 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-03-21 08:46 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-03-21 08:45 - 2020-02-14 18:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2023-03-21 08:37 - 2018-12-08 11:19 - 000000000 ____D C:\Users\loic\AppData\Local\Packages
2023-03-21 08:34 - 2018-12-08 15:02 - 000000000 ____D C:\ProgramData\Package Cache
2023-03-20 20:30 - 2022-09-30 08:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-20 20:17 - 2022-09-30 08:32 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-20 20:17 - 2020-09-06 16:20 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-20 20:17 - 2020-07-22 15:13 - 000000000 ____D C:\Users\loic\AppData\Local\CrashDumps
2023-03-19 09:55 - 2021-05-30 18:26 - 000000000 ___RD C:\photos privées
2023-03-18 19:21 - 2020-07-09 17:08 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-18 08:37 - 2021-09-12 07:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-03-17 20:06 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1006
2023-03-17 20:06 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1003
2023-03-17 20:06 - 2020-09-06 16:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-03-17 20:06 - 2019-09-29 06:09 - 000002194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-17 11:42 - 2023-02-15 09:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-03-17 11:42 - 2018-12-08 14:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-03-17 09:05 - 2021-10-14 07:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-17 09:05 - 2018-12-08 14:48 - 000001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-15 18:00 - 2019-04-27 18:03 - 000000000 ____D C:\Users\loic\AppData\Roaming\ZHP
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-14 19:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-14 19:36 - 2020-09-06 16:14 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-14 19:25 - 2018-12-08 15:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-14 19:20 - 2018-12-08 15:32 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-08 08:15 - 2020-09-06 16:20 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-08 08:15 - 2020-09-06 16:20 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-07 16:22 - 2020-09-06 15:51 - 000000000 ____D C:\Users\SAV JPH
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 __SHD C:\Users\SAV JPH\IntelGraphicsProfiles
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 ___RD C:\Users\SAV JPH\3D Objects
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 ____D C:\Users\SAV JPH\AppData\Local\Packages
2023-03-07 16:22 - 2018-12-08 11:19 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-03-05 09:19 - 2019-03-20 16:57 - 000057344 _____ C:\Users\loic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2023-02-26 13:13 - 2019-02-02 16:13 - 000000000 ____D C:\ProgramData\TEMP
==================== Fichiers à la racine de certains dossiers ========
2020-01-24 07:50 - 2020-02-21 10:59 - 000025175 _____ () C:\Users\loic\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2019-03-20 16:57 - 2023-03-05 09:19 - 000057344 _____ () C:\Users\loic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-05-20 10:04 - 2019-05-20 10:04 - 000000017 _____ () C:\Users\loic\AppData\Local\resmon.resmoncfg
==================== FLock ==============================
2019-02-02 16:28 C:\ProgramData\Brother
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Maurice (administrateur) sur DESKTOP-H4VBGPS (22-03-2023 09:37:18)
Exécuté depuis C:\Users\loic\Desktop
Profils chargés: Maurice
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2728 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ->) (Michael Maltsev -> RaMMicHaeL) [Fichier non signé] C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCopyAccelerator.exe
(C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(C:\PVSW\Bin\WGE_SRV.exe ->) () [Fichier non signé] C:\PVSW\Bin\w3dbsmgr.exe
(explorer.exe ->) () [Fichier non signé] C:\Program Files (x86)\Holiline\Holiline Reminder\holiline.exe
