Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2023
Exécuté par Steven (administrateur) sur MSI (Micro-Star International Co., Ltd. CR62 6ML) (21-12-2023 20:07:38)
Exécuté depuis C:\Users\Steven\Desktop\FRST64.exe
Profils chargés: Steven
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(explorer.exe ->) (Micro-Star International CO., LTD. -> MSI) [Fichier non signé] C:\Program Files (x86)\SCM\SCM.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\105.0.4970.60\opera_autoupdate.exe <4>
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\105.0.4970.60\opera_crashreporter.exe
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\opera.exe
(services.exe ->) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\SCM\MSIService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\launcher.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-08-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2016-08-17] (Micro-Star International CO., LTD. -> MSI) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE [283232 2014-12-12] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [Opera Stable] => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [MicrosoftEdgeAutoLaunch_D48FE53C533F08067D4FA184390E7A2E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2023-12-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3746208 2023-12-19] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Uninstall 23.226.1031.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\23.226.1031.0003" [0 2023-12-16] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\MountPoints2: {4179fc15-d57b-11eb-b8f3-4ccc6a81e42b} - "E:\autorun.exe"
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\MountPoints2: {c4a4a2ae-d414-11ed-b91e-4ccc6a81e42b} - "G:\AutoRun.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMILE.DLL [120320 2014-12-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [36352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {EAAE3AA0-8057-463F-9492-3A3DF838A662} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7D855AF6-4568-4512-A58E-4F373C55C2C2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "12271b6e-02b5-4713-a63a-2641db20cabc" --version "6.19.10858" --silent
Task: {C6F73F15-5FC6-4B10-A390-5FD39F9A6610} - System32\Tasks\CCleanerSkipUAC - Steven => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A8083EFD-BC95-4541-9659-6A8E61CC0797} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {127C00E8-0929-4DA0-A15C-13225FE71B51} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {100A2478-0713-406F-AEDC-031390EAD56F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {52DAE3A6-6E38-4A5F-AA7E-7325E62AD0A7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {B380B7E5-49CF-43B2-A470-A3CB372E750C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63F55726-9DE8-45D4-B00A-A55F10C95DA1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B701D33-9410-453C-8EF3-15EF67AC44FA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D6305E7-A59D-4402-9470-57D2C286EB02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {434B56FB-AF2E-45C7-A3FF-0F1E43386A03} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe [431384 2017-07-25] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
Task: {BD33EDC8-B619-4EF0-820D-43D3BF3DD2B3} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [275256 2016-06-22] (Micro-Star International CO., LTD. -> Application) [Fichier non signé]
Task: {2A1756D9-C240-471C-B32C-FB262E25DAA8} - System32\Tasks\Opera scheduled assistant Autoupdate 1688218028 => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {6CB7A3FE-EE70-417F-8564-19CB5AE3EE4B} - System32\Tasks\Opera scheduled Autoupdate 1688217990 => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software)
Task: {AB3E09C7-EC9D-4398-B459-5497FEE1F118} - System32\Tasks\VivaldiUpdateCheck-8a45bdb99b243a3b => C:\Users\Steven\AppData\Local\Vivaldi\Application\update_notifier.exe [3704720 2023-12-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6456a02f-c24d-4b53-a09b-7776592c43a7}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{cb751024-2d55-4dec-8496-7a2e12211000}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d2c26927-f5f7-4414-975d-ad65c01c579d}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-15]
Edge Extension: (Google Docs hors connexion) - C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-05]
FireFox:
========
FF DefaultProfile: 9mw3qsn2.default
FF ProfilePath: C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\9mw3qsn2.default [2020-05-12]
