Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par Jess (administrateur) sur DESKTOP-GBA3E5I (Acer Aspire VN7-591G) (06-05-2024 21:08:59)
Exécuté depuis C:\Users\Jess\Desktop\FRST64.exe
Profils chargés: Jess
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ->) (Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <35>
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Impossible d'accéder au processus -> msedge.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16152792 2015-07-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1394392 2015-07-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [1659888 2021-11-04] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123166240 2023-10-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [HoldemManager.Server] => C:\Users\Jess\AppData\Roaming\Max Value Software\Holdem Manager\3.0\HoldemManager.Server.lnk [1220 2024-02-28] () [Fichier non signé]
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [MicrosoftEdgeAutoLaunch_543DCE2EBAC5426B3931C8C27BFE2EAF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.91\Installer\chrmstp.exe [2024-04-28] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02D3EAAC-0F0D-464F-A919-F13E18D1B603} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {67423A15-8DFF-48E7-9531-8E1D24DDE0CC} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{4CD76687-6938-48EC-A5FC-C1FC3D61875A} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {7169F355-2B0B-4F8C-BCBB-EAB16EE962B9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Pas de fichier)
Task: {DEEE8496-2972-4E48-AC7F-E4FC1AD7E060} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {90F0948C-466C-4D21-994B-D1E9380CAACA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}: [DhcpDomain] home
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\375646F6E616: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\65F4F4D2030393735353: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\65F4F4D22534E413639324: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\74F6F676C656023516C6F6E6E2B6C2: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\75966496D253E203D243030383: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\75966496D253E203D243030383: [DhcpDomain] home
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\D4168796D6560274575637470223E243: [DhcpNameServer] 192.168.101.1
Tcpip\..\Interfaces\{f7db4995-0843-45aa-a584-d243ab72f199}: [DhcpNameServer] 208.67.222.222 192.168.50.1
Edge:
=======
Edge Profile: C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-06]
Edge Extension: (Proxy VPN gratuit et bloqueur de publicités - Planet VPN) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eeebmbjgheefdiedpldnnmeaebkhhjfg [2023-12-17]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-30]
Edge Extension: (Edge relevant text changes) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (ZenMate VPN Gratuit – Meilleur VPN pour Edge) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kepdippgcikacmcdaijnponnfgljfbea [2023-12-25]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default [2024-05-06]
CHR DownloadDir: C:\Users\Jess\Desktop
CHR HomePage: Default -> hxxps://www.google.be/
CHR StartupUrls: Default -> "","hxxps://www.google.com/"
CHR Session Restore: Default -> est activé.
CHR Extension: (MindMeister) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2021-04-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-05-06]
CHR Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaeiblijfjekdanodkjadfinkhbfgcd [2024-04-28]
CHR Extension: (Meta Pixel Helper) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2024-03-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Eye Dropper) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2024-04-22]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2024-04-25]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2024-03-21]
CHR Extension: (MetaMask) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-01]
CHR Extension: (Connected Mind) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmkffmgahaepmhkhkblhopnpleeikokc [2021-04-01]