(explorer.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(explorer.exe ->) (OLYMPUS CORPORATION -> Olympus Corporation) C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(services.exe ->) () [Fichier non signé] C:\PVSW\Bin\WGE_SRV.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Michael Maltsev -> RaMMicHaeL) [Fichier non signé] C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21374.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23012.167.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2212.31.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(svchost.exe ->) (Orange -> Orange) C:\Users\loic\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [752168 2019-03-25] (Acronis International GmbH -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4992504 2022-01-12] (Acronis International GmbH -> )
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [40400 2018-06-18] (OLYMPUS CORPORATION -> Olympus Corporation)
HKLM-x32\...\Run: [adc_launcher] => C:\Program Files (x86)\FreeStyle Libre\adc_launcher.exe [211456 2018-12-06] (Abbott Diabetes Care) [Fichier non signé]
HKLM-x32\...\Run: [C16A] => C:\WINDOWS\twain_32\Brimc16a\Common\TwDsUiLaunch.exe [94544 2019-09-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-12-07] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-07-26] (Intel Corporation -> Intel)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [441448 2019-03-25] (Acronis International GmbH -> Acronis International GmbH)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe [415696 2018-06-18] (OLYMPUS CORPORATION -> Olympus Corporation)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [Holiline Reminder] => C:\Program Files (x86)\Holiline\Holiline Reminder\holiline.exe [4275712 2015-06-23] () [Fichier non signé]
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [MicrosoftEdgeAutoLaunch_84AFA9A0CD04522DD60C55E9BB0FDE81] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4056016 2023-03-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1737792242-3146974705-902076100-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1737792242-3146974705-902076100-1006\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2630536 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\111.0.5563.65\Installer\chrmstp.exe [2023-03-14] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0B9416E2-B7F4-40E5-8659-CCCBB39B078E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\loic\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Pas de fichier)
Task: {0DEE769A-FAC0-4475-88CF-BC4A740FFE6C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718752 2023-03-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {0FEDA22E-EC08-45F1-B54A-FB33366DFA70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C8F7DF0-C567-4284-ADEB-89C8A1F14447} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E874D7D-F7BB-473B-99DA-D0A444918925} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {3A24F583-5D7D-44B2-A3BD-160FC75556C0} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {3A57111C-EE4A-4091-BE3A-38809837CD3B} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [73184 2023-03-21] (Microsoft Corporation -> Microsoft)
Task: {52A33671-70BD-4D6C-B165-CAB2E00A1605} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {58FBC9BA-58EA-4E17-BEF6-0F66E09E3104} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-08] (Google Inc -> Google Inc.)
Task: {5BA8AF1A-FFE0-46C4-BB58-FD0BD370C3A6} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {6AAB3B2B-2810-43C9-AD6F-C9642BE3CD57} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70FD7090-DB53-4307-A5DF-59851ECCD950} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82646E77-5E52-44E7-8C1A-B936094F3887} - System32\Tasks\CCleanerSkipUAC - loic => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {892E75D1-0DB2-4657-A4CF-0EEC7D6F5F1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-08] (Google Inc -> Google Inc.)
