Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Exécuté par Antonin (administrateur) sur DESKTOP-K6EEQON (ASUSTeK COMPUTER INC. N56VB) (27-11-2023 18:03:55)
Exécuté depuis D:\Desktop\FRST64.exe
Profils chargés: Antonin
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3693 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\pwahelper.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <24>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\pwahelper.exe
(services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1129440 2023-07-24] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [Spotify] => C:\Users\Antonin\AppData\Roaming\Spotify\Spotify.exe [19438520 2022-02-21] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1376200 2023-11-07] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [MicrosoftEdgeAutoLaunch_DE3DB4A8198601D37ADF2D72DAD1A5B3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [BingSvc] => C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6638496 2022-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\WINDOWS\system32\CNMLMBX.DLL [391168 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.160\Installer\chrmstp.exe [2023-11-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\Installer\chrmstp.exe [2023-11-20] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\myCANAL.lnk [2023-09-26]
ShortcutTarget: myCANAL.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8A6FCD10-4EF3-4E61-B70A-69397D2656FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {9EF9D4EB-F05D-4AF3-AF31-4F6BF1C8D338} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\AsTPCenter\x64\AsusTPLauncher.exe [18232 2015-06-30] (ASUSTeK Computer Inc. -> AsusTek)
Task: {2C067BF2-1CD7-49DE-BC74-06B25BA6D523} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A8BAE8B8-AA17-430F-822B-F69B4946A8A2} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CF1F9AC4-FDDA-4DBF-B583-B520396FF036} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{17747D51-B004-42D9-9C18-5880D5FDC6A0} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {2F9D7725-7521-4C70-BDC3-2DC5CAA1389B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{81533028-C7B9-4E20-9D22-F9800CAB5F83} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C868754A-4DC2-4384-8C2F-47BDF072F619} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5156375E-20CD-4279-83CD-90376F5B8AB7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "7ee81edd-1992-4436-9108-fe799aaa76cc" --version "6.17.10746" --silent
Task: {2FC14AB5-4ADA-4985-A659-0CFCA002C9BD} - System32\Tasks\CCleanerSkipUAC - Antonin => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C5855709-CA45-4EE6-BFD5-1A10618221F6} - System32\Tasks\GoogleUpdateTaskMachineCore{B09195B2-D1C3-42CA-B4A6-7BA636F4E115} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-30] (Google LLC -> Google LLC)
Task: {2A46B317-B6CF-4459-ABF7-F083F431F490} - System32\Tasks\GoogleUpdateTaskMachineUA{BA3572B4-851F-4C22-B636-E13820BD5BAC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-30] (Google LLC -> Google LLC)
Task: {4BB590EC-518F-4FCF-9F81-DA466A7E7711} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-23] (Microsoft Windows -> Microsoft Corporation)
Task: {666083BF-2071-4A25-A380-208A8CFBEF4F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DE1C4C24-600D-4DC7-A1C0-2D25265CCC7A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E029968-9B8A-4C8D-AA48-F12E92CBD604} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {349F7782-2977-4715-A610-8D192DAEC20C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F66C7FBF-5577-4448-A29E-65BC9AD3B907} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-23] (Microsoft Windows -> Microsoft Corporation)
Task: {60F954C0-12A5-4BE0-B0F3-79BE9AF85611} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-11-25] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {29FFBD2B-D8BC-46C6-918A-BFE762F04846} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-11-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {3B786B17-F773-4BA1-98EC-42C14E50AF7D} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {0F446B81-9A59-4258-B504-041DD53A6785} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {F830FBEA-8079-4F9D-9E9E-ABE8E72AF899} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{512ccbaf-abad-488a-bc4f-46962b784ce9}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{581c52cb-4856-458b-bcff-4cb4621449e2}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d465d88d-d40a-40a7-9349-366088beb812}: [DhcpNameServer] 192.168.43.249
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-27]
Edge Notifications: Default -> hxxps://fr.letmeknow.ch; hxxps://meet.google.com; hxxps://www.sncf-connect.com; hxxps://www.youtube.com
Edge Extension: (Google Docs hors connexion) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-19]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-11-11]
Edge Extension: (Edge relevant text changes) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-15]
