Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Exécuté par jean-paul (administrateur) sur PC-DE-JP (Hewlett-Packard HP Compaq Elite 8300 SFF) (14-11-2023 18:38:37)
Exécuté depuis C:\Users\jean-paul\Desktop\FRST64.exe
Profils chargés: jean-paul
Plate-forme: Windows 10 Pro Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Orange -> Orange) C:\Users\jean-paul\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617864 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [380776 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [MicrosoftEdgeAutoLaunch_D37F62C287AD9769292DBBDD42AFEB9F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [ExpressVPN] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [854888 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon TR4500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEU.DLL [506368 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpfpp70v: C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll [248320 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor TR4500 series: C:\WINDOWS\system32\CNCALEU.DLL [254464 2018-03-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TR4500 series: C:\WINDOWS\system32\CNMLMEU.DLL [1326080 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\hpf3l70v.dll: C:\WINDOWS\system32\hpf3l70v.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\118.0.22847.89\Installer\chrmstp.exe [2023-10-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.124\Installer\chrmstp.exe [2023-11-10] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {74A7D748-D579-420C-9C8E-78384A0FF0BB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {B9524A5E-FDCA-47C2-9362-87A4897AEA1F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3435520 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {25182FB1-AC18-4364-8EF4-4A94F7AC4B15} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3435520 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {79FF1100-F9BF-4DAF-99AC-B69B0E245AB5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {59171C4F-468D-4ED3-BF82-07F6E2FFBD2E} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FA56DD6F-B91B-4C15-9B77-E3C202AF151B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f23a87be-591b-4f61-828e-d0f7eb319e2d" --version "6.17.10746" --silent
Task: {2EF323BF-7322-4F57-BA04-6D4AC66E3CC0} - System32\Tasks\CCleanerSkipUAC - jean-paul => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {D2780896-7361-45F6-B9EF-D07D0BA73339} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {931DC164-23DE-4A0F-B73C-04C34719A82B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {D8261EE9-80F5-4768-BB40-BDBCF421D812} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-21] (Google Inc -> Google LLC)
Task: {447D6A9A-D8C2-4626-9988-0B05C5F160F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-21] (Google Inc -> Google LLC)
Task: {8D838EA2-C185-482D-8B21-461EC037EE40} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {4C0F4A5B-4B20-47E2-A927-47A518539567} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {989C74F9-D58B-4237-9509-25CE6F74E429} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {904560F9-841F-4CBA-90CC-8F7A91F2FFB9} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {8744B41C-CE6A-4224-ADC0-7D0C6BAAC25E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {A48F15CB-E26E-49B4-B611-2C38B130F7F1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {8F240705-50A3-4D32-AF1F-21DF3BAFBF18} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {D17DA74A-DAB3-4C26-83CB-6F236423C105} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {A378039F-B366-4164-B839-A0704AA1E1B4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (Pas de fichier)
Task: {3E36B578-7A30-4F17-A7E8-E68815698C61} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {E8EFA51F-A047-469D-BCE2-C70E2DE70F65} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {CE9C4487-7CC0-41AD-A19C-A1417F409581} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {5345AFE4-4E27-4996-A64C-E91587E2BD8B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {E7880A1A-40DF-4BA5-9F3F-A439E0AD7506} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {6C9C3E56-F8C9-4301-ACB3-D737579CF46F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {DB645688-7D10-4FB2-AD12-26F51AD8EEFE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {E8EAE796-719B-478D-862F-085B3D20AA98} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {9D148055-1194-4944-A4CA-715D81F69AFE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {42BC005D-6670-4B58-9D3D-E5C3FBD8942C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {F72B21AB-1AE6-4555-A965-18B045B8A0BB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (Pas de fichier)
