FRST.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2023
Exécuté par michel (administrateur) sur DESKTOP-UTICQ11 (Hewlett-Packard HP Pavilion g7 Notebook PC) (01-11-2023 18:45:13)
Exécuté depuis C:\Users\michel\Downloads\FRST(1).exe
Profils chargés: michel
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3636 (X86) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(explorer.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE
(explorer.exe ->) (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.) C:\Program Files\Pentablet\PenTablet.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Indigo Rose Corporation) [Fichier non signé] C:\Users\michel\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe
(Indigo Rose Corporation) [Fichier non signé] C:\Users\michel\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536064 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [1101448 2022-08-05] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [351640 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [Nouvelle valeur #1] 0
HKLM\Software\Policies\...\system: [DisableAcrylicBackgroundOnLogon] 1
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-2412924731-293402789-2616735408-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2412924731-293402789-2616735408-1001\...\Run: [MicrosoftEdgeAutoLaunch_35387DE899A5D10865ABF3FCAC512772] => "C:\Program Files\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3072040 2023-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPDDQ.DLL [382464 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series: C:\WINDOWS\system32\CNMLMDQ.DLL [1067008 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series XPS: C:\WINDOWS\system32\CNMXLMDQ.DLL [1069056 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\mswmp.inf,PerUserStub
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.118\Installer\chrmstp.exe [2023-10-31] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2021-04-25]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {F97D448B-78AF-4481-928E-859EAB6DAA04} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {C5126AAA-9ADD-4971-BAE2-FDB3F9A90CE2} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4703640 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
Task: {39085089-7D35-4C87-A954-EE1D62E954FB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1830296 2023-10-31] (Avast Software s.r.o. -> Avast Software)
Task: {0878C1B3-ADD6-408C-9FD9-69C36C3F9B70} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3791DF0A-315C-4DE6-AE6F-9F9E8A3D0408} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4252576 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f711a2e0-d9dd-496e-9fa7-83304b26ac98" --version "6.17.10746" --silent
Task: {85878DD3-2B02-493A-A3C6-B027156B665F} - System32\Tasks\CCleanerSkipUAC - michel => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {F9E7B8C0-599B-487D-8463-9FE83B95C805} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2021-04-25] (Google Inc -> Google Inc.)
Task: {9229B209-450F-473A-92E7-75B40BFB384A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2021-04-25] (Google Inc -> Google Inc.)
Task: {141FB5C5-56EE-423F-BC80-30F347467D87} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [628024 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {8126BD72-7ACD-40A5-B6CD-D92D74519440} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [72192 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {8EF10EE9-C5DB-4E7E-9FC9-B273413E11C9} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [72192 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {AEC0E02B-543D-4577-A827-442E2491845F} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\WINDOWS\System32\CloudRestoreLauncher.dll [452608 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {20CD9959-DDD6-4D2B-B985-C345DCBB78A9} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [218112 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {FB662E56-411C-476C-9FCE-A9E304B2D434} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [62464 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {5DA34A16-32FD-4C93-8B6F-E2C0924E381E} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\WINDOWS\System32\PrinterCleanupTask.dll [68096 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {46ECCABC-EC3B-4B6D-BB2D-E705193AFDF1} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll [109056 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {F320F750-D9F2-4B57-9ADA-27B10389241D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [202752 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
Task: {CEA2C044-64EE-4323-AA2E-03B3D5ABD5AB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [609696 2023-10-26] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {0B149556-90C9-438A-B8EA-2B606701CFAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680352 2023-10-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {A4CDC6CD-4725-4398-9F98-B75B8FD97F29} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2412924731-293402789-2616735408-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {0E87B3D5-B882-4996-88AC-5884CFF66C79} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2412924731-293402789-2616735408-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {4A14AF49-0894-45A3-A23F-6BBFC807D043} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2414712632-580038325-581801953-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {A88857E5-EF36-4DDD-9AD6-A3F3BB79EA79} - System32\Tasks\Opera scheduled Autoupdate 1661357964 => C:\Users\michel\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {BFCF0E33-6D85-42E2-85E8-A8A930218039} - System32\Tasks\Opera scheduled Autoupdate 1666615037 => C:\Users\michel\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0f670316-e93a-44fb-8b1a-37c6e73c7211}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{be8952de-8723-4669-bd8e-aeb9cc23b988}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cae0d4ac-3571-4413-9f6e-58fd68725b00}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-01]