Edge Extension: (uBlock Origin) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-11-23]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2023-10-31]
FireFox:
========
FF DefaultProfile: o7cdeyoi.default
FF ProfilePath: C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\o7cdeyoi.default [2023-08-26]
FF ProfilePath: C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\xnbwglur.default-release [2023-11-25]
FF user.js: detected! => C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\xnbwglur.default-release\user.js [2023-09-12]
FF Notifications: Mozilla\Firefox\Profiles\xnbwglur.default-release -> hxxps://www.tf1.fr
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-07-24] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-07-24] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default [2023-08-26]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.facebook.com
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Google Docs hors connexion) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-08-26]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-30]
CHR HKU\S-1-5-21-965184461-2312853881-2572330098-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-965184461-2312853881-2572330098-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
Brave:
=======
BRA Profile: C:\Users\Antonin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-09-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-07-24] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\brave_vpn_helper.exe [2762264 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [72648 2023-11-07] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-11-11] (Malwarebytes Inc. -> Malwarebytes)
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2022-09-01] () [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\elevation_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [100776 2015-06-30] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [100776 2015-06-30] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222800 2023-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-20] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-27 18:03 - 2023-11-27 18:05 - 000000000 ____D C:\FRST
2023-11-25 20:04 - 2023-11-26 12:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-23 09:25 - 2023-11-23 09:25 - 000000000 ___HD C:\$WinREAgent
2023-11-20 19:57 - 2023-11-20 19:57 - 000000000 ____D C:\Users\Antonin\AppData\Local\CrashDumps
2023-11-12 16:32 - 2023-11-12 16:32 - 000000000 ____D C:\ProgramData\CyberGhost
2023-11-11 21:05 - 2023-11-11 21:05 - 000003646 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2023-11-11 21:05 - 2023-11-11 21:05 - 000002874 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2023-11-11 21:05 - 2023-11-11 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2023-11-11 21:05 - 2023-11-11 21:05 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-11-11 20:31 - 2023-11-11 20:31 - 000000000 ____D C:\ProgramData\ASUS
2023-11-11 19:48 - 2023-11-27 13:35 - 000000000 ____D C:\Users\Antonin\AppData\Local\Malwarebytes
2023-11-11 19:48 - 2023-11-11 19:48 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-11-11 19:48 - 2023-11-11 19:48 - 000000000 ____D C:\Users\Antonin\AppData\Local\mbam
2023-11-11 19:46 - 2023-11-11 19:46 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-11 19:45 - 2023-11-11 19:46 - 000000000 ____D C:\Program Files\Malwarebytes
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-27 18:02 - 2021-12-20 16:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-27 17:36 - 2021-12-20 16:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-27 17:30 - 2022-03-30 18:00 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-27 17:30 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-27 13:35 - 2022-02-04 19:51 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2023-11-27 13:33 - 2018-05-24 19:42 - 000000000 __SHD C:\Users\Antonin\IntelGraphicsProfiles
2023-11-26 22:20 - 2021-12-20 16:56 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-26 12:31 - 2023-06-23 18:33 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-26 12:31 - 2022-09-05 10:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-25 22:45 - 2021-09-19 02:04 - 000000000 ____D C:\Users\Antonin\AppData\LocalLow\IGDump
2023-11-24 23:34 - 2018-05-24 19:33 - 000000000 ___SD C:\Users\Antonin\AppData\Roaming\Microsoft\Credentials
2023-11-24 17:32 - 2023-04-01 19:24 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-24 09:08 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-24 09:05 - 2021-12-20 16:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-24 04:45 - 2021-12-20 16:02 - 000000000 ____D C:\WINDOWS\INF
2023-11-23 23:46 - 2021-12-20 17:37 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-23 23:46 - 2021-12-20 16:08 - 000792972 _____ C:\WINDOWS\system32\perfh00C.dat
2023-11-23 23:46 - 2021-12-20 16:08 - 000150102 _____ C:\WINDOWS\system32\perfc00C.dat
