Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Exécuté par Jeannot (administrateur) sur DESKTOP-PE74M4S (Hewlett-Packard ) (23-11-2023 20:56:20)
Exécuté depuis C:\Users\Jeannot\Pictures\Desktop\FRST64.exe
Profils chargés: Jeannot
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3693 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Jeannot\AppData\Local\FluxSoftware\Flux\flux.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) P:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3684_none_7dfc270e7c9a3a0b\TiWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3293072 2023-10-12] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [f.lux] => C:\Users\Jeannot\AppData\Local\FluxSoftware\Flux\flux.exe [1525880 2023-05-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [MicrosoftEdgeAutoLaunch_698F5AAFAFCEF6B5468E8799926ABD16] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-16] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [CCleaner Smart Cleaning] => P:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\us001PC: C:\Windows\System32\spool\prtprocs\x64\us001pc.dll [43520 2014-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-08-30] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\us001 Langmon: C:\Windows\system32\us001lm.dll [22528 2014-10-16] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us016 Langmon: C:\Windows\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\ux00a Langmon: C:\Windows\system32\ux00alm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.160\Installer\chrmstp.exe [2023-11-17] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\Installer\chrmstp.exe [2023-11-16] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.exe [2023-11-03] (Quick And Easy Software) [Fichier non signé]
Startup: C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.exe - Raccourci.lnk [2023-11-05]
ShortcutTarget: USB_Disk_Eject.exe - Raccourci.lnk -> C:\Users\Jeannot\Pictures\Desktop\OUTILS\USB_Disk_Eject.exe (Quick And Easy Software) [Fichier non signé]
Startup: C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.lnk [2023-11-05]
ShortcutTarget: USB_Disk_Eject.lnk -> C:\Users\Jeannot\Pictures\Desktop\OUTILS\USB_Disk_Eject.exe (Quick And Easy Software) [Fichier non signé]
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {CD0446AF-D5F6-4616-85CE-058C20FCE9EC} - \Microsoft\Windows\Shell\FamilySafetyRefreshTask -> Pas de fichier <==== ATTENTION
Task: {7D82C845-21F3-4EC9-8DBE-05B97214A664} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C1DEC92D-F42A-4485-B53C-7BFB70408F42} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {169BE37D-5186-4E92-935B-06D5DDD466DC} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{4D9DF477-21B3-49E4-91A0-746EFEBF1B96} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {189B51BB-B5C2-4F26-915D-AB250FE0A648} - System32\Tasks\CCleaner Update => P:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0786A820-3C44-4FC4-8B27-21AB0FE4A95C} - System32\Tasks\CCleanerCrashReporting => P:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "P:\Program Files\CCleaner\LOG" --programpath "P:\Program Files\CCleaner" --configpath "P:\Program Files\CCleaner\Setup" --guid "95057bf3-73fe-4a89-badf-c803ad6e0b0c" --version "6.17.10746" --silent
Task: {C7ED5CD9-6642-462E-9D02-63F196219657} - System32\Tasks\CCleanerSkipUAC - Jeannot => P:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2E66B84E-1815-479F-93C2-C42216EA2276} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5340232 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {DB9C9C85-8470-40A4-9352-D5286547BC5F} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [Fichier non signé]
Task: {40098571-8C31-4D17-9A1D-8AE08886F75C} - System32\Tasks\GoogleUpdateTaskMachineCore{B9127A75-BAFC-45A5-A724-D514399CED50} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-11-09] (Google LLC -> Google LLC)
Task: {70B180AF-2132-4E8C-A853-137565C5A79E} - System32\Tasks\GoogleUpdateTaskMachineUA{291A1676-E66E-4748-82A9-5C1828411274} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-11-09] (Google LLC -> Google LLC)