CHR Profile: C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-11-22] (EasyAntiCheat Oy -> Epic Games, Inc.)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-28] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-28] (Malwarebytes Inc. -> Malwarebytes)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2579840 2022-09-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12912936 2021-11-16] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [520288 2021-04-03] (Skutta, Kristjan -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2021-09-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [154112 2021-10-13] (Microsoft Corporation) [Fichier non signé]
S3 EasyAntiCheat_EOSSys; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.sys [18029376 2024-05-06] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-04-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [24064 2020-11-19] (Microsoft Corporation) [Fichier non signé]
S3 uvhid; C:\Windows\System32\drivers\uvhid.sys [28128 2020-04-21] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2021-11-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20936 2024-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [601376 2024-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 21:08 - 2024-05-06 21:10 - 000017071 _____ C:\Users\Jess\Desktop\FRST.txt
2024-05-06 21:08 - 2024-05-06 21:09 - 000000000 ____D C:\FRST
2024-05-06 21:08 - 2024-05-06 21:08 - 002394112 _____ (Farbar) C:\Users\Jess\Desktop\FRST64.exe
2024-05-06 20:54 - 2024-05-06 20:54 - 000027888 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_951299607101.dll
2024-05-06 20:39 - 2024-05-06 20:39 - 000027888 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_83770908561035.dll
2024-05-06 18:55 - 2024-05-06 18:55 - 000000132 _____ C:\Users\Jess\AppData\Roaming\Préférences Adobe PNG Format CC
2024-05-06 12:32 - 2024-05-06 12:34 - 000000000 ___HD C:\$WinREAgent
2024-05-01 05:06 - 2024-05-01 05:06 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-29 08:12 - 2024-04-29 08:12 - 017549840 _____ C:\Users\Jess\Downloads\Mockup cuisine (1).zip
2024-04-29 07:56 - 2024-04-29 07:56 - 014358407 _____ C:\Users\Jess\Downloads\Mockup cuisine.zip
2024-04-28 14:04 - 2024-04-28 14:06 - 000000044 _____ C:\Users\Jess\Desktop\Pokemon.txt
2024-04-28 13:19 - 2024-05-06 21:07 - 000000000 ____D C:\Users\Jess\AppData\Local\Malwarebytes
2024-04-28 13:19 - 2024-04-28 13:19 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-28 13:18 - 2024-04-28 13:18 - 002589624 _____ (Malwarebytes) C:\Users\Jess\Downloads\MBSetup.exe
2024-04-28 13:18 - 2024-04-28 13:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-28 13:18 - 2024-04-28 13:18 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-28 13:17 - 2024-04-28 13:17 - 008790880 _____ (Malwarebytes) C:\Users\Jess\Downloads\adwcleaner_8.4.2 (1).exe
2024-04-28 13:16 - 2024-04-28 13:17 - 000000000 ____D C:\AdwCleaner
2024-04-28 13:16 - 2024-04-28 13:16 - 008790880 _____ (Malwarebytes) C:\Users\Jess\Downloads\adwcleaner_8.4.2.exe
2024-04-24 14:55 - 2024-05-06 16:55 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Upscayl
2024-04-24 14:55 - 2024-04-25 16:15 - 000000000 ____D C:\Users\Jess\AppData\Local\upscayl-updater
2024-04-24 14:55 - 2024-04-24 14:55 - 000001894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upscayl.lnk
2024-04-24 14:54 - 2024-04-24 14:55 - 000000000 ____D C:\Program Files\Upscayl
2024-04-24 12:41 - 2024-04-30 17:43 - 000000034 _____ C:\Users\Jess\AppData\Roaming\AdobeWLCMCache.dat
2024-04-24 12:36 - 2024-04-24 12:36 - 000001830 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014 (32 Bit).lnk
2024-04-24 12:35 - 2024-04-24 12:35 - 000000000 ____D C:\ProgramData\ALM
2024-04-24 09:56 - 2024-04-24 09:56 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2024-04-24 09:55 - 2024-04-24 12:36 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2024-04-24 09:54 - 2024-04-24 09:54 - 000001277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC.lnk
2024-04-24 09:54 - 2024-04-24 09:54 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC (64 Bit).lnk