2023-11-23 23:42 - 2021-12-20 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-23 23:42 - 2020-11-06 20:46 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-23 23:35 - 2021-12-20 16:33 - 000260440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-23 23:34 - 2021-12-20 15:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-23 23:29 - 2021-12-20 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-23 23:27 - 2021-12-20 16:08 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\IME
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-23 23:24 - 2021-12-20 15:45 - 000000000 ____D C:\WINDOWS\servicing
2023-11-23 11:15 - 2021-12-20 15:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-23 11:14 - 2021-12-20 16:04 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-23 11:14 - 2021-12-20 16:04 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-23 11:14 - 2021-12-20 16:04 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-23 10:34 - 2021-12-20 16:55 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-23 10:04 - 2022-04-27 17:12 - 000000000 ____D C:\Users\Antonin\AppData\Local\CyberGhost
2023-11-23 09:04 - 2022-04-27 17:13 - 000000000 ____D C:\Users\Antonin\AppData\Roaming\CyberGhost
2023-11-22 20:45 - 2021-12-20 16:03 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-21 21:17 - 2021-12-20 17:07 - 000000000 ____D C:\Users\Antonin
2023-11-21 18:44 - 2022-12-19 19:25 - 000000000 ____D C:\ProgramData\myCANAL
2023-11-21 11:26 - 2021-12-20 20:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-21 11:06 - 2021-12-20 20:09 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-20 20:08 - 2022-09-21 10:26 - 000002368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-11-20 20:07 - 2020-07-04 16:12 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-14 20:34 - 2022-04-06 16:30 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-14 20:33 - 2022-10-13 20:34 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-11-14 20:26 - 2022-09-21 10:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-12 13:01 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-11-11 21:03 - 2022-09-21 10:33 - 000003580 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win81
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win8
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win7
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win10
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\DesktopManager
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\AsTPCenter
2023-11-11 20:30 - 2021-12-20 19:57 - 000000000 ____D C:\ProgramData\Packages
2023-11-11 20:30 - 2021-12-20 19:56 - 000000000 ____D C:\Users\Antonin\AppData\Local\Packages
2023-11-11 20:29 - 2021-12-20 20:09 - 000000000 ____D C:\Users\Antonin\AppData\Local\PlaceholderTileLogoFolder
2023-11-11 20:25 - 2022-03-30 18:01 - 000003992 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{BA3572B4-851F-4C22-B636-E13820BD5BAC}
2023-11-11 20:25 - 2022-03-30 18:01 - 000003868 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B09195B2-D1C3-42CA-B4A6-7BA636F4E115}
2023-11-11 19:47 - 2021-12-20 16:03 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-11 19:24 - 2022-03-23 10:01 - 000000000 ____D C:\Users\Antonin\AppData\Roaming\vlc
2023-11-11 19:23 - 2023-05-27 19:40 - 000000000 ____D C:\Users\Antonin\AppData\Local\ElevatedDiagnostics
2023-11-08 22:47 - 2022-04-27 17:11 - 000000000 ____D C:\Program Files\CyberGhost 8
2023-11-07 09:51 - 2021-12-20 16:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-03 17:59 - 2021-12-20 20:11 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-02 23:38 - 2022-09-21 10:44 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-11-02 23:38 - 2022-09-21 10:44 - 000000000 ____D C:\Program Files\CCleaner
2023-10-28 17:40 - 2021-12-20 16:54 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-28 17:40 - 2021-12-20 16:54 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2015-06-30 17:14 - 2015-06-30 17:14 - 000072504 _____ (ASUSTeK Computer Inc. All rights reserved.) C:\Program Files (x86)\check_os.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000078648 _____ () C:\Program Files (x86)\CopyCommonFile.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000086328 _____ () C:\Program Files (x86)\CopyCommonFile64.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000004877 _____ () C:\Program Files (x86)\install_all.bat
2015-06-30 17:14 - 2015-06-30 17:14 - 000001308 _____ () C:\Program Files (x86)\uninstall_all.bat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Antonin (administrateur) sur DESKTOP-K6EEQON (ASUSTeK COMPUTER INC. N56VB) (27-11-2023 18:03:55)
Exécuté depuis D:\Desktop\FRST64.exe
Profils chargés: Antonin
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3693 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPLoader.exe
(C:\Program Files (x86)\AsTPCenter\x64\AsusTPCenter.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPHelper.exe
(C:\Program Files (x86)\AsTPCenter\x64\AsusTPLoader.exe ->) (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\AsTPCenter\x64\AsusTPCenter.exe