Task: {F757D227-2151-4B1E-A6D3-B53202B37732} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {0C35B7C3-06B6-4E29-9E7F-A041C4F881C6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {5505DB2B-CD92-4B70-B744-2298D381E9D2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {A74BA9C4-0051-4B2E-B82E-17DDE05F4264} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {71705C7A-114F-4F5D-92EA-E1B52CC48B57} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {BA44409C-3314-4028-9E55-801FDDAFA1B6} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\jean-paul\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {C1891619-42FF-418C-B864-E3775E932A22} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {1F93DEB0-D1C5-4A47-803E-B5445CCB8593} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {ABB301E8-DE5C-4D45-A8C5-664B441773ED} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {41391EF9-C36C-47EC-AF9B-35446C0E3B31} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {BBC9CC09-08F6-4747-A4E6-D4C5623B348B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {81B57BC5-E65B-4E21-8B95-32E5ABD09CCA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8565F90B-6B40-45DF-B51F-F94C3D18407B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {891824DD-1444-4028-8650-B5D48552A408} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8377694A-FEAA-437C-B321-FD4322C07A2B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {FB50CB81-8B5F-4810-9AB2-267666EE3442} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f7d4a337-c840-4572-9607-de7098623863}: [NameServer] 100.64.100.1
Tcpip\..\Interfaces\{FD001601-833D-439C-9FA2-DE08EE9D42E2}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\jean-paul\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-14]
Edge HomePage: Default -> edge://newtab/
Edge Extension: (Google Docs hors connexion) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-13]
Edge Extension: (Edge relevant text changes) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-13]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-11-06]
FireFox:
========
FF DefaultProfile: 7c31a2vd.default
FF ProfilePath: C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\7c31a2vd.default [2020-02-20]
FF ProfilePath: C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088 [2023-11-14]
FF Notifications: Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088 -> hxxps://calendar.google.com
FF Extension: (Signal Spam) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\@addonsignalspam.xpi [2023-03-25]
FF Extension: (To Google Translate) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2022-12-14]
FF Extension: (simple solid teal time) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{46fae9ec-7af9-45c3-acb2-5880d05aede6}.xpi [2022-12-14]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-21]
FF Extension: (green plant mom ) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{eaead984-8109-431e-a96b-0035bf2ae828}.xpi [2022-12-14]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default [2023-11-14]
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&PC=U316&FORM=CHROMN
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultNewTabURL: Default -> hxxps://www.bing.com/chrome/newtab
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Extension: (Google Docs hors connexion) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26]
CHR Extension: (Orange page d'accueil) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2022-12-23]
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-11-14]
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-14]
CHR HKU\S-1-5-21-3461817617-89953854-541498426-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\118.0.22847.89\elevation_service.exe [1880312 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S4 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
S4 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [22488 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
S4 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [20352 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40016 2019-04-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
S4 ExpressVPN App Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.AppService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 ExpressVPN System Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.SystemService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 ExpressVPN VPN Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.VpnService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
S4 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 ScreenConnect Client (d11c4a5d-48ad-4364-953c-982f53dd302d); C:\Users\jean-paul\AppData\Local\Apps\2.0\OLLACT79.5PQ\BAGV2ZB6.V3Q\scre..tion_2c2536e5112611c9_0006.0003_65e038c9529130e3\ScreenConnect.ClientService.exe [90768 2023-11-14] (ScreenConnect Software -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Acceler; C:\WINDOWS\system32\drivers\Accelern.sys [27760 2011-03-03] (STMicroelectronics -> ST Microelectronics)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2015-03-23] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34744 2019-02-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2019-04-12] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [73448 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53504 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\driver\expressvpnsplittunnel.sys [46712 2023-10-31] (ExprsVPN LLC -> ExpressVPN)
R3 expressvpntun; C:\WINDOWS\System32\drivers\expressvpn-tun.sys [56552 2023-06-06] (Express VPN International Ltd. -> ExpressVPN)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-04-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