Edge Notifications: Default -> hxxps://betaengine.org; hxxps://investmeny.org; hxxps://kokotrokot.com; hxxps://onemacusa.net; hxxps://www.msn.com
Edge Extension: (Google Docs hors connexion) - C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-26]
Edge Extension: (Edge relevant text changes) - C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-26]

FireFox:
========
FF DefaultProfile: dtsnazvw.default
FF ProfilePath: C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\dtsnazvw.default [2023-10-26]
FF ProfilePath: C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 [2023-11-01]
FF Notifications: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> hxxps://www.castorama.fr
FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Enabled: {c5ffbd00-71e8-4603-a19b-860104b7ac62}
FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Enabled: {b98722dd-b4e2-4397-9be4-3d0a144a17d9}
FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Disabled: Quick_Recipe_Hub___Custom_Web_Search_MTyoGHhulF@quickrecipehub.com
FF Extension: (Campaign Holder) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\holder@cholder.xpi [2023-08-14] [UpdateUrl:hxxps://fbunseen.org/firefox/update/data.json]
FF Extension: (Quick Recipe Hub & Custom Web Search) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\Quick_Recipe_Hub___Custom_Web_Search_MTyoGHhulF@quickrecipehub.com.xpi [2023-10-25]
FF Extension: (Manuals Directory Search) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\{b98722dd-b4e2-4397-9be4-3d0a144a17d9}.xpi [2023-07-24] [UpdateUrl:hxxps://cdn.manualsdirectory-cdn.org/xpi/manualsdirectory/yhs/1120/search/updates.json]
FF Extension: (Freshy Newtab and Search ) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\{c5ffbd00-71e8-4603-a19b-860104b7ac62}.xpi [2023-07-24] [UpdateUrl:hxxps://cdn.freshysearch-cdn.com/xpi/freshy/yhs/01020/searchnnewtab/updates.json]
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé]
FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default [2023-10-31]
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-25]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2412924731-293402789-2616735408-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8221080 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766872 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [799640 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-10-31] (Avast Software s.r.o. -> AVAST Software)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-04-18] (Microsoft Windows -> )
S3 Browser; C:\WINDOWS\System32\browser.dll [106496 2021-04-27] (Microsoft Corporation) [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [896416 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [300120 2021-04-25] (Intel(R) pGFX -> Intel Corporation)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [728360 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé]
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7503888 2023-10-31] (Malwarebytes Inc. -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [392160 2023-10-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [227504 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [300400 2023-07-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [2050568 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [91928 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [28928 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [190624 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [331416 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [242184 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [87768 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [22984 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [36648 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [230304 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [409072 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [89848 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69152 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [779896 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [597576 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [159032 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [264856 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [139808 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [124864 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [6656 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [65536 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [184288 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [18920 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [161704 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [66008 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [205256 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [158808 2023-11-01] (Malwarebytes Inc. -> Malwarebytes)
R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [163896 2016-03-28] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 mrxsmb10; C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys [233472 2021-04-27] (Microsoft Corporation) [Fichier non signé]
R0 MsSecCore; C:\WINDOWS\System32\drivers\msseccore.sys [21888 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
S3 MsSecWfp; C:\WINDOWS\System32\drivers\mssecwfp.sys [28544 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
R3 netr28; C:\WINDOWS\System32\drivers\netr28.sys [1510912 2019-12-07] (Microsoft Windows -> MediaTek Inc.)
