Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-12-2023
Exécuté par jean paul (administrateur) sur POSTEFIXE (11-12-2023 17:54:55)
Exécuté depuis C:\Users\Utilisateur\Desktop\FRST64.exe
Profils chargés: jean paul
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3758 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Utilisateur\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [com.squirrel.speedtest.speedtest] => C:\Users\Utilisateur\Appdata\Local\speedtest\speedtest.exe [290304 2023-04-16] (SpeedTest) [Fichier non signé]
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [Microsoft Edge Update] => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateCore.exe [264264 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3788736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [62552 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-12-04] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {9E602543-0C73-4F4F-A678-69DFA41B45D8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {8578B819-A40C-4882-B36A-987F583D3377} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4E425571-01AA-4B98-BA9D-1728E937C7B2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "error" --version "6.13.10517" --silent
Task: {E817B715-46BF-4968-87D0-7B2FC1472B9B} - System32\Tasks\CCleanerSkipUAC - jean paul => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93C7BF80-0B7A-43A9-A89B-D388F961BB37} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-27] (Google Inc -> Google Inc.)
Task: {DCA945B2-9911-4662-8DFE-4C9C734369C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-27] (Google Inc -> Google Inc.)
Task: {F2B731E5-41AB-4120-988F-A86DE2B81386} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {AE763F15-50BE-4BFA-B79C-148E9D54EE41} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {E2DFBB46-5F95-43A0-9CB7-0E61FFB5F223} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {C960D1AA-26F0-449E-93C5-E44FCD265E98} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {343958D2-C393-4BB0-B94F-EE832F5DCAE7} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6274EDD7-52F8-4223-8F11-FF6ED12FE276} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E17BBCCE-9359-4558-A0CD-DEEEF6C5FC73} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [256512 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
Task: {25B95B0D-7928-414E-A045-602169807DFB} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-119555792-3545591151-3547730462-1001Core{BBD85B5C-0C52-452B-A894-C6B3E5ECDD49} => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206240 2023-06-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {53F4D0E4-442C-4A64-BE64-1B74B7392D8C} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-119555792-3545591151-3547730462-1001UA{74F7CF7E-F87A-4D89-B571-4EFB4B31DA6B} => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206240 2023-06-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {74CB4D87-9453-40DB-9AD2-EA92AAFF8478} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-12-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {07FE289B-CFDE-4D39-8DF7-6D46C913B0A5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C0330854-8401-47C0-B32A-CFFF1AAEBE7B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C4B22702-7DBB-446E-A737-523C25DF1A70} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A2FDF70D-C299-4158-880A-C7638ECB1D37} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {20481EA1-EEAC-4E43-8269-9A9DB149D19F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A3DEF347-B23B-4CC3-B481-F578ABD10A14} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {73716292-C72E-4C70-87AC-5B405A847917} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AA6C2A75-98C0-4507-B8EA-7C1D44BB2AF4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB4F9891-93D3-41C7-93E3-74BC9DC53E11} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6965460C-6231-4910-9713-D29C389B7E8D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2023-10-16] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{13d52ce9-62b5-4f1b-ac1a-63915776097f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cbb9f84e-6555-4cb9-80ab-5affb63e5e1f}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-06]
Edge Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
Edge Extension: (Edge relevant text changes) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-18]
FireFox:
========
FF DefaultProfile: ouhn0a9f.default-1610191289200
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 [2023-12-11]
FF NetworkProxy: Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 -> hxxps://intranet.secourspopulaire.fr; hxxps://espace-particulier.allianz.fr; hxxps://www.pleinevie.fr; hxxps://www.marmiton.org; hxxps://www.zebulon.fr; hxxps://www.celio.com; hxxps://informerick.com
FF Extension: (Signal Spam) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\@addonsignalspam.xpi [2023-02-14]
FF Extension: (Facebook Container) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\@contain-facebook.xpi [2023-07-23]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-11]