S3 johci; C:\WINDOWS\system32\drivers\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [97792 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [217600 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R1 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
R3 pelps2m; C:\WINDOWS\system32\DRIVERS\pelps2m.sys [29440 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 rimmptsk; C:\WINDOWS\system32\drivers\rimmpx64.sys [67584 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rimspci; C:\WINDOWS\system32\drivers\rimspe64.sys [60416 2009-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rimsptsk; C:\WINDOWS\system32\drivers\rimspx64.sys [55296 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 risdpcie; C:\WINDOWS\system32\drivers\risdpe64.sys [80896 2009-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rismxdp; C:\WINDOWS\system32\drivers\rixdpx64.sys [57856 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rixdpcie; C:\WINDOWS\system32\drivers\rixdpe64.sys [55808 2009-07-05] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [61496 2023-06-06] (ExprsVPN LLC -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [36936 2022-08-23] (WireGuard LLC -> WireGuard LLC)
U3 idsvc; pas de ImagePath
S3 MozillaVPNSplitTunnel; \??\C:\Program Files\Mozilla\Mozilla VPN\mullvad-split-tunnel.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-14 18:38 - 2023-11-14 18:40 - 000031248 _____ C:\Users\jean-paul\Desktop\FRST.txt
2023-11-14 18:38 - 2023-11-14 18:39 - 000000000 ____D C:\FRST
2023-11-14 18:37 - 2023-11-14 18:36 - 002383872 _____ (Farbar) C:\Users\jean-paul\Desktop\FRST64.exe
2023-11-14 18:23 - 2023-11-14 18:23 - 000000000 ___HD C:\$Windows.~WS
2023-11-14 17:54 - 2023-11-14 17:54 - 000000000 ____D C:\$WINDOWS.~BT
2023-11-14 15:59 - 2023-11-14 15:59 - 000000000 ____D C:\Users\jean-paul\AppData\Local\PCPrivacyShield
2023-11-14 12:06 - 2023-11-14 12:06 - 000000048 _____ C:\Users\jean-paul\AppData\Local\computerid
2023-11-14 12:05 - 2023-11-14 12:05 - 014903080 _____ (ShieldApps) C:\Users\jean-paul\Downloads\k6pOJAcj.exe.part
2023-11-14 12:05 - 2023-11-14 12:05 - 000000000 ____D C:\Users\jean-paul\AppData\Roaming\PC Privacy Shield
2023-11-14 12:02 - 2023-11-14 12:02 - 000000000 ____D C:\Users\jean-paul\AppData\Local\Deployment
2023-11-14 12:02 - 2023-11-14 12:02 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_65e038c9529130e3
2023-11-14 12:01 - 2023-11-14 12:01 - 000086672 _____ C:\Users\jean-paul\Downloads\ConnectWiseControl.Client.exe
2023-11-13 12:37 - 2023-11-13 12:37 - 000090019 _____ C:\Users\jean-paul\Downloads\Releve_compte_31_10_2023.pdf
2023-11-13 12:34 - 2023-11-13 12:34 - 000049117 _____ C:\Users\jean-paul\Downloads\Releve_compte_29_09_2023.pdf
2023-11-13 12:30 - 2023-11-13 12:30 - 000046681 _____ C:\Users\jean-paul\Downloads\Releve_compte_31_08_2023.pdf
2023-11-12 17:18 - 2023-11-12 17:18 - 000001245 _____ C:\Users\jean-paul\AppData\Roaming\Microsoft\Windows\Start Menu\cnlab UX Test.lnk
2023-11-12 17:18 - 2023-11-12 17:18 - 000000000 ____D C:\Users\jean-paul\AppData\Local\cnlabSpeedTest
2023-11-12 17:13 - 2023-11-12 17:14 - 137378944 _____ (cnlab AG ) C:\Users\jean-paul\Downloads\cnlabSpeedTest.exe
2023-11-11 12:07 - 2023-11-11 12:07 - 000098347 _____ C:\Users\jean-paul\Downloads\Enedis_AR_23190882752099_11_11_2023.pdf
2023-11-10 10:20 - 2023-11-10 10:20 - 000024092 _____ C:\Users\jean-paul\Downloads\facture-JJ00850945-2023-9-2942242.pdf
2023-11-05 17:03 - 2023-11-05 17:03 - 361611264 _____ C:\Users\jean-paul\Downloads\LibreOffice_7.6.2_Win_x86-64.msi
2023-10-25 10:37 - 2023-11-10 13:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-21 11:07 - 2023-10-21 11:07 - 000004051 _____ C:\Users\jean-paul\Downloads\IT00967720285_6bdSn.pdf
2023-10-20 13:07 - 2023-10-20 13:08 - 005156824 _____ C:\Users\jean-paul\Downloads\Presentation-place-de-la-Liberation_Seysses_web.pdf
2023-10-20 12:44 - 2023-11-01 20:09 - 000000000 ____D C:\Program Files (x86)\ExpressVPN
2023-10-20 12:44 - 2023-10-20 12:44 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN.lnk
2023-10-20 11:46 - 2023-10-20 11:46 - 079551952 _____ (ExpressVPN) C:\Users\jean-paul\Downloads\expressvpn_windows_12.61.0.4_release.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-14 18:35 - 2020-11-29 19:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-14 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-14 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-14 18:23 - 2020-11-28 15:09 - 000000000 ___DC C:\WINDOWS\Panther
2023-11-14 18:16 - 2020-05-25 00:22 - 000000000 ____D C:\Users\jean-paul\AppData\Local\CrashDumps
2023-11-14 18:16 - 2020-05-14 11:48 - 000000000 ____D C:\Program Files\CCleaner
2023-11-14 18:10 - 2021-12-30 12:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-14 18:10 - 2019-04-21 19:00 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-14 16:40 - 2022-02-08 18:46 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-14 16:25 - 2020-11-29 19:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-14 16:25 - 2020-11-29 19:19 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-14 16:25 - 2020-06-04 10:51 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2023-11-14 16:24 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-11-14 16:13 - 2020-12-02 12:16 - 000000000 ____D C:\Users\jean-paul\AppData\Local\ElevatedDiagnostics