FF ProfilePath: C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\vpxjfuph.default-release-1679743031444 [2023-12-15]
FF Extension: (AdGuard AdBlocker) - C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\vpxjfuph.default-release-1679743031444\Extensions\adguardadblocker@adguard.com.xpi [2023-03-25]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2022-02-02] [] [non signé]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Opera:
=======
OPR DefaultProfile: Default
Vivaldi:
=======
VIV Profile: C:\Users\Steven\AppData\Local\Vivaldi\User Data\Default [2023-12-21]
VIV HomePage: Default -> vivaldi://startpage
VIV DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&{ecosia:Referral_FR}
VIV DefaultSearchKeyword: Default -> e
VIV DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-11] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-07-06] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-07-06] () [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9266864 2023-07-18] (Malwarebytes Inc. -> Malwarebytes)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2016-08-17] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287744 2022-05-13] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-16] (Microsoft Corporation) [Fichier non signé]
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213216 2018-10-15] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-21 20:07 - 2023-12-21 20:11 - 000020597 _____ C:\Users\Steven\Desktop\FRST.txt
2023-12-21 20:05 - 2023-12-21 20:10 - 000000000 ____D C:\FRST
2023-12-21 19:29 - 2023-12-21 19:29 - 002387456 _____ (Farbar) C:\Users\Steven\Desktop\FRST64.exe
2023-12-15 14:29 - 2023-12-15 14:29 - 000000000 ____D C:\Users\Steven\AppData\Local\ZHP
2023-12-15 00:26 - 2023-12-15 00:26 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 16:56 - 2023-12-13 16:56 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 15:02 - 2023-12-13 15:02 - 000000000 ___HD C:\$WinREAgent
2023-12-07 20:55 - 2023-12-07 20:56 - 000000000 ____D C:\AdwCleaner
2023-12-07 20:54 - 2023-12-07 20:55 - 008791352 _____ (Malwarebytes) C:\Users\Steven\Desktop\adwcleaner.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-21 20:05 - 2018-01-27 12:41 - 000000000 ____D C:\Program Files\Opera
2023-12-21 19:52 - 2020-11-06 01:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-21 19:05 - 2020-06-11 14:58 - 000002402 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2023-12-21 19:05 - 2020-06-11 14:57 - 000000000 ____D C:\Users\Steven\AppData\Local\Vivaldi
2023-12-21 19:04 - 2020-06-11 14:58 - 000002365 _____ C:\Users\Steven\Desktop\Vivaldi.lnk
2023-12-21 17:31 - 2023-07-01 14:27 - 000004128 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1688217990
2023-12-21 17:31 - 2023-07-01 14:26 - 000000992 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-12-21 13:59 - 2020-06-11 14:59 - 000000527 _____ C:\Users\Steven\.vivaldi_reporting_data
2023-12-21 10:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-20 16:45 - 2023-07-01 14:27 - 000004314 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1688218028
2023-12-19 16:37 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-19 16:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-17 20:57 - 2022-11-22 10:44 - 000003014 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-17 20:57 - 2022-11-22 10:43 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-17 20:57 - 2022-11-22 10:40 - 000002316 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Steven
2023-12-17 20:55 - 2018-01-27 16:47 - 000000000 ____D C:\Program Files\CCleaner
2023-12-17 18:47 - 2020-11-06 01:48 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-17 18:47 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-17 18:47 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-17 18:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-16 09:37 - 2023-06-26 23:44 - 000002434 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-16 09:37 - 2021-12-13 14:16 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1653031444-1290640026-4248708408-1001
2023-12-16 09:37 - 2020-11-06 01:59 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1653031444-1290640026-4248708408-1001
2023-12-15 20:59 - 2020-06-23 14:38 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-15 17:12 - 2020-11-06 01:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-15 17:05 - 2021-12-17 13:27 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-15 14:50 - 2018-06-17 10:55 - 000000000 ____D C:\Users\Steven\AppData\Roaming\ZHP