2024-04-24 09:50 - 2024-04-24 12:34 - 000001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2024-04-23 20:39 - 2024-04-23 20:39 - 000141059 _____ C:\Users\Jess\Desktop\Avis d'échéance Jessica Geyre.pdf
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Users\Jess\AppData\Roaming\High Motion Software
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Users\Jess\AppData\Local\BolideLog
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\High Motion Software
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Program Files\ImBatch
2024-04-13 14:05 - 2024-04-13 14:05 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-13 14:05 - 2024-04-13 14:05 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 21:06 - 2021-04-02 11:18 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2024-05-06 21:06 - 2021-04-01 19:17 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-05-06 21:06 - 2021-04-01 19:17 - 000000000 __SHD C:\Users\Jess\IntelGraphicsProfiles
2024-05-06 21:06 - 2021-04-01 19:15 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-06 21:06 - 2021-04-01 19:09 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-06 21:06 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-06 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-06 21:05 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-05-06 20:58 - 2021-04-03 18:15 - 000000000 ____D C:\Users\Jess\AppData\Local\ClassicShell
2024-05-06 20:57 - 2021-04-01 19:18 - 001771910 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-06 20:57 - 2019-12-07 16:49 - 000793254 _____ C:\Windows\system32\perfh00C.dat
2024-05-06 20:57 - 2019-12-07 16:49 - 000150384 _____ C:\Windows\system32\perfc00C.dat
2024-05-06 20:57 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-05-06 20:55 - 2021-04-03 18:33 - 000000000 ____D C:\Program Files (x86)\Steam
2024-05-06 20:54 - 2021-12-21 10:30 - 000000000 ____D C:\Users\Jess\AppData\Roaming\EasyAntiCheat
2024-05-06 20:02 - 2021-04-03 18:35 - 000000000 ____D C:\Users\Jess\AppData\Local\Steam
2024-05-06 20:00 - 2021-04-03 18:17 - 000000000 ____D C:\Users\Jess\AppData\Roaming\discord
2024-05-06 19:56 - 2020-11-19 00:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-06 19:21 - 2024-03-18 13:08 - 000000000 ____D C:\Users\Jess\Desktop\Etsy
2024-05-06 19:06 - 2021-11-22 12:51 - 000000000 ____D C:\Users\Jess\AppData\Local\Discord
2024-05-06 14:33 - 2021-04-25 17:14 - 000000000 ____D C:\Users\Jess\AppData\Local\PokerStars.BE
2024-05-06 12:54 - 2020-11-19 01:32 - 000000000 ____D C:\ProgramData\Packages
2024-05-06 12:54 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-06 12:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-05-06 12:40 - 2021-04-02 09:40 - 000000000 ____D C:\Users\Jess\AppData\Local\CrashDumps
2024-05-06 12:37 - 2021-04-16 03:14 - 000000000 ____D C:\Users\Jess\AppData\Local\Notepad
2024-05-06 12:35 - 2021-04-01 19:28 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-05-06 12:35 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-05-06 12:34 - 2022-10-13 08:53 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-06 12:33 - 2020-11-19 01:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-01 05:11 - 2021-12-20 23:04 - 000000000 ____D C:\Windows\SystemTemp
2024-05-01 05:06 - 2021-04-01 19:21 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-30 16:19 - 2021-04-01 22:46 - 000000000 ____D C:\Users\Jess\AppData\Local\D3DSCache
2024-04-29 10:35 - 2021-04-01 19:29 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Microsoft\Word
2024-04-28 20:25 - 2020-11-19 00:28 - 005295248 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-28 20:24 - 2021-04-01 19:44 - 000000000 ____D C:\Users\Jess\AppData\Local\ElevatedDiagnostics
2024-04-28 15:32 - 2021-11-20 23:56 - 000000000 ____D C:\Users\Jess\AppData\Roaming\ZHP
2024-04-28 13:30 - 2021-04-01 19:39 - 000000000 ____D C:\Users\Jess\Desktop\Jess
2024-04-28 13:19 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-04-28 12:27 - 2021-12-12 18:39 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2649728889-4078409955-3386602191-1001