S3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [266840 2021-04-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [980984 2021-04-18] (Realtek Semiconductor Corp. -> Realtek)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8133120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44216 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated)
R2 srv; C:\WINDOWS\System32\DRIVERS\srv.sys [345088 2021-04-27] (Microsoft Corporation) [Fichier non signé]
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [155664 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 TClass2k; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [30952 2015-09-21] (Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver)
S3 UCTblHid; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [26344 2015-09-21] (Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-11-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [40392 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420232 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [68888 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver86; C:\WINDOWS\System32\drivers\WirelessButtonDriver86.sys [30848 2018-05-11] (HP Inc. -> HP)
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [218624 2023-10-27] (Microsoft Windows -> Microsoft Corporation)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [7680 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S2 PTSimBus; "%SystemRoot%\System32\Drivers\PTSimBus.sys" [X]
S3 PTSimHid; "%SystemRoot%\System32\Drivers\PTSimHid.sys" [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-11-01 18:31 - 2023-11-01 18:33 - 000044592 _____ C:\Users\michel\Downloads\Addition.txt
2023-11-01 18:30 - 2023-11-01 18:44 - 000001034 _____ C:\Users\michel\Desktop\FRST(1) - Raccourci.lnk
2023-11-01 18:28 - 2023-11-01 18:46 - 000029677 _____ C:\Users\michel\Downloads\FRST.txt
2023-11-01 18:27 - 2023-11-01 18:45 - 000000000 ____D C:\FRST
2023-11-01 18:27 - 2023-11-01 18:27 - 002084352 _____ (Farbar) C:\Users\michel\Downloads\FRST(1).exe
2023-11-01 18:25 - 2023-11-01 18:25 - 002084352 _____ (Farbar) C:\Users\michel\Downloads\FRST.exe
2023-11-01 16:31 - 2023-11-01 16:38 - 000000000 ____D C:\KVRT2020_Data
2023-11-01 16:29 - 2023-11-01 16:30 - 107018096 _____ (AO Kaspersky Lab) C:\Users\michel\Downloads\KVRT.exe
2023-11-01 16:20 - 2023-11-01 16:24 - 000000000 ____D C:\Program Files\RealFlight7
2023-11-01 15:35 - 2023-11-01 15:38 - 000000000 ____D C:\Users\michel\AppData\Local\CrashDumps
2023-11-01 15:33 - 2023-11-01 15:33 - 000000000 ____D C:\Users\michel\Documents\RealFlight Basic
2023-11-01 15:31 - 2023-11-01 15:31 - 000158808 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-10-31 12:06 - 2023-11-01 15:33 - 000000000 ____D C:\Users\michel\AppData\Local\Malwarebytes
2023-10-31 12:06 - 2023-10-31 12:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-10-31 12:06 - 2023-10-31 12:06 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-10-31 12:06 - 2023-10-31 12:06 - 000000000 ____D C:\Users\michel\AppData\Local\mbam
2023-10-31 12:04 - 2023-10-31 12:04 - 002606880 _____ (Malwarebytes) C:\Users\michel\Downloads\MBSetup.exe
2023-10-31 12:04 - 2023-10-31 12:04 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-10-31 12:04 - 2023-10-31 12:04 - 000000000 ____D C:\Program Files\Malwarebytes
2023-10-31 11:58 - 2023-10-31 12:53 - 000000000 ____D C:\Users\michel\AppData\Local\Avast Software
2023-10-31 11:57 - 2023-10-31 11:57 - 000002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2023-10-31 11:55 - 2023-11-01 15:34 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-10-31 11:55 - 2023-10-31 11:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-10-31 11:54 - 2023-10-31 11:54 - 000270232 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-10-31 11:52 - 2023-10-31 11:52 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2023-10-31 11:49 - 2023-10-31 11:49 - 000263576 _____ (AVAST Software) C:\Users\michel\Downloads\avast_free_antivirus_setup_online.exe
2023-10-30 12:34 - 2023-10-30 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-10-27 09:50 - 2023-10-27 09:50 - 000000000 ___HD C:\$WinREAgent
2023-10-26 17:12 - 2023-10-26 17:12 - 008791352 _____ (Malwarebytes) C:\Users\michel\Downloads\adwcleaner_8.4.0.exe
2023-10-26 17:12 - 2023-10-26 17:12 - 008791352 _____ (Malwarebytes) C:\Users\michel\Downloads\adwcleaner_8.4.0(1).exe