2023-11-14 11:07 - 2021-12-22 16:53 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3461817617-89953854-541498426-1000
2023-11-14 11:07 - 2020-11-29 19:44 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3461817617-89953854-541498426-1000
2023-11-14 11:07 - 2020-11-28 18:21 - 000002463 _____ C:\Users\jean-paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-14 11:05 - 2020-11-29 19:44 - 000003916 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-14 11:05 - 2020-11-29 19:44 - 000003792 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-14 11:03 - 2019-05-29 00:25 - 000000000 __SHD C:\Users\jean-paul\IntelGraphicsProfiles
2023-11-13 23:27 - 2020-11-29 19:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-12 17:17 - 2022-02-09 18:11 - 143906760 _____ (cnlab AG ) C:\Users\jean-paul\cnlabSpeedTest.exe
2023-11-12 10:28 - 2020-06-17 01:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-12 10:28 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-10 16:52 - 2019-04-21 19:01 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-10 13:51 - 2020-11-28 18:21 - 000000000 ____D C:\Users\jean-paul
2023-11-10 13:20 - 2022-12-14 19:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-10 10:14 - 2020-09-30 19:32 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-09 17:27 - 2022-02-16 17:56 - 000000000 ____D C:\ProgramData\CanonIJPLM
2023-11-08 09:16 - 2022-12-14 19:52 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-07 15:11 - 2019-04-22 10:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-03 21:30 - 2019-04-22 10:37 - 000000000 ____D C:\Users\jean-paul\AppData\Local\Packages
2023-11-02 18:49 - 2019-04-21 16:49 - 000000000 ___SD C:\Users\jean-paul\AppData\Roaming\Microsoft\Credentials
2023-11-01 20:07 - 2023-06-17 14:02 - 000000000 ____D C:\ProgramData\ExpressVPN
2023-11-01 19:21 - 2023-04-08 18:05 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-01 19:21 - 2020-11-29 19:39 - 001924294 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-01 19:21 - 2019-12-07 15:50 - 000831906 _____ C:\WINDOWS\system32\perfh00C.dat
2023-11-01 19:21 - 2019-12-07 15:50 - 000167672 _____ C:\WINDOWS\system32\perfc00C.dat
2023-11-01 19:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-31 17:32 - 2022-12-14 01:33 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-27 14:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-26 19:42 - 2020-11-29 19:44 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 19:42 - 2020-11-29 19:44 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-26 15:35 - 2023-06-15 17:27 - 000002385 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-10-26 15:35 - 2023-06-15 17:27 - 000002350 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2023-10-26 15:35 - 2023-06-15 17:26 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-10-26 15:03 - 2019-05-29 00:10 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-26 15:02 - 2022-08-16 20:02 - 000000000 ____D C:\Program Files\dotnet
2023-10-25 15:43 - 2023-05-29 15:39 - 000001053 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2023-10-25 15:43 - 2023-05-28 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2023-10-25 15:43 - 2023-05-28 17:35 - 000000000 ____D C:\Program Files\Calibre2
2023-10-23 22:01 - 2022-12-14 01:33 - 000003470 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
==================== Fichiers à la racine de certains dossiers ========
2022-02-09 18:11 - 2023-11-12 17:17 - 143906760 _____ (cnlab AG ) C:\Users\jean-paul\cnlabSpeedTest.exe
2022-08-23 16:37 - 2022-12-14 02:12 - 000256934 _____ () C:\Users\jean-paul\AppData\Roaming\mozillavpn.txt
2023-05-28 18:31 - 2019-03-25 11:41 - 000000034 _____ () C:\Users\jean-paul\AppData\Roaming\pdfdrawcodec.dll
2023-11-14 12:06 - 2023-11-14 12:06 - 000000048 _____ () C:\Users\jean-paul\AppData\Local\computerid
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par jean-paul (administrateur) sur PC-DE-JP (Hewlett-Packard HP Compaq Elite 8300 SFF) (14-11-2023 18:38:37)
Exécuté depuis C:\Users\jean-paul\Desktop\FRST64.exe
Profils chargés: jean-paul
Plate-forme: Windows 10 Pro Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Orange -> Orange) C:\Users\jean-paul\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617864 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [380776 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [MicrosoftEdgeAutoLaunch_D37F62C287AD9769292DBBDD42AFEB9F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3461817617-89953854-541498426-1000\...\Run: [ExpressVPN] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPN.exe [854888 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-11-01] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon TR4500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEU.DLL [506368 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpfpp70v: C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll [248320 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor TR4500 series: C:\WINDOWS\system32\CNCALEU.DLL [254464 2018-03-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TR4500 series: C:\WINDOWS\system32\CNMLMEU.DLL [1326080 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\hpf3l70v.dll: C:\WINDOWS\system32\hpf3l70v.