2024-04-28 12:27 - 2021-04-01 19:15 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2649728889-4078409955-3386602191-1001
2024-04-28 12:27 - 2021-04-01 19:13 - 000002418 _____ C:\Users\Jess\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-25 16:28 - 2021-11-20 23:56 - 000000000 ____D C:\Users\Jess\AppData\Local\ZHP
2024-04-24 12:42 - 2021-04-01 19:14 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Adobe
2024-04-24 12:37 - 2021-04-01 19:26 - 000000000 ____D C:\Users\Jess\AppData\Local\Adobe
2024-04-24 12:35 - 2021-04-01 19:28 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-04-24 09:58 - 2021-11-24 10:59 - 000000000 ____D C:\Program Files\Adobe
2024-04-24 09:55 - 2021-04-01 19:27 - 000000000 ____D C:\ProgramData\Adobe
2024-04-24 09:54 - 2021-11-24 10:58 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-17 13:38 - 2023-12-25 19:55 - 000000000 ____D C:\Users\Jess\AppData\Roaming\.ggtmp
2024-04-14 03:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-13 17:48 - 2021-04-01 19:14 - 000000000 ____D C:\Users\Jess\AppData\Local\Packages
2024-04-13 17:48 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-13 17:43 - 2023-12-16 00:38 - 000000000 ____D C:\Windows\InboxApps
2024-04-13 17:43 - 2021-04-01 19:18 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-13 14:05 - 2020-11-19 01:31 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-13 13:57 - 2021-04-01 19:21 - 000000000 ____D C:\Windows\system32\MRT
2024-04-13 13:53 - 2021-04-01 19:21 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-13 12:55 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2024-04-24 12:41 - 2024-04-30 17:43 - 000000034 _____ () C:\Users\Jess\AppData\Roaming\AdobeWLCMCache.dat
2024-05-06 18:55 - 2024-05-06 18:55 - 000000132 _____ () C:\Users\Jess\AppData\Roaming\Préférences Adobe PNG Format CC
2024-02-28 02:17 - 2024-02-28 02:17 - 000005824 _____ () C:\Users\Jess\AppData\Roaming\Microsoft\83b968be-efe4-4a91-894a-ec489147e1aa
2021-11-02 17:42 - 2022-05-11 15:02 - 000002557 _____ () C:\Users\Jess\AppData\Local\krita-sysinfo.log
2021-11-02 17:42 - 2022-05-11 15:02 - 000001654 _____ () C:\Users\Jess\AppData\Local\krita.log
2022-05-11 15:02 - 2022-05-11 15:02 - 000000039 _____ () C:\Users\Jess\AppData\Local\kritadisplayrc
2021-11-02 17:42 - 2022-05-11 15:02 - 000016397 _____ () C:\Users\Jess\AppData\Local\kritarc
2022-10-10 14:24 - 2022-10-10 14:24 - 000007642 _____ () C:\Users\Jess\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Jess (administrateur) sur DESKTOP-GBA3E5I (Acer Aspire VN7-591G) (06-05-2024 21:08:59)
Exécuté depuis C:\Users\Jess\Desktop\FRST64.exe
Profils chargés: Jess
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ->) (Fortemedia Inc. -> ) C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <35>
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Skutta, Kristjan -> ) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Impossible d'accéder au processus -> msedge.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16152792 2015-07-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1394392 2015-07-14] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HuionTablet] => C:\Program Files\HuionTablet\HuionTablet.exe [1659888 2021-11-04] (Shenzhen Huion Animation Technology Co.,LTD -> ShenZhen Huion Animation Technology Co.Ltd.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123166240 2023-10-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [HoldemManager.Server] => C:\Users\Jess\AppData\Roaming\Max Value Software\Holdem Manager\3.0\HoldemManager.Server.lnk [1220 2024-02-28] () [Fichier non signé]
HKU\S-1-5-21-2649728889-4078409955-3386602191-1001\...\Run: [MicrosoftEdgeAutoLaunch_543DCE2EBAC5426B3931C8C27BFE2EAF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.91\Installer\chrmstp.exe [2024-04-28] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02D3EAAC-0F0D-464F-A919-F13E18D1B603} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {67423A15-8DFF-48E7-9531-8E1D24DDE0CC} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{4CD76687-6938-48EC-A5FC-C1FC3D61875A} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {7169F355-2B0B-4F8C-BCBB-EAB16EE962B9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => %ProgramFiles%\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Pas de fichier)