Task: {99E7450D-28B1-4626-9C3B-5DAD15C20651} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\loic\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {A3564B68-E9B7-409D-83A1-1F7D4CB2532F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AFB8E389-C632-416A-B016-718AC53E2A9D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-03-17] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {B3B1E550-D45E-4217-9400-451687D68D49} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {B8E12B53-BE88-4A0D-9A74-6EB54B892F46} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1fb16fae-2c9b-4c05-96be-8d5b0de338cb" --version "6.10.10347" --silent
Task: {B9E73B08-074B-4EAE-AD94-8DAF53C69785} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1006 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7A73905-F019-4BB4-87C0-9A50C444E9A8} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\loic\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Pas de fichier)
Task: {FBEF3214-3E91-4EEE-B1B4-C1E47603F888} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4205448 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{afaf3e51-ac68-4680-88d5-dfd642ecc087}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c3ca12fb-0018-483e-801b-00aac3758c4e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\loic\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1737792242-3146974705-902076100-1003 -> hxxps://www.orange.fr/portail
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2021-10-13]
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2021-10-13]
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2021-10-13]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-22]
Edge HomePage: Default -> hxxps://r.orange.fr/r/Oodc_oi_promoHP
Edge StartupUrls: Default -> "hxxps://orange.fr/"
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-03-15]
Edge Extension: (uBlock Origin) - C:\Users\loic\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-03-22]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: hqwiwi7u.default
FF DefaultProfile: phkg75ew.default-1582620319180
FF ProfilePath: C:\Users\loic\AppData\Roaming\Waterfox\Profiles\hqwiwi7u.default [2019-02-03]
FF Homepage: Waterfox\Profiles\hqwiwi7u.default -> hxxps://www.orange.fr/portail
FF Extension: (uBlock Origin) - C:\Users\loic\AppData\Roaming\Waterfox\Profiles\hqwiwi7u.default\Extensions\uBlock0@raymondhill.net.xpi [2019-02-02]
FF ProfilePath: C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 [2023-03-22]
FF DownloadDir: C:\Users\SAV JPH\Downloads
FF Homepage: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> hxxps://www.orange.fr/portail
FF HomepageOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: qwant@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180 -> Enabled: google@search.mozilla.org
FF Extension: (Group Speed Dial) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2023-03-18]
FF Extension: (I don't care about cookies) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-02-22]
FF Extension: (uBlock Origin) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\uBlock0@raymondhill.net.xpi [2023-03-08]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-10]
FF Extension: (Noctourniquet (orange)) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{76493516-f52d-4706-9c34-c5194048f65d}.xpi [2022-08-06]
FF Extension: (Mozilla: Firefox OS) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{93645565-f282-4c96-a85a-8133740c6273}.xpi [2020-02-25]
FF Extension: (Floating Player: YouTube, Twitch.tv, etc.) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{a37dbe97-b3d9-4641-9c9c-9e790132e51b}.xpi [2020-05-08]
FF Extension: (Firefox B) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{ac40163c-8804-4dad-90fc-e25ebd6e9a57}.xpi [2020-02-25]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\loic\AppData\Roaming\Mozilla\Firefox\Profiles\phkg75ew.default-1582620319180\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-02-10]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
Opera:
=======
OPR Profile: C:\Users\loic\AppData\Roaming\Opera Software\Opera Stable [2022-11-08]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.fr/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [4387696 2022-01-12] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1155344 2019-03-25] (Acronis International GmbH -> )