FF Extension: (Logitech SetPoint) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2023-06-15]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-06-15] [non signé]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2023-11-22]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-22]
CHR HKU\S-1-5-21-119555792-3545591151-3547730462-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-02-27] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GameInputSvc; C:\WINDOWS\System32\GameInputSvc.exe [50168 2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-11-27] (Malwarebytes Inc. -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6057432 2016-08-21] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-08-09] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-06] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [200104 2023-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2023-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188008 2023-12-04] (Malwarebytes Inc. -> Malwarebytes)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [136848 2023-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2023-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 RimVSerPort; C:\WINDOWS\System32\drivers\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-27] (Microsoft Corporation) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-11 17:54 - 2023-12-11 17:58 - 000022618 ____C C:\Users\Utilisateur\Desktop\FRST.txt
2023-12-11 17:49 - 2023-12-11 17:50 - 002385408 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2023-12-05 14:09 - 2023-12-05 14:09 - 000000533 _____ C:\Users\Utilisateur\Downloads\Relevés_mensuels_gaz(1).csv
2023-12-04 20:11 - 2023-12-04 20:11 - 000188008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-12-04 20:02 - 2023-12-04 20:02 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-04 19:14 - 2023-12-04 19:14 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-04 17:56 - 2023-12-04 17:57 - 000000533 _____ C:\Users\Utilisateur\Downloads\Relevés_mensuels_gaz.csv
2023-12-04 17:15 - 2023-12-04 17:15 - 000000000 __HDC C:\$WinREAgent
2023-12-04 15:50 - 2023-12-04 20:08 - 000000000 ___DC C:\Program Files\Mozilla Firefox
2023-12-04 06:57 - 2023-12-05 14:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-11-28 18:39 - 2023-11-28 18:39 - 000860024 ____C C:\Users\Utilisateur\Desktop\nouvelles_speciales_nouveau_site_webspf_190523.pdf
2023-11-27 18:53 - 2023-11-27 18:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\SumatraPDF
2023-11-27 18:53 - 2023-11-27 18:53 - 000002095 ____C C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\SumatraPDF.lnk
2023-11-27 18:53 - 2023-11-27 18:53 - 000002093 ____C C:\Users\Utilisateur\Desktop\SumatraPDF.lnk
2023-11-27 18:52 - 2023-11-27 18:53 - 008246744 _____ (Krzysztof Kowalczyk) C:\Users\Utilisateur\Downloads\SumatraPDF-3.5.2-64-install.exe
2023-11-27 18:12 - 2023-12-11 08:04 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Malwarebytes
2023-11-27 18:12 - 2023-11-27 18:12 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-11-27 18:12 - 2023-11-27 18:12 - 000002021 ____C C:\Users\Public\Desktop\Malwarebytes.lnk
2023-11-27 18:08 - 2023-11-27 18:09 - 002606880 _____ (Malwarebytes) C:\Users\Utilisateur\Downloads\MBSetup.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-11 17:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-11 17:57 - 2020-03-14 10:18 - 000000000 ___DC C:\FRST
2023-12-11 17:38 - 2022-02-08 17:53 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-12-11 17:29 - 2021-12-16 05:57 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-11 17:29 - 2017-05-27 17:29 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-11 17:28 - 2020-06-02 08:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-11 14:33 - 2016-09-15 09:22 - 000000000 ___DC C:\Users\Utilisateur\AppData\Roaming\Microsoft\Word
2023-12-11 14:33 - 2016-09-15 09:22 - 000000000 ___DC C:\Users\Utilisateur\AppData\Roaming\Microsoft\Excel
2023-12-11 14:28 - 2017-10-24 12:22 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2023-12-11 12:25 - 2016-09-14 20:55 - 000000000 ___DC C:\ProgramData\NVIDIA
2023-12-11 08:30 - 2023-10-17 22:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-11 08:30 - 2023-10-17 22:11 - 000002280 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-12-11 08:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-11 08:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-11 08:01 - 2020-06-02 09:12 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-11 08:01 - 2020-06-02 09:12 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-05 14:11 - 2022-02-01 16:51 - 000265028 _____ C:\Users\Utilisateur\Desktop\comptes Christiane fevrier 2022.xlsx