2023-12-15 09:15 - 2018-01-27 12:21 - 000000000 ____D C:\Users\Steven\AppData\Local\Packages
2023-12-15 09:14 - 2018-01-27 12:21 - 000000000 __SHD C:\Users\Steven\IntelGraphicsProfiles
2023-12-15 09:12 - 2020-11-06 01:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-15 09:12 - 2016-08-22 23:52 - 000000000 ____D C:\Intel
2023-12-15 09:11 - 2020-11-06 01:29 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-15 00:34 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-15 00:31 - 2020-11-06 01:29 - 000726048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-15 00:26 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-13 17:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 17:11 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-13 17:11 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-13 16:56 - 2020-11-06 01:34 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-09 15:05 - 2023-05-26 09:48 - 000000000 ____D C:\Users\Steven\AppData\Local\Malwarebytes
2023-12-07 21:56 - 2019-08-28 16:19 - 000068962 _____ C:\Users\Steven\Desktop\Si le ciel offre une éclaircie.odt
2023-12-07 18:12 - 2018-05-27 01:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-07 17:26 - 2016-04-09 15:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-12-05 19:34 - 2020-11-06 01:36 - 000000000 ____D C:\Users\Steven
2023-11-24 22:29 - 2019-12-10 18:36 - 000000000 ____D C:\Users\Steven\AppData\Roaming\vlc
2023-11-24 22:04 - 2019-05-02 18:43 - 000000000 ___RD C:\Users\Steven\Desktop\Steven
2023-11-24 21:38 - 2021-10-22 09:04 - 000000000 ____D C:\Users\Steven\Desktop\Nouveau dossier
==================== Fichiers à la racine de certains dossiers ========
2020-10-14 22:25 - 2021-07-03 09:44 - 000000615 _____ () C:\Users\Steven\AppData\Local\oobelibMkey.log
2020-09-03 22:43 - 2020-09-03 22:43 - 000004035 _____ () C:\Users\Steven\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Steven (administrateur) sur MSI (Micro-Star International Co., Ltd. CR62 6ML) (21-12-2023 20:07:38)
Exécuté depuis C:\Users\Steven\Desktop\FRST64.exe
Profils chargés: Steven
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(explorer.exe ->) (Micro-Star International CO., LTD. -> MSI) [Fichier non signé] C:\Program Files (x86)\SCM\SCM.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\105.0.4970.60\opera_autoupdate.exe <4>
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\105.0.4970.60\opera_crashreporter.exe
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\opera.exe
(services.exe ->) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\SCM\MSIService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\launcher.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-08-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2016-08-17] (Micro-Star International CO., LTD. -> MSI) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE [283232 2014-12-12] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [Opera Stable] => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [MicrosoftEdgeAutoLaunch_D48FE53C533F08067D4FA184390E7A2E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854376 2023-12-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3746208 2023-12-19] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\RunOnce: [Uninstall 23.226.1031.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Steven\AppData\Local\Microsoft\OneDrive\23.226.1031.0003" [0 2023-12-16] () <==== ATTENTION [zéro octet Fichier/Dossier]
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\MountPoints2: {4179fc15-d57b-11eb-b8f3-4ccc6a81e42b} - "E:\autorun.exe"
HKU\S-1-5-21-1653031444-1290640026-4248708408-1001\...\MountPoints2: {c4a4a2ae-d414-11ed-b91e-4ccc6a81e42b} - "G:\AutoRun.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON XP-205 207 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMILE.DLL [120320 2014-12-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\WINDOWS\system32\hpz3llhn.dll [36352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {EAAE3AA0-8057-463F-9492-3A3DF838A662} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {7D855AF6-4568-4512-A58E-4F373C55C2C2} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "12271b6e-02b5-4713-a63a-2641db20cabc" --version "6.19.10858" --silent