Task: {DCE0E315-88CD-43AE-BF43-A913D2676606} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {F996EFD7-5D20-400E-9E8E-1F9F12EBDD18} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {02963AFB-10A4-42C3-9938-E75AFA014937} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305304 2023-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {10DC7029-8EA1-4A76-AA4E-0445D51AD47F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305304 2023-11-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A9803FF-F804-4E77-80C7-F8DE77685D28} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {BA2A1C78-109E-414D-9EFF-84376F824598} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\Windows\System32\unifiedconsent.dll [278016 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {2E632C63-100F-4BA8-9E4D-DCDC902B0695} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7C57755A-7F96-48CE-B239-033F352FE01D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E149EA4E-940A-48F7-A7E4-AD6A79DAF06A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12BEA6DC-3C5C-4E20-A968-ACF26FE65BEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {238F0B00-B4D9-4E76-920D-3DE907FFBB07} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {ED13D22C-1FAF-442F-BB23-C27A64995B35} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9EB731BB-FBEE-41A0-BBB7-2068B2B53E58} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {DDC7CBF6-6617-4022-BB83-C20B64227B87} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2023-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E71C03AD-C002-4447-A368-49536320D3D4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-397403350-2384213278-3661612861-1001 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2023-10-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {C73DC7A0-E58F-4096-B218-33973B745F1E} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => P:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{428f7f15-bb55-4013-a213-6960668b4f8f}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{428f7f15-bb55-4013-a213-6960668b4f8f}: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF DefaultProfile: li15ou6e.default
FF ProfilePath: C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\li15ou6e.default [2023-11-03]
FF ProfilePath: C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\q8x6olh3.default-release [2023-11-23]
FF Notifications: Mozilla\Firefox\Profiles\q8x6olh3.default-release -> hxxps://www.tv-direct.fr; hxxps://www.letribunaldunet.fr
FF Extension: (To Google Translate) - C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\q8x6olh3.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-10-31]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-10-09] [non signé]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-10-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-11-02] (Microsoft Corporation -> Microsoft Corporation)
Brave:
=======
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-11-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-11-17]
BRA Extension: (Brave NTP background images) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-11-05]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-11-17]
BRA Extension: (Brave Ads Resources) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2023-11-17]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-11-17]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-11-17]
BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2023-11-17]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-17]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-11-05]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-11-17]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2023-11-17]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-11-17]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-11-05]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S4 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\brave_vpn_helper.exe [2762264 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
S4 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CCleanerPerformanceOptimizerService; P:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12882616 2023-11-11] (Microsoft Corporation -> Microsoft Corporation)
S4 Everything; C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools)
S4 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001_1\FileSyncHelper.exe [2576264 2023-10-22] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-10-20] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe [1418736 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001_1\OneDriveUpdaterService.exe [2883976 2023-10-22] (Microsoft Corporation -> Microsoft Corporation)