Task: {DEEE8496-2972-4E48-AC7F-E4FC1AD7E060} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {90F0948C-466C-4D21-994B-D1E9380CAACA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}: [DhcpDomain] home
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\375646F6E616: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\65F4F4D2030393735353: [DhcpNameServer] 62.197.111.140 109.88.203.3
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\65F4F4D22534E413639324: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\74F6F676C656023516C6F6E6E2B6C2: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\75966496D253E203D243030383: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\75966496D253E203D243030383: [DhcpDomain] home
Tcpip\..\Interfaces\{c1524287-d1e3-46e5-a70b-f7d6edc12e48}\D4168796D6560274575637470223E243: [DhcpNameServer] 192.168.101.1
Tcpip\..\Interfaces\{f7db4995-0843-45aa-a584-d243ab72f199}: [DhcpNameServer] 208.67.222.222 192.168.50.1
Edge:
=======
Edge Profile: C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-06]
Edge Extension: (Proxy VPN gratuit et bloqueur de publicités - Planet VPN) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eeebmbjgheefdiedpldnnmeaebkhhjfg [2023-12-17]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-30]
Edge Extension: (Edge relevant text changes) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-29]
Edge Extension: (ZenMate VPN Gratuit – Meilleur VPN pour Edge) - C:\Users\Jess\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kepdippgcikacmcdaijnponnfgljfbea [2023-12-25]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default [2024-05-06]
CHR DownloadDir: C:\Users\Jess\Desktop
CHR HomePage: Default -> hxxps://www.google.be/
CHR StartupUrls: Default -> "","hxxps://www.google.com/"
CHR Session Restore: Default -> est activé.
CHR Extension: (MindMeister) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2021-04-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-05-06]
CHR Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaeiblijfjekdanodkjadfinkhbfgcd [2024-04-28]
CHR Extension: (Meta Pixel Helper) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2024-03-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21]
CHR Extension: (Eye Dropper) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2024-04-22]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2024-04-25]
CHR Extension: (Lightshot (outil de capture d’écran)) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2024-03-21]
CHR Extension: (MetaMask) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2024-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-01]
CHR Extension: (Connected Mind) - C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmkffmgahaepmhkhkblhopnpleeikokc [2021-04-01]
CHR Profile: C:\Users\Jess\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-07]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-30] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2023-11-22] (EasyAntiCheat Oy -> Epic Games, Inc.)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8887264 2024-04-28] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-28] (Malwarebytes Inc. -> Malwarebytes)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2579840 2022-09-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12912936 2021-11-16] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [520288 2021-04-03] (Skutta, Kristjan -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_9d24232ad555eeec\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2021-09-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [154112 2021-10-13] (Microsoft Corporation) [Fichier non signé]
S3 EasyAntiCheat_EOSSys; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.sys [18029376 2024-05-06] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-04-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [24064 2020-11-19] (Microsoft Corporation) [Fichier non signé]