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\pwahelper.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <24>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\pwahelper.exe
(services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1129440 2023-07-24] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKLM\Software\Policies\...\system: [PublishUserActivities] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [Spotify] => C:\Users\Antonin\AppData\Roaming\Spotify\Spotify.exe [19438520 2022-02-21] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1376200 2023-11-07] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [MicrosoftEdgeAutoLaunch_DE3DB4A8198601D37ADF2D72DAD1A5B3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-965184461-2312853881-2572330098-1001\...\Run: [BingSvc] => C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6638496 2022-09-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe [58405664 2023-11-24] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\WINDOWS\system32\CNMLMBX.DLL [391168 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.160\Installer\chrmstp.exe [2023-11-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\Installer\chrmstp.exe [2023-11-20] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\myCANAL.lnk [2023-09-26]
ShortcutTarget: myCANAL.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {8A6FCD10-4EF3-4E61-B70A-69397D2656FF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {9EF9D4EB-F05D-4AF3-AF31-4F6BF1C8D338} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\AsTPCenter\x64\AsusTPLauncher.exe [18232 2015-06-30] (ASUSTeK Computer Inc. -> AsusTek)
Task: {2C067BF2-1CD7-49DE-BC74-06B25BA6D523} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A8BAE8B8-AA17-430F-822B-F69B4946A8A2} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CF1F9AC4-FDDA-4DBF-B583-B520396FF036} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{17747D51-B004-42D9-9C18-5880D5FDC6A0} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {2F9D7725-7521-4C70-BDC3-2DC5CAA1389B} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{81533028-C7B9-4E20-9D22-F9800CAB5F83} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C868754A-4DC2-4384-8C2F-47BDF072F619} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5156375E-20CD-4279-83CD-90376F5B8AB7} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "7ee81edd-1992-4436-9108-fe799aaa76cc" --version "6.17.10746" --silent
Task: {2FC14AB5-4ADA-4985-A659-0CFCA002C9BD} - System32\Tasks\CCleanerSkipUAC - Antonin => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C5855709-CA45-4EE6-BFD5-1A10618221F6} - System32\Tasks\GoogleUpdateTaskMachineCore{B09195B2-D1C3-42CA-B4A6-7BA636F4E115} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-30] (Google LLC -> Google LLC)
Task: {2A46B317-B6CF-4459-ABF7-F083F431F490} - System32\Tasks\GoogleUpdateTaskMachineUA{BA3572B4-851F-4C22-B636-E13820BD5BAC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-03-30] (Google LLC -> Google LLC)
Task: {4BB590EC-518F-4FCF-9F81-DA466A7E7711} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-23] (Microsoft Windows -> Microsoft Corporation)
Task: {666083BF-2071-4A25-A380-208A8CFBEF4F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DE1C4C24-600D-4DC7-A1C0-2D25265CCC7A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6E029968-9B8A-4C8D-AA48-F12E92CBD604} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {349F7782-2977-4715-A610-8D192DAEC20C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F66C7FBF-5577-4448-A29E-65BC9AD3B907} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-23] (Microsoft Windows -> Microsoft Corporation)
Task: {60F954C0-12A5-4BE0-B0F3-79BE9AF85611} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674208 2023-11-25] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {29FFBD2B-D8BC-46C6-918A-BFE762F04846} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-11-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {3B786B17-F773-4BA1-98EC-42C14E50AF7D} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {0F446B81-9A59-4258-B504-041DD53A6785} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {F830FBEA-8079-4F9D-9E9E-ABE8E72AF899} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{512ccbaf-abad-488a-bc4f-46962b784ce9}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{581c52cb-4856-458b-bcff-4cb4621449e2}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d465d88d-d40a-40a7-9349-366088beb812}: [DhcpNameServer] 192.168.43.249
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-27]
Edge Notifications: Default -> hxxps://fr.letmeknow.ch; hxxps://meet.google.com; hxxps://www.sncf-connect.com; hxxps://www.youtube.com
Edge Extension: (Google Docs hors connexion) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-19]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-11-11]
Edge Extension: (Edge relevant text changes) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-15]