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6341824 2022-07-23] (Acronis International GmbH -> )
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-12-07] (Brother Industries, Ltd.) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1072440 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-07-26] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [177080 2021-07-26] (Intel Corporation -> Intel)
R2 EBP Pervasive.SQL; C:\PVSW\Bin\WGE_SRV.exe [32768 2006-12-07] () [Fichier non signé]
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.043.0226.0001\FileSyncHelper.exe [3412400 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9084512 2023-03-21] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2022-01-12] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-11-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1782696 2022-01-12] (Acronis International GmbH -> )
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2019-06-26] () [Fichier non signé]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.043.0226.0001\OneDriveUpdaterService.exe [3795336 2023-03-17] (Microsoft Corporation -> Microsoft Corporation)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14711736 2022-09-13] (ADLICE -> )
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-09-24] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-09-24] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7184848 2022-01-12] (Acronis International GmbH -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [7099408 2019-03-25] (Acronis International GmbH -> Acronis International GmbH)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [111208 2018-12-08] (Michael Maltsev -> RaMMicHaeL) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BrSerIb; C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [87552 2011-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BrUsbSIb; C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [14592 2011-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries Ltd.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [667144 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [182832 2019-03-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198112 2023-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77736 2023-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181816 2023-03-22] (Malwarebytes Inc. -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [885880 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [171976 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [693768 2022-07-23] (Acronis International GmbH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2022-07-23] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-22 09:37 - 2023-03-22 09:38 - 000032683 _____ C:\Users\loic\Desktop\FRST.txt
2023-03-22 09:36 - 2023-03-22 09:37 - 000000000 ____D C:\FRST
2023-03-22 09:34 - 2023-03-22 09:34 - 002378752 _____ (Farbar) C:\Users\loic\Desktop\FRST64.exe
2023-03-22 09:21 - 2023-03-22 09:21 - 000181816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-03-21 20:47 - 2023-03-21 20:47 - 000668651 _____ C:\Users\SAV JPH\Downloads\F006473.gerX.pdf_froyer.365-1.pdf
2023-03-21 20:45 - 2023-03-21 20:45 - 000668651 _____ C:\Users\SAV JPH\Downloads\F006473.gerX.pdf_froyer.365.pdf
2023-03-21 12:55 - 2023-03-21 12:55 - 000003838 _____ C:\Users\SAV JPH\Downloads\Re Fwd certificat 2705A KETTERER VALERIE(1).zip
2023-03-21 10:15 - 2023-03-21 10:15 - 000049679 _____ C:\Users\SAV JPH\Downloads\SUCCESSION SCHUH VALERIE NEE KETTERER SUCCESSION (TP_BL).zip
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\source
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\AppData\Local\Microsoft SDKs
2023-03-21 08:47 - 2023-03-21 08:47 - 000000000 ____D C:\Users\loic\AppData\Local\IdentityNexusIntegration
2023-03-21 08:46 - 2023-03-21 08:46 - 000001777 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022.lnk
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\Users\loic\AppData\Local\ServiceHub