S3 uvhid; C:\Windows\System32\drivers\uvhid.sys [28128 2020-04-21] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
R3 vmulti; C:\Windows\System32\drivers\vmulti.sys [10752 2021-11-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 VOICEMOD_Driver; C:\Windows\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20936 2024-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [601376 2024-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 21:08 - 2024-05-06 21:10 - 000017071 _____ C:\Users\Jess\Desktop\FRST.txt
2024-05-06 21:08 - 2024-05-06 21:09 - 000000000 ____D C:\FRST
2024-05-06 21:08 - 2024-05-06 21:08 - 002394112 _____ (Farbar) C:\Users\Jess\Desktop\FRST64.exe
2024-05-06 20:54 - 2024-05-06 20:54 - 000027888 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_951299607101.dll
2024-05-06 20:39 - 2024-05-06 20:39 - 000027888 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_83770908561035.dll
2024-05-06 18:55 - 2024-05-06 18:55 - 000000132 _____ C:\Users\Jess\AppData\Roaming\Préférences Adobe PNG Format CC
2024-05-06 12:32 - 2024-05-06 12:34 - 000000000 ___HD C:\$WinREAgent
2024-05-01 05:06 - 2024-05-01 05:06 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-29 08:12 - 2024-04-29 08:12 - 017549840 _____ C:\Users\Jess\Downloads\Mockup cuisine (1).zip
2024-04-29 07:56 - 2024-04-29 07:56 - 014358407 _____ C:\Users\Jess\Downloads\Mockup cuisine.zip
2024-04-28 14:04 - 2024-04-28 14:06 - 000000044 _____ C:\Users\Jess\Desktop\Pokemon.txt
2024-04-28 13:19 - 2024-05-06 21:07 - 000000000 ____D C:\Users\Jess\AppData\Local\Malwarebytes
2024-04-28 13:19 - 2024-04-28 13:19 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-28 13:18 - 2024-04-28 13:18 - 002589624 _____ (Malwarebytes) C:\Users\Jess\Downloads\MBSetup.exe
2024-04-28 13:18 - 2024-04-28 13:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-28 13:18 - 2024-04-28 13:18 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-28 13:17 - 2024-04-28 13:17 - 008790880 _____ (Malwarebytes) C:\Users\Jess\Downloads\adwcleaner_8.4.2 (1).exe
2024-04-28 13:16 - 2024-04-28 13:17 - 000000000 ____D C:\AdwCleaner
2024-04-28 13:16 - 2024-04-28 13:16 - 008790880 _____ (Malwarebytes) C:\Users\Jess\Downloads\adwcleaner_8.4.2.exe
2024-04-24 14:55 - 2024-05-06 16:55 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Upscayl
2024-04-24 14:55 - 2024-04-25 16:15 - 000000000 ____D C:\Users\Jess\AppData\Local\upscayl-updater
2024-04-24 14:55 - 2024-04-24 14:55 - 000001894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upscayl.lnk
2024-04-24 14:54 - 2024-04-24 14:55 - 000000000 ____D C:\Program Files\Upscayl
2024-04-24 12:41 - 2024-04-30 17:43 - 000000034 _____ C:\Users\Jess\AppData\Roaming\AdobeWLCMCache.dat
2024-04-24 12:36 - 2024-04-24 12:36 - 000001830 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014 (32 Bit).lnk
2024-04-24 12:35 - 2024-04-24 12:35 - 000000000 ____D C:\ProgramData\ALM
2024-04-24 09:56 - 2024-04-24 09:56 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2024-04-24 09:55 - 2024-04-24 12:36 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2024-04-24 09:54 - 2024-04-24 09:54 - 000001277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC.lnk
2024-04-24 09:54 - 2024-04-24 09:54 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC (64 Bit).lnk
2024-04-24 09:50 - 2024-04-24 12:34 - 000001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2024-04-23 20:39 - 2024-04-23 20:39 - 000141059 _____ C:\Users\Jess\Desktop\Avis d'échéance Jessica Geyre.pdf
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Users\Jess\AppData\Roaming\High Motion Software
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Users\Jess\AppData\Local\BolideLog
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\High Motion Software
2024-04-22 21:38 - 2024-04-22 21:38 - 000000000 ____D C:\Program Files\ImBatch
2024-04-13 14:05 - 2024-04-13 14:05 - 000020861 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-13 14:05 - 2024-04-13 14:05 - 000020861 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-06 21:06 - 2021-04-02 11:18 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2024-05-06 21:06 - 2021-04-01 19:17 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-05-06 21:06 - 2021-04-01 19:17 - 000000000 __SHD C:\Users\Jess\IntelGraphicsProfiles