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\118.0.22847.89\Installer\chrmstp.exe [2023-10-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.124\Installer\chrmstp.exe [2023-11-10] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {74A7D748-D579-420C-9C8E-78384A0FF0BB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {B9524A5E-FDCA-47C2-9362-87A4897AEA1F} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3435520 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {25182FB1-AC18-4364-8EF4-4A94F7AC4B15} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3435520 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {79FF1100-F9BF-4DAF-99AC-B69B0E245AB5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {59171C4F-468D-4ED3-BF82-07F6E2FFBD2E} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FA56DD6F-B91B-4C15-9B77-E3C202AF151B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f23a87be-591b-4f61-828e-d0f7eb319e2d" --version "6.17.10746" --silent
Task: {2EF323BF-7322-4F57-BA04-6D4AC66E3CC0} - System32\Tasks\CCleanerSkipUAC - jean-paul => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {D2780896-7361-45F6-B9EF-D07D0BA73339} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {931DC164-23DE-4A0F-B73C-04C34719A82B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {D8261EE9-80F5-4768-BB40-BDBCF421D812} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-21] (Google Inc -> Google LLC)
Task: {447D6A9A-D8C2-4626-9988-0B05C5F160F0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-21] (Google Inc -> Google LLC)
Task: {8D838EA2-C185-482D-8B21-461EC037EE40} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {4C0F4A5B-4B20-47E2-A927-47A518539567} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {989C74F9-D58B-4237-9509-25CE6F74E429} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {904560F9-841F-4CBA-90CC-8F7A91F2FFB9} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {8744B41C-CE6A-4224-ADC0-7D0C6BAAC25E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {A48F15CB-E26E-49B4-B611-2C38B130F7F1} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {8F240705-50A3-4D32-AF1F-21DF3BAFBF18} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {D17DA74A-DAB3-4C26-83CB-6F236423C105} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {A378039F-B366-4164-B839-A0704AA1E1B4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (Pas de fichier)
Task: {3E36B578-7A30-4F17-A7E8-E68815698C61} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {E8EFA51F-A047-469D-BCE2-C70E2DE70F65} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {CE9C4487-7CC0-41AD-A19C-A1417F409581} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {5345AFE4-4E27-4996-A64C-E91587E2BD8B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {E7880A1A-40DF-4BA5-9F3F-A439E0AD7506} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {6C9C3E56-F8C9-4301-ACB3-D737579CF46F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {DB645688-7D10-4FB2-AD12-26F51AD8EEFE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {E8EAE796-719B-478D-862F-085B3D20AA98} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {9D148055-1194-4944-A4CA-715D81F69AFE} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {42BC005D-6670-4B58-9D3D-E5C3FBD8942C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {F72B21AB-1AE6-4555-A965-18B045B8A0BB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (Pas de fichier)
Task: {F757D227-2151-4B1E-A6D3-B53202B37732} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {0C35B7C3-06B6-4E29-9E7F-A041C4F881C6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {5505DB2B-CD92-4B70-B744-2298D381E9D2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {A74BA9C4-0051-4B2E-B82E-17DDE05F4264} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {71705C7A-114F-4F5D-92EA-E1B52CC48B57} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {BA44409C-3314-4028-9E55-801FDDAFA1B6} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\jean-paul\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1967856 2022-08-17] (Orange -> Orange)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {C1891619-42FF-418C-B864-E3775E932A22} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {1F93DEB0-D1C5-4A47-803E-B5445CCB8593} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {ABB301E8-DE5C-4D45-A8C5-664B441773ED} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {41391EF9-C36C-47EC-AF9B-35446C0E3B31} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {BBC9CC09-08F6-4747-A4E6-D4C5623B348B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {81B57BC5-E65B-4E21-8B95-32E5ABD09CCA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8565F90B-6B40-45DF-B51F-F94C3D18407B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {891824DD-1444-4028-8650-B5D48552A408} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8377694A-FEAA-437C-B321-FD4322C07A2B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {FB50CB81-8B5F-4810-9AB2-267666EE3442} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f7d4a337-c840-4572-9607-de7098623863}: [NameServer] 100.64.100.1
Tcpip\..\Interfaces\{FD001601-833D-439C-9FA2-DE08EE9D42E2}: [DhcpNameServer] 192.168.1.1