2023-10-26 16:39 - 2023-10-27 09:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-26 13:44 - 2023-10-26 14:35 - 000000000 ____D C:\$SysReset
2023-10-25 11:45 - 2023-10-25 11:54 - 297811968 _____ C:\Users\michel\Downloads\_Getintopc.ZLo7qWS7.com_Phoenix_RC_v5_Setup.rar.part
2023-10-25 11:35 - 2023-10-25 11:35 - 006254391 _____ C:\Users\michel\Downloads\_Getintopc.com_Phoenix_RC.mp4
2023-10-25 11:29 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\PhoenixRC Demo
2023-10-25 11:12 - 2023-10-31 12:58 - 064749568 _____ C:\WINDOWS\system32\config\SOFTWARE
2023-10-25 10:59 - 2023-10-25 11:12 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2023-10-25 10:45 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\RealFlight G4 Demo
2023-10-25 10:31 - 2023-10-25 10:31 - 000000000 ____D C:\Users\michel\.crrcsim
2023-10-24 16:20 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\RealFlight 7
2023-10-24 16:20 - 2023-10-24 16:33 - 000000000 ____D C:\ProgramData\TEMP
2023-10-24 15:12 - 2023-10-24 15:53 - 000000000 ____D C:\Users\michel\Documents\PhoenixRC
2023-10-24 15:01 - 2023-10-24 15:10 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
2023-10-24 15:01 - 2023-10-24 15:10 - 000000000 ____D C:\WINDOWS\system32\directx
2023-10-23 11:14 - 2023-10-23 11:14 - 000000000 ____D C:\Users\michel\AppData\Local\Backup
2023-10-14 09:44 - 2023-10-14 09:44 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-12 09:17 - 2023-10-12 09:17 - 000000017 _____ C:\Users\michel\AppData\Local\resmon.resmoncfg
2023-10-11 09:48 - 2023-10-11 09:48 - 001909692 _____ C:\Users\michel\Downloads\481010532891.pdf
2023-10-11 09:45 - 2023-10-11 09:45 - 000039997 _____ C:\Users\michel\Downloads\facture-f-1186617-1.pdf
2023-10-11 09:45 - 2023-10-11 09:45 - 000039997 _____ C:\Users\michel\Downloads\facture-f-1186617.pdf
2023-10-10 15:34 - 2023-10-10 15:34 - 000000000 ____D C:\ProgramData\PLUG

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-11-01 18:44 - 2022-02-11 11:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-01 18:40 - 2021-12-19 20:46 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-01 18:40 - 2021-04-25 20:41 - 000000000 ____D C:\Program Files\Google
2023-11-01 18:33 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2023-11-01 18:21 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-01 15:36 - 2020-11-19 00:53 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-01 15:36 - 2019-12-07 13:20 - 000792836 _____ C:\WINDOWS\system32\perfh00C.dat
2023-11-01 15:36 - 2019-12-07 13:20 - 000149966 _____ C:\WINDOWS\system32\perfc00C.dat
2023-11-01 15:33 - 2021-04-25 20:45 - 000000000 ____D C:\Program Files\CCleaner
2023-11-01 15:32 - 2022-08-17 09:05 - 000000000 ____D C:\Users\michel\AppData\Roaming\Pentablet V3
2023-11-01 15:32 - 2021-04-25 20:48 - 000000000 ____D C:\ProgramData\Avast Software
2023-11-01 15:31 - 2021-04-27 12:35 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-01 15:31 - 2021-04-25 19:02 - 000000000 ____D C:\Program Files\TeamViewer
2023-11-01 15:31 - 2020-11-19 00:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-31 12:58 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-31 12:05 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-30 12:45 - 2021-04-25 18:50 - 000000000 ____D C:\Users\michel\AppData\Roaming\Microsoft\Skype for Desktop
2023-10-30 12:44 - 2021-04-25 15:38 - 000000000 ___SD C:\Users\michel\AppData\Roaming\Microsoft\Credentials
2023-10-30 11:49 - 2021-04-25 16:41 - 000000000 ____D C:\Users\michel\AppData\Roaming\vlc
2023-10-30 11:19 - 2020-11-19 00:45 - 000002388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-30 10:58 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-30 10:53 - 2020-11-18 23:42 - 000530240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ___SD C:\WINDOWS\system32\AppV
2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-10-27 10:28 - 2019-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\fr
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\IME
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-27 10:28 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-27 10:12 - 2019-12-07 13:23 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-27 10:12 - 2019-12-07 07:12 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-27 09:40 - 2020-11-19 00:45 - 000003676 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-27 09:40 - 2020-11-19 00:45 - 000003552 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-27 09:36 - 2023-04-01 17:39 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2023-10-26 17:13 - 2021-04-25 20:39 - 000000000 ____D C:\AdwCleaner