2023-12-05 14:11 - 2020-05-29 07:41 - 000001278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-12-05 14:11 - 2016-09-14 21:59 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-04 20:18 - 2018-08-02 15:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2023-12-04 20:15 - 2020-06-02 08:57 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-04 20:15 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-04 20:15 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-04 20:15 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-04 20:11 - 2020-06-02 08:46 - 000308424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-04 20:09 - 2020-06-02 09:12 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2023-12-04 20:08 - 2020-06-02 08:46 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-04 20:07 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-04 20:02 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-04 19:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-04 19:29 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-04 19:29 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-04 16:24 - 2016-09-14 21:59 - 000001005 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-12-04 07:15 - 2017-05-27 17:31 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-04 07:06 - 2023-06-16 10:36 - 000000000 ____D C:\Program Files\CCleaner
2023-11-27 18:51 - 2023-06-21 23:03 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-11-27 18:11 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-27 18:09 - 2020-08-12 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-27 18:09 - 2020-08-12 18:51 - 000000000 ____D C:\Program Files\Malwarebytes
2023-11-22 15:30 - 2016-09-19 17:52 - 000000000 ___DC C:\Users\Utilisateur\AppData\Local\CrashDumps
2023-11-22 14:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-20 18:18 - 2022-04-24 12:02 - 000002435 ____C C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-20 18:18 - 2021-12-14 18:32 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-119555792-3545591151-3547730462-1001
2023-11-20 18:18 - 2020-06-02 09:12 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-119555792-3545591151-3547730462-1001
2023-11-20 18:15 - 2020-06-02 09:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-15 15:45 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 15:43 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-15 15:42 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-15 15:42 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-15 11:57 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-15 11:56 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-15 11:05 - 2020-06-02 08:53 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-15 09:02 - 2016-09-15 19:20 - 000000000 ___DC C:\WINDOWS\system32\MRT
2023-11-15 08:55 - 2016-09-15 19:20 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-12 18:02 - 2021-02-20 13:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-12 17:57 - 2016-09-15 08:34 - 000000000 ___DC C:\Program Files\Microsoft Office 15
==================== Fichiers à la racine de certains dossiers ========
2015-04-10 17:02 - 2023-01-20 11:27 - 003306184 _____ (Nicolas Coolman) C:\Users\Utilisateur\ZHPCleaner.exe
2016-05-10 17:17 - 2018-04-19 08:22 - 003069312 _____ () C:\Users\Utilisateur\ZHPDiag3.exe
2019-07-05 18:40 - 2019-07-05 18:40 - 000003584 _____ () C:\Users\Utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-02-16 17:33 - 2017-02-16 17:33 - 000000000 __SHC () C:\Users\Utilisateur\AppData\Local\LumaEmu
2018-09-03 16:30 - 2023-09-04 05:52 - 000007603 _____ () C:\Users\Utilisateur\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par jean paul (administrateur) sur POSTEFIXE (11-12-2023 17:54:55)
Exécuté depuis C:\Users\Utilisateur\Desktop\FRST64.exe
Profils chargés: jean paul
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3758 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.352\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Utilisateur\AppData\Local\Microsoft\Teams\Update.exe [2452664 2021-01-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [com.squirrel.speedtest.speedtest] => C:\Users\Utilisateur\Appdata\Local\speedtest\speedtest.exe [290304 2023-04-16] (SpeedTest) [Fichier non signé]
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [Microsoft Edge Update] => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateCore.exe [264264 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-119555792-3545591151-3547730462-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3788736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [62552 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.200\Installer\chrmstp.exe [2023-12-04] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {9E602543-0C73-4F4F-A678-69DFA41B45D8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {8578B819-A40C-4882-B36A-987F583D3377} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4E425571-01AA-4B98-BA9D-1728E937C7B2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "error" --version "6.13.10517" --silent
Task: {E817B715-46BF-4968-87D0-7B2FC1472B9B} - System32\Tasks\CCleanerSkipUAC - jean paul => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {93C7BF80-0B7A-43A9-A89B-D388F961BB37} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-27] (Google Inc -> Google Inc.)
Task: {DCA945B2-9911-4662-8DFE-4C9C734369C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-27] (Google Inc -> Google Inc.)