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\Users\loic\AppData\Local\.IdentityService
2023-03-21 08:46 - 2023-03-21 08:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2022
2023-03-21 08:45 - 2023-03-21 08:45 - 000000000 ____D C:\Program Files\Microsoft Visual Studio
2023-03-21 08:44 - 2023-03-21 08:44 - 000001453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2023-03-21 08:44 - 2023-03-21 08:44 - 000000000 ____D C:\Users\loic\AppData\Roaming\Visual Studio Setup
2023-03-21 08:44 - 2023-03-21 08:44 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2023-03-20 17:58 - 2023-03-20 17:58 - 018985736 _____ C:\Users\SAV JPH\Downloads\327058994_511547134444875_4629760558672134194_n.mp4
2023-03-20 17:27 - 2023-03-20 17:27 - 001480328 _____ (Orange) C:\Users\SAV JPH\Downloads\Orange-assistant-page-de-demarrage.exe
2023-03-18 18:45 - 2023-03-18 18:45 - 007978308 _____ C:\Users\SAV JPH\Downloads\POPECK_SEINS_NUS_SUR_LA___CROISETTE12.mp4
2023-03-18 18:45 - 2023-03-18 18:45 - 004465212 _____ C:\Users\SAV JPH\Downloads\Ape_ro-1.mp4
2023-03-18 18:37 - 2023-03-18 18:37 - 007047803 _____ C:\Users\SAV JPH\Downloads\Het piept.mp4
2023-03-17 21:07 - 2023-03-17 21:07 - 000967715 _____ C:\Users\SAV JPH\Downloads\IL230317102.pdf
2023-03-17 16:25 - 2023-03-17 16:25 - 000487398 _____ C:\Users\SAV JPH\Downloads\vaccins-presse.jpeg
2023-03-17 09:24 - 2023-03-17 09:24 - 000002298 _____ C:\Users\SAV JPH\Downloads\Re Fwd certificat 2705A KETTERER VALERIE.zip
2023-03-16 17:28 - 2023-03-16 17:28 - 010231944 _____ C:\Users\SAV JPH\Downloads\Superbe et sacrément bien fait CM.mp4
2023-03-16 10:36 - 2023-03-16 10:36 - 000084458 _____ C:\Users\SAV JPH\Downloads\AttestationFiscale.pdf
2023-03-15 15:52 - 2023-03-15 15:52 - 000331520 _____ C:\Users\SAV JPH\Downloads\imageeb246cd6-c754-49f0-ba20-c8823d0e03cd
2023-03-15 08:32 - 2023-03-15 08:32 - 000266855 _____ C:\Users\SAV JPH\Downloads\SKM_C250i23030115310.pdf
2023-03-14 19:26 - 2023-03-14 19:26 - 000000000 ___HD C:\$WinREAgent
2023-03-14 11:32 - 2023-03-14 11:32 - 005117108 _____ C:\Users\SAV JPH\Downloads\Que sommes-nous les humains.1.mp4
2023-03-13 20:16 - 2023-03-13 20:16 - 003202913 _____ C:\Users\SAV JPH\Downloads\Succession Valérie SCHUH.zip
2023-03-13 19:44 - 2023-03-13 19:45 - 000000000 ____D C:\Users\loic\plafond tendu wolfi
2023-03-13 17:37 - 2023-03-13 17:37 - 008741781 _____ C:\Users\SAV JPH\Downloads\Monseigneur_di_Falco_Changer_le_genre_deDieu1-2.mp4
2023-03-13 17:37 - 2023-03-13 17:37 - 005042025 _____ C:\Users\SAV JPH\Downloads\Que du sable !.MP4
2023-03-13 17:35 - 2023-03-13 17:35 - 003703586 _____ C:\Users\SAV JPH\Downloads\incroyable-DA.mp4
2023-03-13 17:35 - 2023-03-13 17:35 - 002077900 _____ C:\Users\SAV JPH\Downloads\taille crayon offert par Macron auxretraite1111.mp4
2023-03-13 17:31 - 2023-03-13 17:31 - 009951513 _____ C:\Users\SAV JPH\Downloads\i-want-to-break-free-coreia-do-norte-165694.mp4
2023-03-13 16:06 - 2023-03-13 16:06 - 001240636 _____ C:\Users\SAV JPH\Downloads\plafond tendu LM.zip
2023-03-13 15:35 - 2023-03-13 15:35 - 000000000 ____D C:\ProgramData\Etiam
2023-03-13 08:45 - 2023-03-13 08:45 - 011650560 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1(1).pps
2023-03-13 08:44 - 2023-03-13 08:44 - 000753664 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1.jEsplxX6.pps.part
2023-03-13 08:44 - 2023-03-13 08:44 - 000000000 _____ C:\Users\SAV JPH\Downloads\STRASBOURG durant la 2eme guerre Mondiale1.pps
2023-03-11 19:50 - 2023-03-11 19:50 - 000279560 _____ C:\Users\SAV JPH\Downloads\CrucialFRScan.exe
2023-03-11 11:06 - 2023-03-11 11:06 - 008804864 _____ C:\Users\SAV JPH\Downloads\Cartes-postales-anciennes-Bas-Rhin-Alsace1-1.pps
2023-03-10 15:59 - 2023-03-10 15:59 - 008850325 _____ C:\Users\SAV JPH\Downloads\Les Compagnons de la Chanson vertecampagne.mp4
2023-03-10 09:14 - 2023-03-10 09:14 - 000118123 _____ C:\Users\SAV JPH\Downloads\RE RE Message en provenance du site LM Plafond Tendu _ Plafond tendu_ .zip
2023-03-09 17:50 - 2023-03-09 17:50 - 000501981 _____ C:\Users\SAV JPH\Downloads\[Pas de sujet].zip
2023-03-09 17:46 - 2023-03-09 17:46 - 008260358 _____ C:\Users\SAV JPH\Downloads\324242167_970499074337121_6511800013684338074_n.mp4