S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [16033712 2023-10-19] (ADLICE -> )
S4 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\spdsvc.exe [508488 2018-06-24] (HP Inc. -> )
S4 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2023-11-02] (Samsung Electronics CO., LTD. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 BraveElevationService1da1290157b3534; "C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\elevation_service.exe" [X]
S3 Browser; %SystemRoot%\System32\browser.dll [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [222800 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [14224 2023-03-29] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-11-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-23 18:14 - 2023-11-23 18:15 - 000740828 _____ C:\Windows\Minidump\112323-22187-01.dmp
2023-11-23 18:14 - 2023-11-23 18:14 - 519050993 _____ C:\Windows\MEMORY.DMP
2023-11-23 12:25 - 2023-11-23 20:56 - 000000000 ____D C:\FRST
2023-11-15 13:32 - 2023-11-15 13:32 - 000000000 ___HD C:\$WinREAgent
2023-11-09 11:32 - 2023-11-17 01:20 - 000002261 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-09 11:32 - 2023-11-17 01:20 - 000002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-11-09 11:31 - 2023-11-09 11:31 - 000000000 ____D C:\Program Files\Google
2023-11-09 11:29 - 2023-11-13 18:08 - 000003992 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{291A1676-E66E-4748-82A9-5C1828411274}
2023-11-09 11:29 - 2023-11-13 18:08 - 000003868 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{B9127A75-BAFC-45A5-A724-D514399CED50}
2023-11-05 09:58 - 2023-11-16 09:32 - 000002378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-11-05 09:58 - 2023-11-16 09:32 - 000002337 _____ C:\Users\Public\Desktop\Brave.lnk
2023-11-05 09:58 - 2023-11-05 09:58 - 000000000 ____D C:\ProgramData\BraveSoftware
2023-11-05 09:58 - 2023-11-05 09:58 - 000000000 ____D C:\Program Files\BraveSoftware
2023-11-05 09:56 - 2023-11-15 16:06 - 000003676 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{4D9DF477-21B3-49E4-91A0-746EFEBF1B96}
2023-11-05 09:56 - 2023-11-15 16:06 - 000003452 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{C1DEC92D-F42A-4485-B53C-7BFB70408F42}
2023-11-05 09:56 - 2023-11-05 09:58 - 000000000 ____D C:\Users\Jeannot\AppData\Local\BraveSoftware
2023-11-05 09:56 - 2023-11-05 09:56 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2023-11-04 18:56 - 2023-11-04 18:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-11-04 17:14 - 2023-11-07 14:43 - 000000987 _____ C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\USB_Disk_Eject.lnk
2023-11-04 15:27 - 2023-11-04 15:27 - 000000000 ____D C:\Users\Jeannot\AppData\LocalLow\Temp
2023-11-02 19:25 - 2023-11-02 19:25 - 000000000 ____D C:\Users\Jeannot\Documents\Nouveau dossier
2023-11-02 19:19 - 2023-11-02 19:19 - 000000000 ____D C:\Windows\twain_64
2023-11-02 19:19 - 2013-06-01 06:13 - 001571160 ____N C:\Windows\TotalUninstaller.exe
2023-11-02 19:19 - 2012-03-14 00:58 - 000166640 _____ (TWAIN Working Group) C:\Windows\system32\TWAINDSM.dll
2023-11-02 19:19 - 2012-03-14 00:58 - 000148728 _____ (TWAIN Working Group) C:\Windows\SysWOW64\TWAINDSM.dll
2023-11-02 19:17 - 2023-11-03 14:03 - 000002786 _____ C:\Windows\system32\Tasks\EPM Preload
2023-11-02 19:17 - 2023-11-02 19:17 - 000000000 ____D C:\Program Files\Common Files\Common Desktop Agent
2023-11-02 19:17 - 2023-11-02 19:17 - 000000000 ____D C:\Program Files (x86)\Samsung Printers
2023-11-02 19:17 - 2022-02-24 03:06 - 000184168 _____ C:\Windows\system32\us016ci.exe
2023-11-02 19:08 - 2023-11-02 19:08 - 000000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller
2023-11-02 19:08 - 2023-11-02 19:08 - 000000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate
2023-11-02 18:56 - 2018-08-28 14:25 - 000018636 ____N C:\Windows\SysWOW64\spddata.xml
2023-11-02 18:56 - 2018-06-24 10:38 - 000508488 ____N C:\Windows\SysWOW64\spdsvc.exe
2023-11-02 18:34 - 2023-11-02 19:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2023-11-02 17:37 - 2023-11-02 17:37 - 000007605 _____ C:\Users\Jeannot\AppData\Local\Resmon.ResmonCfg
2023-11-02 17:13 - 2015-02-02 17:52 - 000158016 _____ C:\Windows\system32\us001ci.exe
2023-11-02 17:13 - 2014-10-16 06:25 - 000226424 _____ C:\Windows\system32\SBuySupplies.exe