Edge:
=======
DownloadDir: C:\Users\jean-paul\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-14]
Edge HomePage: Default -> edge://newtab/
Edge Extension: (Google Docs hors connexion) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-13]
Edge Extension: (Edge relevant text changes) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-13]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\jean-paul\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-11-06]
FireFox:
========
FF DefaultProfile: 7c31a2vd.default
FF ProfilePath: C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\7c31a2vd.default [2020-02-20]
FF ProfilePath: C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088 [2023-11-14]
FF Notifications: Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088 -> hxxps://calendar.google.com
FF Extension: (Signal Spam) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\@addonsignalspam.xpi [2023-03-25]
FF Extension: (To Google Translate) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2022-12-14]
FF Extension: (simple solid teal time) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{46fae9ec-7af9-45c3-acb2-5880d05aede6}.xpi [2022-12-14]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-21]
FF Extension: (green plant mom ) - C:\Users\jean-paul\AppData\Roaming\Mozilla\Firefox\Profiles\py3g3jfs.default-release-1671054386088\Extensions\{eaead984-8109-431e-a96b-0035bf2ae828}.xpi [2022-12-14]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1636.4\npCCleanerBrowserUpdate3.dll [2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default [2023-11-14]
CHR HomePage: Default -> orange.fr
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&PC=U316&FORM=CHROMN
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultNewTabURL: Default -> hxxps://www.bing.com/chrome/newtab
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Extension: (Google Docs hors connexion) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-26]
CHR Extension: (Orange page d'accueil) - C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2022-12-23]
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-11-14]
CHR Profile: C:\Users\jean-paul\AppData\Local\Google\Chrome\User Data\System Profile [2023-11-14]
CHR HKU\S-1-5-21-3461817617-89953854-541498426-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S4 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\118.0.22847.89\elevation_service.exe [1880312 2023-10-18] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208168 2023-06-15] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S4 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
S4 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [22488 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
S4 COMSysApp; C:\WINDOWS\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [20352 2023-10-12] (Microsoft Windows -> Microsoft Corporation)
S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40016 2019-04-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
S4 ExpressVPN App Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.AppService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 ExpressVPN System Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.SystemService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 ExpressVPN VPN Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.VpnService.exe [438632 2023-10-31] (EXPRSVPN LLC -> ExpressVPN)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
S4 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 ScreenConnect Client (d11c4a5d-48ad-4364-953c-982f53dd302d); C:\Users\jean-paul\AppData\Local\Apps\2.0\OLLACT79.5PQ\BAGV2ZB6.V3Q\scre..tion_2c2536e5112611c9_0006.0003_65e038c9529130e3\ScreenConnect.ClientService.exe [90768 2023-11-14] (ScreenConnect Software -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-10-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Acceler; C:\WINDOWS\system32\drivers\Accelern.sys [27760 2011-03-03] (STMicroelectronics -> ST Microelectronics)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2015-03-23] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34744 2019-02-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2019-04-12] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [73448 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53504 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2018-10-08] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\driver\expressvpnsplittunnel.sys [46712 2023-10-31] (ExprsVPN LLC -> ExpressVPN)
R3 expressvpntun; C:\WINDOWS\System32\drivers\expressvpn-tun.sys [56552 2023-06-06] (Express VPN International Ltd. -> ExpressVPN)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-04-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
S3 johci; C:\WINDOWS\system32\drivers\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 nusb3hub; C:\WINDOWS\system32\drivers\nusb3hub.sys [97792 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\WINDOWS\system32\drivers\nusb3xhc.sys [217600 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R1 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
R3 pelps2m; C:\WINDOWS\system32\DRIVERS\pelps2m.sys [29440 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.)