2023-03-09 11:48 - 2023-03-09 11:48 - 002067960 _____ C:\Users\SAV JPH\Downloads\TR 8 mars, journée internationale des droits des femmes.zip
2023-03-08 08:14 - 2023-03-08 08:14 - 000047496 _____ C:\Users\SAV JPH\Downloads\FACTURE ACQUITEE OBSEQUES SCHUH VALERIE(1).zip
2023-03-07 17:53 - 2023-03-07 17:53 - 000047496 _____ C:\Users\SAV JPH\Downloads\FACTURE ACQUITEE OBSEQUES SCHUH VALERIE.zip
2023-03-07 16:29 - 2023-03-07 16:29 - 000059548 _____ C:\Users\SAV JPH\Downloads\RE RE facture obsèques Valérie SCHUH.zip
2023-03-07 16:29 - 2023-03-07 16:29 - 000059548 _____ C:\Users\SAV JPH\Downloads\RE RE facture obsèques Valérie SCHUH(1).zip
2023-03-07 16:22 - 2023-03-07 16:22 - 000002413 _____ C:\Users\SAV JPH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000002376 _____ C:\Users\SAV JPH\Desktop\Microsoft Edge.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000002354 _____ C:\Users\SAV JPH\Desktop\Google Chrome.lnk
2023-03-07 16:22 - 2023-03-07 16:22 - 000000020 ___SH C:\Users\SAV JPH\ntuser.ini
2023-03-06 18:08 - 2023-03-06 18:08 - 000513390 _____ C:\Users\SAV JPH\Downloads\IL230306002-1.pdf
2023-03-06 18:07 - 2023-03-06 18:07 - 000513390 _____ C:\Users\SAV JPH\Downloads\IL230306002.pdf
2023-03-06 15:50 - 2023-03-06 15:50 - 000507344 _____ C:\Users\SAV JPH\Downloads\complémentaire-1-2.pdf
2023-03-06 15:39 - 2023-03-06 15:39 - 000115937 _____ C:\Users\SAV JPH\Downloads\631662.pdf
2023-03-06 10:39 - 2023-03-06 10:39 - 005666443 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-03-04-10-59-24(1).mp4
2023-03-05 19:39 - 2023-03-05 19:39 - 000172005 _____ C:\Users\loic\vitale Maurice Schuh.pdf
2023-03-05 09:15 - 2023-03-05 09:15 - 022791552 _____ C:\Users\SAV JPH\Downloads\TR images et vidéo.zip
2023-03-05 09:15 - 2023-03-05 09:15 - 015203042 _____ C:\Users\SAV JPH\Downloads\WhatsApp Video 2023-01-19 at 07.48.19(1).mp4
2023-03-05 09:14 - 2023-03-05 09:14 - 015203042 _____ C:\Users\SAV JPH\Downloads\WhatsApp Video 2023-01-19 at 07.48.19.mp4
2023-03-05 09:12 - 2023-03-05 09:12 - 005666443 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-03-04-10-59-24.mp4
2023-03-04 19:46 - 2023-03-04 19:46 - 000012276 _____ C:\Users\SAV JPH\Downloads\Part_2(3).jpeg
2023-03-04 19:45 - 2023-03-04 19:45 - 000012276 _____ C:\Users\SAV JPH\Downloads\Part_2(2).jpeg
2023-03-04 19:45 - 2023-03-04 19:45 - 000008604 _____ C:\Users\SAV JPH\Downloads\Part_2(1).jpeg
2023-03-04 16:20 - 2023-03-04 16:20 - 000013569 _____ C:\Users\SAV JPH\Downloads\Part_2.jpeg
2023-03-03 20:17 - 2023-03-03 20:17 - 000075179 _____ C:\Users\SAV JPH\Downloads\8cf64b56-09eb-4a6e-9efd-0468b69cf9a9.jpeg
2023-03-03 20:17 - 2023-03-03 20:17 - 000075179 _____ C:\Users\SAV JPH\Downloads\8cf64b56-09eb-4a6e-9efd-0468b69cf9a9(1).jpeg
2023-03-03 12:55 - 2023-03-03 12:55 - 000026821 _____ C:\Users\SAV JPH\Downloads\RE Devis estimatif plafond tendu pour chambre d'enfant.zip
2023-03-03 12:29 - 2023-03-03 12:29 - 000401903 _____ C:\Users\SAV JPH\Downloads\Convocation.zip
2023-03-02 11:40 - 2023-03-02 11:40 - 003617328 _____ C:\Users\SAV JPH\Downloads\TR Fwd Tr Betschdorf et environs.zip
2023-03-02 11:40 - 2023-03-02 11:40 - 003617328 _____ C:\Users\SAV JPH\Downloads\TR Fwd Tr Betschdorf et environs(1).zip
2023-03-02 10:09 - 2023-03-02 10:09 - 007394948 _____ C:\Users\SAV JPH\Downloads\oiseau et homme qui chantent.mp4
2023-03-01 12:51 - 2023-03-01 12:51 - 000122068 _____ C:\Users\SAV JPH\Downloads\RE CRG [252].zip
2023-02-28 17:40 - 2023-02-28 17:40 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-3.pdf
2023-02-28 17:29 - 2023-02-28 17:29 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-2.pdf
2023-02-28 17:13 - 2023-02-28 17:13 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217-1.pdf
2023-02-28 17:10 - 2023-02-28 17:10 - 011235161 _____ C:\Users\SAV JPH\Downloads\2023-02-28_16775934712019961217.pdf
2023-02-28 16:39 - 2023-02-28 16:39 - 010121601 _____ C:\Users\SAV JPH\Downloads\TR Les boutiques de demain .zip
2023-02-28 16:36 - 2023-02-28 16:37 - 010250734 _____ C:\Users\SAV JPH\Downloads\VIDEO-2023-01-20-09-15-55.mp4