2023-11-02 17:07 - 2015-02-04 05:41 - 000158016 _____ C:\Windows\system32\ux00aci.exe
2023-11-02 17:05 - 2023-11-09 20:13 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Samsung
2023-11-02 17:05 - 2023-11-09 20:12 - 000000000 ____D C:\Program Files (x86)\Samsung
2023-11-02 17:05 - 2023-11-02 19:18 - 000000000 ____D C:\ProgramData\Samsung
2023-11-02 17:05 - 2023-11-02 18:34 - 000143664 ____N C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2023-11-02 17:05 - 2023-11-02 18:34 - 000143664 ____N C:\Windows\system32\SecUPDUtilSvc.exe
2023-11-02 17:05 - 2023-11-02 17:05 - 000000000 ____D C:\ProgramData\SSScan
2023-11-02 17:05 - 2018-06-24 10:38 - 002095688 ____N C:\Windows\SysWOW64\DlgSearchEngine.dll
2023-11-02 17:05 - 2016-08-10 12:07 - 002847744 ____N C:\Windows\system32\DlgSearchEngine.dll
2023-11-02 17:05 - 2015-08-17 14:55 - 000158528 _____ C:\Windows\wiainst64.exe
2023-11-02 17:05 - 2015-08-17 14:42 - 000169472 ____N C:\Windows\system32\StatusMessage.dll
2023-11-02 17:05 - 2015-08-17 14:42 - 000124928 ____N C:\Windows\SysWOW64\StatusMessage.dll
2023-11-02 11:14 - 2023-11-02 11:14 - 000000000 ____D C:\Users\Jeannot\AppData\Local\SaRALogs
2023-11-01 18:42 - 2023-11-15 22:06 - 003515040 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPSuite.exe
2023-10-28 18:07 - 2023-10-28 18:12 - 000000000 _____ C:\Users\Jeannot\AppData\Local\{927C7461-5BA7-4516-A42F-BB97C10FCC3B}
2023-10-26 10:02 - 2023-10-26 10:05 - 000000000 ____D C:\ProgramData\RogueKiller
2023-10-26 10:02 - 2023-10-26 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2023-10-26 10:02 - 2023-10-26 10:02 - 000000000 ____D C:\Program Files\RogueKiller
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-23 20:55 - 2023-08-27 10:36 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-23 20:54 - 2023-09-13 07:14 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\ZHP
2023-11-23 20:46 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-23 20:22 - 2023-08-27 10:25 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-23 20:22 - 2023-05-05 13:24 - 000000000 ____D C:\Windows\SystemTemp
2023-11-23 19:56 - 2023-10-05 23:22 - 003346080 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPCleaner.exe
2023-11-23 19:56 - 2023-08-27 10:10 - 000000000 ____D C:\Users\Jeannot
2023-11-23 19:32 - 2023-08-27 18:25 - 000000000 ____D C:\Users\Jeannot\Documents\Fichiers Outlook
2023-11-23 18:18 - 2023-08-27 10:09 - 001761484 _____ C:\Windows\system32\PerfStringBackup.INI
2023-11-23 18:18 - 2019-12-07 15:50 - 000774544 _____ C:\Windows\system32\perfh00C.dat
2023-11-23 18:18 - 2019-12-07 15:50 - 000144692 _____ C:\Windows\system32\perfc00C.dat
2023-11-23 18:18 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-11-23 18:16 - 2023-10-04 11:07 - 000000000 ____D C:\Windows\Minidump
2023-11-23 18:15 - 2023-09-13 07:23 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Malwarebytes
2023-11-23 18:14 - 2023-08-27 09:59 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-23 18:14 - 2023-08-27 09:59 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-11-23 18:14 - 2023-08-27 09:59 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-11-23 12:32 - 2023-08-27 10:10 - 000000000 ___RD C:\Users\Jeannot\telechargement
2023-11-23 12:27 - 2023-09-21 13:13 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\KeePass
2023-11-22 14:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-22 14:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-11-21 12:20 - 2023-10-22 12:39 - 000000000 ____D C:\Program Files\Microsoft Office
2023-11-18 23:11 - 2023-09-14 12:50 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-11-18 23:10 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2023-11-18 23:07 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-11-18 10:53 - 2023-08-27 10:12 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Packages
2023-11-18 10:44 - 2023-08-27 09:59 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-17 09:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-11-16 21:19 - 2023-10-06 09:14 - 000000000 ____D C:\Users\Jeannot\Documents\TUTO KEEPASS
2023-11-16 17:32 - 2023-09-21 18:40 - 000020615 _____ C:\Users\Jeannot\Documents\Database.kdbx
2023-11-16 17:03 - 2023-08-27 10:57 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\Word
2023-11-15 20:35 - 2023-08-27 17:08 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\Excel