Task: {F2B731E5-41AB-4120-988F-A86DE2B81386} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Pas de fichier)
Task: {AE763F15-50BE-4BFA-B79C-148E9D54EE41} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {E2DFBB46-5F95-43A0-9CB7-0E61FFB5F223} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {C960D1AA-26F0-449E-93C5-E44FCD265E98} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {343958D2-C393-4BB0-B94F-EE832F5DCAE7} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6274EDD7-52F8-4223-8F11-FF6ED12FE276} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E17BBCCE-9359-4558-A0CD-DEEEF6C5FC73} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [256512 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
Task: {25B95B0D-7928-414E-A045-602169807DFB} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-119555792-3545591151-3547730462-1001Core{BBD85B5C-0C52-452B-A894-C6B3E5ECDD49} => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206240 2023-06-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {53F4D0E4-442C-4A64-BE64-1B74B7392D8C} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-119555792-3545591151-3547730462-1001UA{74F7CF7E-F87A-4D89-B571-4EFB4B31DA6B} => C:\Users\Utilisateur\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206240 2023-06-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {74CB4D87-9453-40DB-9AD2-EA92AAFF8478} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2023-12-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {07FE289B-CFDE-4D39-8DF7-6D46C913B0A5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C0330854-8401-47C0-B32A-CFFF1AAEBE7B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341432 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C4B22702-7DBB-446E-A737-523C25DF1A70} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647424 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A2FDF70D-C299-4158-880A-C7638ECB1D37} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {20481EA1-EEAC-4E43-8269-9A9DB149D19F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905984 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A3DEF347-B23B-4CC3-B481-F578ABD10A14} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {73716292-C72E-4C70-87AC-5B405A847917} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AA6C2A75-98C0-4507-B8EA-7C1D44BB2AF4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB4F9891-93D3-41C7-93E3-74BC9DC53E11} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1649920 2023-05-11] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6965460C-6231-4910-9713-D29C389B7E8D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2023-10-16] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{13d52ce9-62b5-4f1b-ac1a-63915776097f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cbb9f84e-6555-4cb9-80ab-5affb63e5e1f}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-06]
Edge Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
Edge Extension: (Edge relevant text changes) - C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-18]
FireFox:
========
FF DefaultProfile: ouhn0a9f.default-1610191289200
FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 [2023-12-11]
FF NetworkProxy: Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200 -> hxxps://intranet.secourspopulaire.fr; hxxps://espace-particulier.allianz.fr; hxxps://www.pleinevie.fr; hxxps://www.marmiton.org; hxxps://www.zebulon.fr; hxxps://www.celio.com; hxxps://informerick.com
FF Extension: (Signal Spam) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\@addonsignalspam.xpi [2023-02-14]
FF Extension: (Facebook Container) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\@contain-facebook.xpi [2023-07-23]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-11]
FF Extension: (Logitech SetPoint) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ouhn0a9f.default-1610191289200\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2023-06-15]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-06-15] [non signé]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [Pas de fichier]
Chrome:
=======
CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2023-11-22]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-22]
CHR HKU\S-1-5-21-119555792-3545591151-3547730462-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-02-27] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GameInputSvc; C:\WINDOWS\System32\GameInputSvc.exe [50168 2023-12-04] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-11-27] (Malwarebytes Inc. -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [6057432 2016-08-21] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-08-09] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-06] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222784 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-11-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [200104 2023-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2023-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2023-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188008 2023-12-04] (Malwarebytes Inc. -> Malwarebytes)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [136848 2023-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2023-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 RimVSerPort; C:\WINDOWS\System32\drivers\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-27] (Microsoft Corporation) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation)
S3 dg_ssudbus; \SystemRoot\system32\DRIVERS\ssudbus2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-11 17:54 - 2023-12-11 17:58 - 000022618 ____C C:\Users\Utilisateur\Desktop\FRST.txt
2023-12-11 17:49 - 2023-12-11 17:50 - 002385408 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe
2023-12-05 14:09 - 2023-12-05 14:09 - 000000533 _____ C:\Users\Utilisateur\Downloads\Relevés_mensuels_gaz(1).csv
2023-12-04 20:11 - 2023-12-04 20:11 - 000188008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-12-04 20:02 - 2023-12-04 20:02 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-04 19:14 - 2023-12-04 19:14 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-04 17:56 - 2023-12-04 17:57 - 000000533 _____ C:\Users\Utilisateur\Downloads\Relevés_mensuels_gaz.csv
2023-12-04 17:15 - 2023-12-04 17:15 - 000000000 __HDC C:\$WinREAgent
2023-12-04 15:50 - 2023-12-04 20:08 - 000000000 ___DC C:\Program Files\Mozilla Firefox