Task: {C6F73F15-5FC6-4B10-A390-5FD39F9A6610} - System32\Tasks\CCleanerSkipUAC - Steven => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A8083EFD-BC95-4541-9659-6A8E61CC0797} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {127C00E8-0929-4DA0-A15C-13225FE71B51} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {100A2478-0713-406F-AEDC-031390EAD56F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {52DAE3A6-6E38-4A5F-AA7E-7325E62AD0A7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218264 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {B380B7E5-49CF-43B2-A470-A3CB372E750C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63F55726-9DE8-45D4-B00A-A55F10C95DA1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B701D33-9410-453C-8EF3-15EF67AC44FA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D6305E7-A59D-4402-9470-57D2C286EB02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {434B56FB-AF2E-45C7-A3FF-0F1E43386A03} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe [431384 2017-07-25] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
Task: {BD33EDC8-B619-4EF0-820D-43D3BF3DD2B3} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [275256 2016-06-22] (Micro-Star International CO., LTD. -> Application) [Fichier non signé]
Task: {2A1756D9-C240-471C-B32C-FB262E25DAA8} - System32\Tasks\Opera scheduled assistant Autoupdate 1688218028 => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {6CB7A3FE-EE70-417F-8564-19CB5AE3EE4B} - System32\Tasks\Opera scheduled Autoupdate 1688217990 => C:\Program Files\Opera\launcher.exe [1834400 2023-12-20] (Opera Norway AS -> Opera Software)
Task: {AB3E09C7-EC9D-4398-B459-5497FEE1F118} - System32\Tasks\VivaldiUpdateCheck-8a45bdb99b243a3b => C:\Users\Steven\AppData\Local\Vivaldi\Application\update_notifier.exe [3704720 2023-12-13] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6456a02f-c24d-4b53-a09b-7776592c43a7}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{cb751024-2d55-4dec-8496-7a2e12211000}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d2c26927-f5f7-4414-975d-ad65c01c579d}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-15]
Edge Extension: (Google Docs hors connexion) - C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Steven\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-05]
FireFox:
========
FF DefaultProfile: 9mw3qsn2.default
FF ProfilePath: C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\9mw3qsn2.default [2020-05-12]
FF ProfilePath: C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\vpxjfuph.default-release-1679743031444 [2023-12-15]
FF Extension: (AdGuard AdBlocker) - C:\Users\Steven\AppData\Roaming\Mozilla\Firefox\Profiles\vpxjfuph.default-release-1679743031444\Extensions\adguardadblocker@adguard.com.xpi [2023-03-25]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2022-02-02] [] [non signé]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2022-06-01] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Opera:
=======
OPR DefaultProfile: Default
Vivaldi:
=======
VIV Profile: C:\Users\Steven\AppData\Local\Vivaldi\User Data\Default [2023-12-21]
VIV HomePage: Default -> vivaldi://startpage
VIV DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&{ecosia:Referral_FR}
VIV DefaultSearchKeyword: Default -> e
VIV DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-11] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-07-06] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-07-06] () [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9266864 2023-07-18] (Malwarebytes Inc. -> Malwarebytes)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2016-08-17] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287744 2022-05-13] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-16] (Microsoft Corporation) [Fichier non signé]
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213216 2018-10-15] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-21 20:07 - 2023-12-21 20:11 - 000020597 _____ C:\Users\Steven\Desktop\FRST.txt
2023-12-21 20:05 - 2023-12-21 20:10 - 000000000 ____D C:\FRST
2023-12-21 19:29 - 2023-12-21 19:29 - 002387456 _____ (Farbar) C:\Users\Steven\Desktop\FRST64.exe
2023-12-15 14:29 - 2023-12-15 14:29 - 000000000 ____D C:\Users\Steven\AppData\Local\ZHP
2023-12-15 00:26 - 2023-12-15 00:26 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 16:56 - 2023-12-13 16:56 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 15:02 - 2023-12-13 15:02 - 000000000 ___HD C:\$WinREAgent
2023-12-07 20:55 - 2023-12-07 20:56 - 000000000 ____D C:\AdwCleaner
2023-12-07 20:54 - 2023-12-07 20:55 - 008791352 _____ (Malwarebytes) C:\Users\Steven\Desktop\adwcleaner.exe