2023-02-28 16:12 - 2023-02-28 16:12 - 004118743 _____ C:\Users\SAV JPH\Downloads\RE Message en provenance du site LM Plafond Tendu _ Plafond tendu_ .zip
2023-02-28 11:09 - 2023-02-28 11:09 - 000652458 _____ C:\Users\SAV JPH\Downloads\Devis estimatif plafond tendu pour chambre d'enfant.zip
2023-02-27 11:22 - 2023-02-27 11:22 - 002531366 _____ C:\Users\SAV JPH\Downloads\Fwd .zip
2023-02-27 09:16 - 2023-02-27 09:16 - 001645403 _____ C:\Users\SAV JPH\Downloads\photos suite.zip
2023-02-26 20:06 - 2023-02-26 20:06 - 001523395 _____ C:\Users\SAV JPH\Downloads\download.pdf
2023-02-26 20:01 - 2023-02-26 20:01 - 001523395 _____ C:\Users\loic\urologue.pdf
2023-02-26 09:43 - 2023-02-26 09:43 - 004193280 _____ C:\Users\SAV JPH\Downloads\Tu_les_reconnais_encore____-1.pps
2023-02-25 17:16 - 2023-02-25 17:16 - 006195712 _____ C:\Users\SAV JPH\Downloads\Mont_des_Oliviers111.pps
2023-02-25 17:15 - 2023-02-25 17:15 - 000209492 _____ C:\Users\SAV JPH\Downloads\ATT000431-1.pdf
2023-02-25 10:35 - 2023-02-25 10:35 - 006157696 _____ C:\Users\SAV JPH\Downloads\origine de la danse celtique 1.mp4
2023-02-24 18:47 - 2023-02-24 18:47 - 000870430 _____ C:\Users\SAV JPH\Downloads\2.pdf
2023-02-24 18:47 - 2023-02-24 18:47 - 000657140 _____ C:\Users\SAV JPH\Downloads\5.pdf
2023-02-24 15:41 - 2023-02-24 15:41 - 001377911 _____ C:\Users\SAV JPH\Downloads\Fw Fwd Fwd Les gaulois en grève une ritournelle sempiternelle !!!.zip
2023-02-23 19:48 - 2023-02-23 19:48 - 000000000 _____ C:\Users\SAV JPH\Downloads\5A30I7X6.htm
2023-02-22 20:18 - 2023-02-22 20:18 - 010317824 _____ C:\Users\SAV JPH\Downloads\Les Femmes au Volant(1).pps
2023-02-22 18:11 - 2023-02-22 18:11 - 000601942 _____ C:\Users\SAV JPH\Downloads\IL230222101-1.pdf
2023-02-22 18:08 - 2023-02-22 18:08 - 000601957 _____ C:\Users\SAV JPH\Downloads\IL230222101.pdf
2023-02-22 16:59 - 2023-02-22 16:59 - 010320896 _____ C:\Users\SAV JPH\Downloads\Les Femmes au Volant.pps
2023-02-22 15:35 - 2023-02-22 15:35 - 000424322 _____ C:\Users\SAV JPH\Downloads\PROBTP-Optique - Attente de remboursement-23 06 2022(1).jpeg
2023-02-22 15:34 - 2023-02-22 15:34 - 000661771 _____ C:\Users\SAV JPH\Downloads\PROBTP-Optique - Attente de remboursement-23 06 2022.jpeg
2023-02-22 15:33 - 2023-02-22 15:33 - 000056014 _____ C:\Users\SAV JPH\Downloads\PROBTP-Information paiement-Remboursement santé-24 01 2023.pdf
2023-02-22 15:18 - 2023-02-22 15:18 - 000143271 _____ C:\Users\SAV JPH\Downloads\F025342.gerX.pdf_froyer.276.pdf
2023-02-22 15:08 - 2023-02-22 15:08 - 000144687 _____ C:\Users\SAV JPH\Downloads\F010629.gerX.pdf_lgeissle.277.pdf
2023-02-22 11:52 - 2023-02-22 11:52 - 003870001 _____ C:\Users\SAV JPH\Downloads\Laurent Gerra - Henry Salvador11.mp4
2023-02-22 10:21 - 2023-02-22 10:21 - 003030528 _____ C:\Users\SAV JPH\Downloads\TRUCS - Bons _ savoir (_).pps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-03-22 09:37 - 2018-12-08 14:48 - 000000000 ____D C:\Users\loic\AppData\LocalLow\Mozilla
2023-03-22 09:30 - 2020-09-06 16:20 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3461CAB5-BDA3-41B0-8F87-8C23500F1D37}
2023-03-22 09:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-22 09:25 - 2020-09-06 16:17 - 001681434 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-03-22 09:25 - 2019-12-07 15:49 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2023-03-22 09:25 - 2019-12-07 15:49 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2023-03-22 09:25 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-03-22 09:24 - 2022-02-09 12:33 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-22 09:23 - 2021-04-21 06:18 - 000000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-03-22 09:23 - 2018-12-08 14:40 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-22 09:23 - 2018-12-08 14:26 - 000000000 ____D C:\Program Files\CCleaner
2023-03-22 09:21 - 2020-09-06 16:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-22 09:21 - 2020-09-06 16:13 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-22 09:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-22 09:21 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-22 09:21 - 2018-12-08 14:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-03-22 09:15 - 2019-02-01 17:21 - 000000000 __SHD C:\Users\loic\IntelGraphicsProfiles