2023-11-15 16:10 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-11-15 16:05 - 2023-08-27 09:59 - 000439128 _____ C:\Windows\system32\FNTCACHE.DAT
2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ___SD C:\Windows\system32\AppV
2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-15 16:03 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\SysWOW64\fr
2023-11-15 16:03 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\system32\fr
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-15 16:03 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-11-15 16:02 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 14:03 - 2023-08-27 09:59 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-11-15 13:59 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-11-15 13:58 - 2019-12-07 15:53 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-11-15 13:58 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2023-11-15 13:58 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2023-11-15 13:50 - 2023-08-27 10:54 - 000416138 __RSH C:\bootmgr
2023-11-15 13:47 - 2023-08-27 10:01 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-11-15 12:48 - 2023-08-27 14:01 - 000000000 ____D C:\Windows\system32\MRT
2023-11-15 12:43 - 2023-08-27 14:01 - 182871392 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-11-12 09:11 - 2023-08-27 10:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-12 09:11 - 2023-08-27 10:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 20:13 - 2023-08-30 12:28 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-11-09 20:11 - 2023-10-20 21:56 - 000000000 ____D C:\AdwCleaner
2023-11-09 11:32 - 2023-08-27 10:24 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Google
2023-11-08 23:31 - 2023-08-27 11:39 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Everything
2023-11-08 23:31 - 2023-08-27 10:32 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Everything
2023-11-08 22:18 - 2023-08-27 09:59 - 000003676 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-08 18:12 - 2023-08-27 10:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-07 15:01 - 2023-08-29 22:26 - 000000000 ____D C:\Users\Jeannot\AppData\Local\D3DSCache
2023-11-07 06:23 - 2023-08-27 16:29 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-11-05 09:32 - 2023-09-16 14:44 - 000000000 ____D C:\Users\Jeannot\AppData\Local\CrashDumps
2023-11-05 09:31 - 2023-08-27 16:29 - 000003474 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-11-05 09:29 - 2023-08-27 16:29 - 000002256 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Jeannot
2023-11-03 14:03 - 2023-09-24 07:40 - 000002648 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-11-03 14:03 - 2023-08-27 09:59 - 000003452 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-03 14:02 - 2023-08-27 11:28 - 000003382 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{42791226-B343-4066-A734-2BC14728963A}
2023-11-03 13:00 - 2023-08-27 10:20 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\MMC
2023-11-02 19:21 - 2023-08-27 10:12 - 000000000 ____D C:\Users\Jeannot\AppData\Local\VirtualStore
2023-11-02 18:07 - 2023-08-27 10:47 - 000000000 ____D C:\Users\Jeannot\AppData\Local\ElevatedDiagnostics
2023-11-02 11:32 - 2023-08-30 10:21 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Deployment
2023-10-29 11:01 - 2023-08-28 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2023-10-27 19:19 - 2023-08-27 14:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-24 21:50 - 2023-08-27 10:12 - 000000000 ____D C:\ProgramData\Packages
2023-10-24 21:48 - 2023-08-27 10:15 - 000000000 ____D C:\Users\Jeannot\AppData\Local\PlaceholderTileLogoFolder
==================== Fichiers à la racine de certains dossiers ========
2023-10-05 23:22 - 2023-11-23 19:56 - 003346080 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPCleaner.exe
2023-11-01 18:42 - 2023-11-15 22:06 - 003515040 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPSuite.exe
2023-08-27 19:54 - 2023-08-27 19:54 - 000051886 _____ () C:\Users\Jeannot\AppData\Roaming\Valeurs séparées par une virgule.ADR
2023-11-02 17:37 - 2023-11-02 17:37 - 000007605 _____ () C:\Users\Jeannot\AppData\Local\Resmon.ResmonCfg
2023-10-28 18:07 - 2023-10-28 18:12 - 000000000 _____ () C:\Users\Jeannot\AppData\Local\{927C7461-5BA7-4516-A42F-BB97C10FCC3B}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================