Edge Extension: (uBlock Origin) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-11-23]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Antonin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2023-10-31]
FireFox:
========
FF DefaultProfile: o7cdeyoi.default
FF ProfilePath: C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\o7cdeyoi.default [2023-08-26]
FF ProfilePath: C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\xnbwglur.default-release [2023-11-25]
FF user.js: detected! => C:\Users\Antonin\AppData\Roaming\Mozilla\Firefox\Profiles\xnbwglur.default-release\user.js [2023-09-12]
FF Notifications: Mozilla\Firefox\Profiles\xnbwglur.default-release -> hxxps://www.tf1.fr
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-07-24] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-07-24] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default [2023-08-26]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.facebook.com
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Google Docs hors connexion) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-08-26]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-30]
CHR HKU\S-1-5-21-965184461-2312853881-2572330098-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-965184461-2312853881-2572330098-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
Brave:
=======
BRA Profile: C:\Users\Antonin\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-09-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-07-24] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-09-21] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\brave_vpn_helper.exe [2762264 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [72648 2023-11-07] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-11-11] (Malwarebytes Inc. -> Malwarebytes)
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2022-09-01] () [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\elevation_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [100776 2015-06-30] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [100776 2015-06-30] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222800 2023-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-04-24] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-20] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-27 18:03 - 2023-11-27 18:05 - 000000000 ____D C:\FRST
2023-11-25 20:04 - 2023-11-26 12:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-23 09:25 - 2023-11-23 09:25 - 000000000 ___HD C:\$WinREAgent
2023-11-20 19:57 - 2023-11-20 19:57 - 000000000 ____D C:\Users\Antonin\AppData\Local\CrashDumps
2023-11-12 16:32 - 2023-11-12 16:32 - 000000000 ____D C:\ProgramData\CyberGhost
2023-11-11 21:05 - 2023-11-11 21:05 - 000003646 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2023-11-11 21:05 - 2023-11-11 21:05 - 000002874 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2023-11-11 21:05 - 2023-11-11 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2023-11-11 21:05 - 2023-11-11 21:05 - 000000000 ____D C:\Program Files (x86)\ASUS
2023-11-11 20:31 - 2023-11-11 20:31 - 000000000 ____D C:\ProgramData\ASUS
2023-11-11 19:48 - 2023-11-27 13:35 - 000000000 ____D C:\Users\Antonin\AppData\Local\Malwarebytes
2023-11-11 19:48 - 2023-11-11 19:48 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-11-11 19:48 - 2023-11-11 19:48 - 000000000 ____D C:\Users\Antonin\AppData\Local\mbam
2023-11-11 19:46 - 2023-11-11 19:46 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-11 19:45 - 2023-11-11 19:46 - 000000000 ____D C:\Program Files\Malwarebytes
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-27 18:02 - 2021-12-20 16:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-27 17:36 - 2021-12-20 16:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-27 17:30 - 2022-03-30 18:00 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-27 17:30 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-27 13:35 - 2022-02-04 19:51 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2023-11-27 13:33 - 2018-05-24 19:42 - 000000000 __SHD C:\Users\Antonin\IntelGraphicsProfiles
2023-11-26 22:20 - 2021-12-20 16:56 - 000000000 ____D C:\ProgramData\NVIDIA
2023-11-26 12:31 - 2023-06-23 18:33 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-26 12:31 - 2022-09-05 10:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-25 22:45 - 2021-09-19 02:04 - 000000000 ____D C:\Users\Antonin\AppData\LocalLow\IGDump
2023-11-24 23:34 - 2018-05-24 19:33 - 000000000 ___SD C:\Users\Antonin\AppData\Roaming\Microsoft\Credentials
2023-11-24 17:32 - 2023-04-01 19:24 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-24 09:08 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-24 09:05 - 2021-12-20 16:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-24 04:45 - 2021-12-20 16:02 - 000000000 ____D C:\WINDOWS\INF
2023-11-23 23:46 - 2021-12-20 17:37 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-23 23:46 - 2021-12-20 16:08 - 000792972 _____ C:\WINDOWS\system32\perfh00C.dat