S3 rimmptsk; C:\WINDOWS\system32\drivers\rimmpx64.sys [67584 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rimspci; C:\WINDOWS\system32\drivers\rimspe64.sys [60416 2009-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rimsptsk; C:\WINDOWS\system32\drivers\rimspx64.sys [55296 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 risdpcie; C:\WINDOWS\system32\drivers\risdpe64.sys [80896 2009-07-02] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rismxdp; C:\WINDOWS\system32\drivers\rixdpx64.sys [57856 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rixdpcie; C:\WINDOWS\system32\drivers\rixdpe64.sys [55808 2009-07-05] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [61496 2023-06-06] (ExprsVPN LLC -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [36936 2022-08-23] (WireGuard LLC -> WireGuard LLC)
U3 idsvc; pas de ImagePath
S3 MozillaVPNSplitTunnel; \??\C:\Program Files\Mozilla\Mozilla VPN\mullvad-split-tunnel.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-14 18:38 - 2023-11-14 18:40 - 000031248 _____ C:\Users\jean-paul\Desktop\FRST.txt
2023-11-14 18:38 - 2023-11-14 18:39 - 000000000 ____D C:\FRST
2023-11-14 18:37 - 2023-11-14 18:36 - 002383872 _____ (Farbar) C:\Users\jean-paul\Desktop\FRST64.exe
2023-11-14 18:23 - 2023-11-14 18:23 - 000000000 ___HD C:\$Windows.~WS
2023-11-14 17:54 - 2023-11-14 17:54 - 000000000 ____D C:\$WINDOWS.~BT
2023-11-14 15:59 - 2023-11-14 15:59 - 000000000 ____D C:\Users\jean-paul\AppData\Local\PCPrivacyShield
2023-11-14 12:06 - 2023-11-14 12:06 - 000000048 _____ C:\Users\jean-paul\AppData\Local\computerid
2023-11-14 12:05 - 2023-11-14 12:05 - 014903080 _____ (ShieldApps) C:\Users\jean-paul\Downloads\k6pOJAcj.exe.part
2023-11-14 12:05 - 2023-11-14 12:05 - 000000000 ____D C:\Users\jean-paul\AppData\Roaming\PC Privacy Shield
2023-11-14 12:02 - 2023-11-14 12:02 - 000000000 ____D C:\Users\jean-paul\AppData\Local\Deployment
2023-11-14 12:02 - 2023-11-14 12:02 - 000000000 ____D C:\ProgramData\scre..tion_2c2536e5112611c9_0006.0003_65e038c9529130e3
2023-11-14 12:01 - 2023-11-14 12:01 - 000086672 _____ C:\Users\jean-paul\Downloads\ConnectWiseControl.Client.exe
2023-11-13 12:37 - 2023-11-13 12:37 - 000090019 _____ C:\Users\jean-paul\Downloads\Releve_compte_31_10_2023.pdf
2023-11-13 12:34 - 2023-11-13 12:34 - 000049117 _____ C:\Users\jean-paul\Downloads\Releve_compte_29_09_2023.pdf
2023-11-13 12:30 - 2023-11-13 12:30 - 000046681 _____ C:\Users\jean-paul\Downloads\Releve_compte_31_08_2023.pdf
2023-11-12 17:18 - 2023-11-12 17:18 - 000001245 _____ C:\Users\jean-paul\AppData\Roaming\Microsoft\Windows\Start Menu\cnlab UX Test.lnk
2023-11-12 17:18 - 2023-11-12 17:18 - 000000000 ____D C:\Users\jean-paul\AppData\Local\cnlabSpeedTest
2023-11-12 17:13 - 2023-11-12 17:14 - 137378944 _____ (cnlab AG ) C:\Users\jean-paul\Downloads\cnlabSpeedTest.exe
2023-11-11 12:07 - 2023-11-11 12:07 - 000098347 _____ C:\Users\jean-paul\Downloads\Enedis_AR_23190882752099_11_11_2023.pdf
2023-11-10 10:20 - 2023-11-10 10:20 - 000024092 _____ C:\Users\jean-paul\Downloads\facture-JJ00850945-2023-9-2942242.pdf
2023-11-05 17:03 - 2023-11-05 17:03 - 361611264 _____ C:\Users\jean-paul\Downloads\LibreOffice_7.6.2_Win_x86-64.msi
2023-10-25 10:37 - 2023-11-10 13:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-21 11:07 - 2023-10-21 11:07 - 000004051 _____ C:\Users\jean-paul\Downloads\IT00967720285_6bdSn.pdf
2023-10-20 13:07 - 2023-10-20 13:08 - 005156824 _____ C:\Users\jean-paul\Downloads\Presentation-place-de-la-Liberation_Seysses_web.pdf
2023-10-20 12:44 - 2023-11-01 20:09 - 000000000 ____D C:\Program Files (x86)\ExpressVPN
2023-10-20 12:44 - 2023-10-20 12:44 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN.lnk
2023-10-20 11:46 - 2023-10-20 11:46 - 079551952 _____ (ExpressVPN) C:\Users\jean-paul\Downloads\expressvpn_windows_12.61.0.4_release.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-14 18:35 - 2020-11-29 19:44 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-11-14 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-14 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-14 18:23 - 2020-11-28 15:09 - 000000000 ___DC C:\WINDOWS\Panther
2023-11-14 18:16 - 2020-05-25 00:22 - 000000000 ____D C:\Users\jean-paul\AppData\Local\CrashDumps
2023-11-14 18:16 - 2020-05-14 11:48 - 000000000 ____D C:\Program Files\CCleaner