2023-03-21 20:49 - 2020-09-06 15:51 - 000000000 ____D C:\Users\loic
2023-03-21 19:34 - 2020-09-06 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-21 17:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-21 08:49 - 2020-09-06 16:13 - 000641168 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-03-21 08:46 - 2020-02-14 18:10 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-03-21 08:46 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-03-21 08:45 - 2020-02-14 18:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2023-03-21 08:37 - 2018-12-08 11:19 - 000000000 ____D C:\Users\loic\AppData\Local\Packages
2023-03-21 08:34 - 2018-12-08 15:02 - 000000000 ____D C:\ProgramData\Package Cache
2023-03-20 20:30 - 2022-09-30 08:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-03-20 20:17 - 2022-09-30 08:32 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-03-20 20:17 - 2020-09-06 16:20 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-03-20 20:17 - 2020-07-22 15:13 - 000000000 ____D C:\Users\loic\AppData\Local\CrashDumps
2023-03-19 09:55 - 2021-05-30 18:26 - 000000000 ___RD C:\photos privées
2023-03-18 19:21 - 2020-07-09 17:08 - 000002466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-18 08:37 - 2021-09-12 07:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-03-17 20:06 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1006
2023-03-17 20:06 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1737792242-3146974705-902076100-1003
2023-03-17 20:06 - 2020-09-06 16:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-03-17 20:06 - 2019-09-29 06:09 - 000002194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-03-17 11:42 - 2023-02-15 09:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-03-17 11:42 - 2018-12-08 14:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-03-17 09:05 - 2021-10-14 07:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-03-17 09:05 - 2018-12-08 14:48 - 000001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-03-15 18:00 - 2019-04-27 18:03 - 000000000 ____D C:\Users\loic\AppData\Roaming\ZHP
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-03-14 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-03-14 19:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-14 19:36 - 2020-09-06 16:14 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-03-14 19:25 - 2018-12-08 15:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-03-14 19:20 - 2018-12-08 15:32 - 153620824 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-03-08 08:15 - 2020-09-06 16:20 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-03-08 08:15 - 2020-09-06 16:20 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-03-07 16:22 - 2020-09-06 15:51 - 000000000 ____D C:\Users\SAV JPH
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 __SHD C:\Users\SAV JPH\IntelGraphicsProfiles
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 ___RD C:\Users\SAV JPH\3D Objects
2023-03-07 16:22 - 2019-02-01 18:33 - 000000000 ____D C:\Users\SAV JPH\AppData\Local\Packages
2023-03-07 16:22 - 2018-12-08 11:19 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-03-05 09:19 - 2019-03-20 16:57 - 000057344 _____ C:\Users\loic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2023-02-26 13:13 - 2019-02-02 16:13 - 000000000 ____D C:\ProgramData\TEMP
==================== Fichiers à la racine de certains dossiers ========
2020-01-24 07:50 - 2020-02-21 10:59 - 000025175 _____ () C:\Users\loic\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2019-03-20 16:57 - 2023-03-05 09:19 - 000057344 _____ () C:\Users\loic\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-05-20 10:04 - 2019-05-20 10:04 - 000000017 _____ () C:\Users\loic\AppData\Local\resmon.resmoncfg
==================== FLock ==============================
2019-02-02 16:28 C:\ProgramData\Brother
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================