2023-12-04 06:57 - 2023-12-05 14:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-11-28 18:39 - 2023-11-28 18:39 - 000860024 ____C C:\Users\Utilisateur\Desktop\nouvelles_speciales_nouveau_site_webspf_190523.pdf
2023-11-27 18:53 - 2023-11-27 18:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\SumatraPDF
2023-11-27 18:53 - 2023-11-27 18:53 - 000002095 ____C C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\SumatraPDF.lnk
2023-11-27 18:53 - 2023-11-27 18:53 - 000002093 ____C C:\Users\Utilisateur\Desktop\SumatraPDF.lnk
2023-11-27 18:52 - 2023-11-27 18:53 - 008246744 _____ (Krzysztof Kowalczyk) C:\Users\Utilisateur\Downloads\SumatraPDF-3.5.2-64-install.exe
2023-11-27 18:12 - 2023-12-11 08:04 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Malwarebytes
2023-11-27 18:12 - 2023-11-27 18:12 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-11-27 18:12 - 2023-11-27 18:12 - 000002021 ____C C:\Users\Public\Desktop\Malwarebytes.lnk
2023-11-27 18:08 - 2023-11-27 18:09 - 002606880 _____ (Malwarebytes) C:\Users\Utilisateur\Downloads\MBSetup.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-11 17:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-11 17:57 - 2020-03-14 10:18 - 000000000 ___DC C:\FRST
2023-12-11 17:38 - 2022-02-08 17:53 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-12-11 17:29 - 2021-12-16 05:57 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-11 17:29 - 2017-05-27 17:29 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-11 17:28 - 2020-06-02 08:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-11 14:33 - 2016-09-15 09:22 - 000000000 ___DC C:\Users\Utilisateur\AppData\Roaming\Microsoft\Word
2023-12-11 14:33 - 2016-09-15 09:22 - 000000000 ___DC C:\Users\Utilisateur\AppData\Roaming\Microsoft\Excel
2023-12-11 14:28 - 2017-10-24 12:22 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Packages
2023-12-11 12:25 - 2016-09-14 20:55 - 000000000 ___DC C:\ProgramData\NVIDIA
2023-12-11 08:30 - 2023-10-17 22:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-11 08:30 - 2023-10-17 22:11 - 000002280 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-12-11 08:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-11 08:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-11 08:01 - 2020-06-02 09:12 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-11 08:01 - 2020-06-02 09:12 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-05 14:11 - 2022-02-01 16:51 - 000265028 _____ C:\Users\Utilisateur\Desktop\comptes Christiane fevrier 2022.xlsx
2023-12-05 14:11 - 2020-05-29 07:41 - 000001278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-12-05 14:11 - 2016-09-14 21:59 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service
2023-12-04 20:18 - 2018-08-02 15:54 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\D3DSCache
2023-12-04 20:15 - 2020-06-02 08:57 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-04 20:15 - 2019-12-07 15:49 - 000791756 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-04 20:15 - 2019-12-07 15:49 - 000149922 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-04 20:15 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-04 20:11 - 2020-06-02 08:46 - 000308424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-04 20:09 - 2020-06-02 09:12 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2023-12-04 20:08 - 2020-06-02 08:46 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-04 20:07 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-04 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-04 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-04 20:02 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-04 19:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-04 19:29 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-04 19:29 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-04 16:24 - 2016-09-14 21:59 - 000001005 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-12-04 07:15 - 2017-05-27 17:31 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-04 07:06 - 2023-06-16 10:36 - 000000000 ____D C:\Program Files\CCleaner
2023-11-27 18:51 - 2023-06-21 23:03 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-11-27 18:11 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-11-27 18:09 - 2020-08-12 18:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-11-27 18:09 - 2020-08-12 18:51 - 000000000 ____D C:\Program Files\Malwarebytes
2023-11-22 15:30 - 2016-09-19 17:52 - 000000000 ___DC C:\Users\Utilisateur\AppData\Local\CrashDumps
2023-11-22 14:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-11-20 18:18 - 2022-04-24 12:02 - 000002435 ____C C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-20 18:18 - 2021-12-14 18:32 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-119555792-3545591151-3547730462-1001
2023-11-20 18:18 - 2020-06-02 09:12 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-119555792-3545591151-3547730462-1001
2023-11-20 18:15 - 2020-06-02 09:12 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-11-15 15:45 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-15 15:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 15:43 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\fr
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-15 15:42 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-15 15:42 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 15:42 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-15 11:57 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-11-15 11:56 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-11-15 11:05 - 2020-06-02 08:53 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-15 09:02 - 2016-09-15 19:20 - 000000000 ___DC C:\WINDOWS\system32\MRT
2023-11-15 08:55 - 2016-09-15 19:20 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-12 18:02 - 2021-02-20 13:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-11-12 17:57 - 2016-09-15 08:34 - 000000000 ___DC C:\Program Files\Microsoft Office 15
==================== Fichiers à la racine de certains dossiers ========
2015-04-10 17:02 - 2023-01-20 11:27 - 003306184 _____ (Nicolas Coolman) C:\Users\Utilisateur\ZHPCleaner.exe
2016-05-10 17:17 - 2018-04-19 08:22 - 003069312 _____ () C:\Users\Utilisateur\ZHPDiag3.exe
2019-07-05 18:40 - 2019-07-05 18:40 - 000003584 _____ () C:\Users\Utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-02-16 17:33 - 2017-02-16 17:33 - 000000000 __SHC () C:\Users\Utilisateur\AppData\Local\LumaEmu
2018-09-03 16:30 - 2023-09-04 05:52 - 000007603 _____ () C:\Users\Utilisateur\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================