2023-11-14 18:10 - 2021-12-30 12:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-14 18:10 - 2019-04-21 19:00 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-14 16:40 - 2022-02-08 18:46 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-14 16:25 - 2020-11-29 19:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-14 16:25 - 2020-11-29 19:19 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-14 16:25 - 2020-06-04 10:51 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2023-11-14 16:24 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-11-14 16:13 - 2020-12-02 12:16 - 000000000 ____D C:\Users\jean-paul\AppData\Local\ElevatedDiagnostics
2023-11-14 11:07 - 2021-12-22 16:53 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3461817617-89953854-541498426-1000
2023-11-14 11:07 - 2020-11-29 19:44 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3461817617-89953854-541498426-1000
2023-11-14 11:07 - 2020-11-28 18:21 - 000002463 _____ C:\Users\jean-paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-14 11:05 - 2020-11-29 19:44 - 000003916 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-14 11:05 - 2020-11-29 19:44 - 000003792 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-14 11:03 - 2019-05-29 00:25 - 000000000 __SHD C:\Users\jean-paul\IntelGraphicsProfiles
2023-11-13 23:27 - 2020-11-29 19:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-12 17:17 - 2022-02-09 18:11 - 143906760 _____ (cnlab AG ) C:\Users\jean-paul\cnlabSpeedTest.exe
2023-11-12 10:28 - 2020-06-17 01:23 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-12 10:28 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-10 16:52 - 2019-04-21 19:01 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-10 13:51 - 2020-11-28 18:21 - 000000000 ____D C:\Users\jean-paul
2023-11-10 13:20 - 2022-12-14 19:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-10 10:14 - 2020-09-30 19:32 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-09 17:27 - 2022-02-16 17:56 - 000000000 ____D C:\ProgramData\CanonIJPLM
2023-11-08 09:16 - 2022-12-14 19:52 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-07 15:11 - 2019-04-22 10:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-11-03 21:30 - 2019-04-22 10:37 - 000000000 ____D C:\Users\jean-paul\AppData\Local\Packages
2023-11-02 18:49 - 2019-04-21 16:49 - 000000000 ___SD C:\Users\jean-paul\AppData\Roaming\Microsoft\Credentials
2023-11-01 20:07 - 2023-06-17 14:02 - 000000000 ____D C:\ProgramData\ExpressVPN
2023-11-01 19:21 - 2023-04-08 18:05 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-01 19:21 - 2020-11-29 19:39 - 001924294 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-01 19:21 - 2019-12-07 15:50 - 000831906 _____ C:\WINDOWS\system32\perfh00C.dat
2023-11-01 19:21 - 2019-12-07 15:50 - 000167672 _____ C:\WINDOWS\system32\perfc00C.dat
2023-11-01 19:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-31 17:32 - 2022-12-14 01:33 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-27 14:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-26 19:42 - 2020-11-29 19:44 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-26 19:42 - 2020-11-29 19:44 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-26 15:35 - 2023-06-15 17:27 - 000002385 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2023-10-26 15:35 - 2023-06-15 17:27 - 000002350 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2023-10-26 15:35 - 2023-06-15 17:26 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2023-10-26 15:03 - 2019-05-29 00:10 - 000000000 ____D C:\ProgramData\Package Cache
2023-10-26 15:02 - 2022-08-16 20:02 - 000000000 ____D C:\Program Files\dotnet
2023-10-25 15:43 - 2023-05-29 15:39 - 000001053 _____ C:\Users\Public\Desktop\calibre 64bit - E-book management.lnk
2023-10-25 15:43 - 2023-05-28 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2023-10-25 15:43 - 2023-05-28 17:35 - 000000000 ____D C:\Program Files\Calibre2
2023-10-23 22:01 - 2022-12-14 01:33 - 000003470 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
==================== Fichiers à la racine de certains dossiers ========
2022-02-09 18:11 - 2023-11-12 17:17 - 143906760 _____ (cnlab AG ) C:\Users\jean-paul\cnlabSpeedTest.exe
2022-08-23 16:37 - 2022-12-14 02:12 - 000256934 _____ () C:\Users\jean-paul\AppData\Roaming\mozillavpn.txt
2023-05-28 18:31 - 2019-03-25 11:41 - 000000034 _____ () C:\Users\jean-paul\AppData\Roaming\pdfdrawcodec.dll
2023-11-14 12:06 - 2023-11-14 12:06 - 000000048 _____ () C:\Users\jean-paul\AppData\Local\computerid
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================