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-12-21 20:05 - 2018-01-27 12:41 - 000000000 ____D C:\Program Files\Opera
2023-12-21 19:52 - 2020-11-06 01:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-21 19:05 - 2020-06-11 14:58 - 000002402 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2023-12-21 19:05 - 2020-06-11 14:57 - 000000000 ____D C:\Users\Steven\AppData\Local\Vivaldi
2023-12-21 19:04 - 2020-06-11 14:58 - 000002365 _____ C:\Users\Steven\Desktop\Vivaldi.lnk
2023-12-21 17:31 - 2023-07-01 14:27 - 000004128 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1688217990
2023-12-21 17:31 - 2023-07-01 14:26 - 000000992 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2023-12-21 13:59 - 2020-06-11 14:59 - 000000527 _____ C:\Users\Steven\.vivaldi_reporting_data
2023-12-21 10:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-20 16:45 - 2023-07-01 14:27 - 000004314 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1688218028
2023-12-19 16:37 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-19 16:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-17 20:57 - 2022-11-22 10:44 - 000003014 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-17 20:57 - 2022-11-22 10:43 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-17 20:57 - 2022-11-22 10:40 - 000002316 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Steven
2023-12-17 20:55 - 2018-01-27 16:47 - 000000000 ____D C:\Program Files\CCleaner
2023-12-17 18:47 - 2020-11-06 01:48 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-17 18:47 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2023-12-17 18:47 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2023-12-17 18:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-16 09:37 - 2023-06-26 23:44 - 000002434 _____ C:\Users\Steven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-16 09:37 - 2021-12-13 14:16 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1653031444-1290640026-4248708408-1001
2023-12-16 09:37 - 2020-11-06 01:59 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1653031444-1290640026-4248708408-1001
2023-12-15 20:59 - 2020-06-23 14:38 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-15 17:12 - 2020-11-06 01:59 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-15 17:05 - 2021-12-17 13:27 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-15 14:50 - 2018-06-17 10:55 - 000000000 ____D C:\Users\Steven\AppData\Roaming\ZHP
2023-12-15 09:15 - 2018-01-27 12:21 - 000000000 ____D C:\Users\Steven\AppData\Local\Packages
2023-12-15 09:14 - 2018-01-27 12:21 - 000000000 __SHD C:\Users\Steven\IntelGraphicsProfiles
2023-12-15 09:12 - 2020-11-06 01:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-15 09:12 - 2016-08-22 23:52 - 000000000 ____D C:\Intel
2023-12-15 09:11 - 2020-11-06 01:29 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-15 00:34 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-15 00:31 - 2020-11-06 01:29 - 000726048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-15 00:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-15 00:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-15 00:26 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-13 17:12 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 17:11 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-13 17:11 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-13 16:56 - 2020-11-06 01:34 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-09 15:05 - 2023-05-26 09:48 - 000000000 ____D C:\Users\Steven\AppData\Local\Malwarebytes
2023-12-07 21:56 - 2019-08-28 16:19 - 000068962 _____ C:\Users\Steven\Desktop\Si le ciel offre une éclaircie.odt
2023-12-07 18:12 - 2018-05-27 01:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-07 17:26 - 2016-04-09 15:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-12-05 19:34 - 2020-11-06 01:36 - 000000000 ____D C:\Users\Steven
2023-11-24 22:29 - 2019-12-10 18:36 - 000000000 ____D C:\Users\Steven\AppData\Roaming\vlc
2023-11-24 22:04 - 2019-05-02 18:43 - 000000000 ___RD C:\Users\Steven\Desktop\Steven
2023-11-24 21:38 - 2021-10-22 09:04 - 000000000 ____D C:\Users\Steven\Desktop\Nouveau dossier
==================== Fichiers à la racine de certains dossiers ========
2020-10-14 22:25 - 2021-07-03 09:44 - 000000615 _____ () C:\Users\Steven\AppData\Local\oobelibMkey.log
2020-09-03 22:43 - 2020-09-03 22:43 - 000004035 _____ () C:\Users\Steven\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================