2023-10-26 16:40 - 2023-04-01 17:39 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-26 16:17 - 2023-01-23 13:04 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-26 16:16 - 2023-01-23 13:03 - 000002106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-10-26 15:56 - 2022-10-17 10:03 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-26 15:42 - 2022-10-17 10:03 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-26 15:42 - 2021-04-27 12:41 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-26 15:36 - 2021-04-27 12:38 - 000000000 ____D C:\Users\michel
2023-10-26 15:19 - 2023-04-14 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FonePaw
2023-10-26 15:19 - 2023-04-14 10:47 - 000000000 ____D C:\Program Files\FonePaw
2023-10-26 15:19 - 2023-01-20 20:11 - 000000000 ____D C:\Users\michel\Documents\XuanZhi9
2023-10-26 15:19 - 2022-11-30 16:31 - 000000000 ___RD C:\Users\michel\Documents\Scanned Documents
2023-10-26 15:19 - 2022-08-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Users\Public\Documents\MAGIX_Music_Maker_MX_Production_Suite_Version_a_telecharger
2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Program Files\MAGIX
2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Program Files\Common Files\MAGIX Services
2023-10-26 15:19 - 2022-08-24 16:15 - 000000000 ____D C:\Users\michel\Documents\MAGIX Downloads
2023-10-26 15:19 - 2022-08-17 09:21 - 000000000 ____D C:\Users\michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pentablet
2023-10-26 15:19 - 2022-08-17 09:05 - 000000000 ____D C:\Program Files\Pentablet
2023-10-26 15:19 - 2021-04-25 20:53 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-10-26 15:19 - 2021-04-25 16:02 - 000000000 ____D C:\Users\michel\Downloads\ME_Corporate_Win8.1_10_11.0.6.1194
2023-10-26 15:19 - 2021-04-25 15:54 - 000000000 ____D C:\Users\michel\Downloads\Realtek_RtsP2Stor_10.0.19041.29098
2023-10-26 15:19 - 2020-11-19 00:48 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2023-10-26 15:19 - 2019-12-07 07:12 - 000000000 __SHD C:\Program Files\Windows Sidebar
2023-10-26 15:00 - 2022-08-25 10:01 - 000000000 ____D C:\ProgramData\MAGIX
2023-10-26 15:00 - 2021-04-25 15:42 - 000000000 ____D C:\Users\michel\AppData\Local\Mozilla
2023-10-26 15:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\registration
2023-10-26 14:59 - 2021-04-25 16:20 - 000000000 __RHD C:\MSOCache
2023-10-26 13:56 - 2023-07-24 19:33 - 000000000 ____D C:\Users\michel\Downloads\CH_XA9B_FR_V20.0048_22D1050_C215F14-E1-P(G6)
2023-10-26 09:24 - 2021-04-25 15:38 - 000000000 ____D C:\Users\michel\AppData\Local\Packages
2023-10-15 16:18 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-14 10:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-14 09:51 - 2021-04-25 19:02 - 000000000 ____D C:\Users\michel\AppData\Roaming\TeamViewer
2023-10-11 10:39 - 2021-04-25 16:57 - 177261816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 10:39 - 2021-04-25 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 09:48 - 2022-10-22 20:49 - 000000000 ____D C:\ProgramData\CanonIJPLM
2023-10-07 16:33 - 2020-11-19 00:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-07 16:31 - 2021-04-25 16:59 - 000000000 ____D C:\Program Files\ruxim
2023-10-07 16:31 - 2021-04-25 16:59 - 000000000 ____D C:\Program Files\rempl

==================== Fichiers à la racine de certains dossiers ========

2023-01-20 20:14 - 2023-01-20 20:14 - 000000068 _____ () C:\Users\michel\AppData\Roaming\changzhi_leidian.data
2022-09-30 18:14 - 2022-09-30 18:14 - 000038447 _____ () C:\Users\michel\AppData\Roaming\Valeurs séparées par une virgule (DOS).ADR
2022-05-03 08:44 - 2022-05-03 08:44 - 000009330 _____ () C:\Users\michel\AppData\Roaming\Valeurs séparées par une virgule (Windows).EML
2022-04-19 10:10 - 2022-04-19 10:10 - 000001876 _____ () C:\Users\michel\AppData\Roaming\Microsoft\e2f1eb6d-e78b-498e-94c1-1ba5cbe9cba1.tmp
2023-10-12 09:17 - 2023-10-12 09:17 - 000000017 _____ () C:\Users\michel\AppData\Local\resmon.resmoncfg
2022-09-02 16:22 - 2022-09-02 16:22 - 000000000 _____ () C:\Users\michel\AppData\Local\{923F9775-FF34-4ADE-AE35-D479CD197D39}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Signaler le contenu de ce document