2023-11-23 23:46 - 2021-12-20 16:08 - 000150102 _____ C:\WINDOWS\system32\perfc00C.dat
2023-11-23 23:42 - 2021-12-20 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-23 23:42 - 2020-11-06 20:46 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-23 23:35 - 2021-12-20 16:33 - 000260440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-11-23 23:34 - 2021-12-20 15:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-23 23:29 - 2021-12-20 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-23 23:29 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-23 23:28 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-23 23:27 - 2021-12-20 16:08 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-23 23:27 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\IME
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-23 23:24 - 2021-12-20 16:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-23 23:24 - 2021-12-20 15:45 - 000000000 ____D C:\WINDOWS\servicing
2023-11-23 11:15 - 2021-12-20 15:55 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-23 11:14 - 2021-12-20 16:04 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-23 11:14 - 2021-12-20 16:04 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-23 11:14 - 2021-12-20 16:04 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-11-23 10:34 - 2021-12-20 16:55 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-23 10:04 - 2022-04-27 17:12 - 000000000 ____D C:\Users\Antonin\AppData\Local\CyberGhost
2023-11-23 09:04 - 2022-04-27 17:13 - 000000000 ____D C:\Users\Antonin\AppData\Roaming\CyberGhost
2023-11-22 20:45 - 2021-12-20 16:03 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-21 21:17 - 2021-12-20 17:07 - 000000000 ____D C:\Users\Antonin
2023-11-21 18:44 - 2022-12-19 19:25 - 000000000 ____D C:\ProgramData\myCANAL
2023-11-21 11:26 - 2021-12-20 20:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-21 11:06 - 2021-12-20 20:09 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-20 20:08 - 2022-09-21 10:26 - 000002368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-11-20 20:07 - 2020-07-04 16:12 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-14 20:34 - 2022-04-06 16:30 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-14 20:33 - 2022-10-13 20:34 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-11-14 20:26 - 2022-09-21 10:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-12 13:01 - 2021-12-20 16:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-11-11 21:03 - 2022-09-21 10:33 - 000003580 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win81
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win8
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win7
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\win10
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\DesktopManager
2023-11-11 21:03 - 2022-02-04 19:47 - 000000000 ____D C:\Program Files (x86)\AsTPCenter
2023-11-11 20:30 - 2021-12-20 19:57 - 000000000 ____D C:\ProgramData\Packages
2023-11-11 20:30 - 2021-12-20 19:56 - 000000000 ____D C:\Users\Antonin\AppData\Local\Packages
2023-11-11 20:29 - 2021-12-20 20:09 - 000000000 ____D C:\Users\Antonin\AppData\Local\PlaceholderTileLogoFolder
2023-11-11 20:25 - 2022-03-30 18:01 - 000003992 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{BA3572B4-851F-4C22-B636-E13820BD5BAC}
2023-11-11 20:25 - 2022-03-30 18:01 - 000003868 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B09195B2-D1C3-42CA-B4A6-7BA636F4E115}
2023-11-11 19:47 - 2021-12-20 16:03 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-11 19:24 - 2022-03-23 10:01 - 000000000 ____D C:\Users\Antonin\AppData\Roaming\vlc
2023-11-11 19:23 - 2023-05-27 19:40 - 000000000 ____D C:\Users\Antonin\AppData\Local\ElevatedDiagnostics
2023-11-08 22:47 - 2022-04-27 17:11 - 000000000 ____D C:\Program Files\CyberGhost 8
2023-11-07 09:51 - 2021-12-20 16:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-03 17:59 - 2021-12-20 20:11 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-02 23:38 - 2022-09-21 10:44 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-11-02 23:38 - 2022-09-21 10:44 - 000000000 ____D C:\Program Files\CCleaner
2023-10-28 17:40 - 2021-12-20 16:54 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-28 17:40 - 2021-12-20 16:54 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2015-06-30 17:14 - 2015-06-30 17:14 - 000072504 _____ (ASUSTeK Computer Inc. All rights reserved.) C:\Program Files (x86)\check_os.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000078648 _____ () C:\Program Files (x86)\CopyCommonFile.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000086328 _____ () C:\Program Files (x86)\CopyCommonFile64.exe
2015-06-30 17:14 - 2015-06-30 17:14 - 000004877 _____ () C:\Program Files (x86)\install_all.bat
2015-06-30 17:14 - 2015-06-30 17:14 - 000001308 _____ () C:\Program Files (x86)\uninstall_all.bat
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================