2024-05-06 21:06 - 2021-04-01 19:15 - 000000000 ____D C:\ProgramData\NVIDIA
2024-05-06 21:06 - 2021-04-01 19:09 - 000008192 ___SH C:\DumpStack.log.tmp
2024-05-06 21:06 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-06 21:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-06 21:05 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-05-06 20:58 - 2021-04-03 18:15 - 000000000 ____D C:\Users\Jess\AppData\Local\ClassicShell
2024-05-06 20:57 - 2021-04-01 19:18 - 001771910 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-06 20:57 - 2019-12-07 16:49 - 000793254 _____ C:\Windows\system32\perfh00C.dat
2024-05-06 20:57 - 2019-12-07 16:49 - 000150384 _____ C:\Windows\system32\perfc00C.dat
2024-05-06 20:57 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2024-05-06 20:55 - 2021-04-03 18:33 - 000000000 ____D C:\Program Files (x86)\Steam
2024-05-06 20:54 - 2021-12-21 10:30 - 000000000 ____D C:\Users\Jess\AppData\Roaming\EasyAntiCheat
2024-05-06 20:02 - 2021-04-03 18:35 - 000000000 ____D C:\Users\Jess\AppData\Local\Steam
2024-05-06 20:00 - 2021-04-03 18:17 - 000000000 ____D C:\Users\Jess\AppData\Roaming\discord
2024-05-06 19:56 - 2020-11-19 00:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-06 19:21 - 2024-03-18 13:08 - 000000000 ____D C:\Users\Jess\Desktop\Etsy
2024-05-06 19:06 - 2021-11-22 12:51 - 000000000 ____D C:\Users\Jess\AppData\Local\Discord
2024-05-06 14:33 - 2021-04-25 17:14 - 000000000 ____D C:\Users\Jess\AppData\Local\PokerStars.BE
2024-05-06 12:54 - 2020-11-19 01:32 - 000000000 ____D C:\ProgramData\Packages
2024-05-06 12:54 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-06 12:54 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2024-05-06 12:40 - 2021-04-02 09:40 - 000000000 ____D C:\Users\Jess\AppData\Local\CrashDumps
2024-05-06 12:37 - 2021-04-16 03:14 - 000000000 ____D C:\Users\Jess\AppData\Local\Notepad
2024-05-06 12:35 - 2021-04-01 19:28 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-05-06 12:35 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2024-05-06 12:34 - 2022-10-13 08:53 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-05-06 12:33 - 2020-11-19 01:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-01 05:11 - 2021-12-20 23:04 - 000000000 ____D C:\Windows\SystemTemp
2024-05-01 05:06 - 2021-04-01 19:21 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-30 16:19 - 2021-04-01 22:46 - 000000000 ____D C:\Users\Jess\AppData\Local\D3DSCache
2024-04-29 10:35 - 2021-04-01 19:29 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Microsoft\Word
2024-04-28 20:25 - 2020-11-19 00:28 - 005295248 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-28 20:24 - 2021-04-01 19:44 - 000000000 ____D C:\Users\Jess\AppData\Local\ElevatedDiagnostics
2024-04-28 15:32 - 2021-11-20 23:56 - 000000000 ____D C:\Users\Jess\AppData\Roaming\ZHP
2024-04-28 13:30 - 2021-04-01 19:39 - 000000000 ____D C:\Users\Jess\Desktop\Jess
2024-04-28 13:19 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2024-04-28 12:27 - 2021-12-12 18:39 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2649728889-4078409955-3386602191-1001
2024-04-28 12:27 - 2021-04-01 19:15 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2649728889-4078409955-3386602191-1001
2024-04-28 12:27 - 2021-04-01 19:13 - 000002418 _____ C:\Users\Jess\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-25 16:28 - 2021-11-20 23:56 - 000000000 ____D C:\Users\Jess\AppData\Local\ZHP
2024-04-24 12:42 - 2021-04-01 19:14 - 000000000 ____D C:\Users\Jess\AppData\Roaming\Adobe
2024-04-24 12:37 - 2021-04-01 19:26 - 000000000 ____D C:\Users\Jess\AppData\Local\Adobe
2024-04-24 12:35 - 2021-04-01 19:28 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-04-24 09:58 - 2021-11-24 10:59 - 000000000 ____D C:\Program Files\Adobe
2024-04-24 09:55 - 2021-04-01 19:27 - 000000000 ____D C:\ProgramData\Adobe
2024-04-24 09:54 - 2021-11-24 10:58 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-17 13:38 - 2023-12-25 19:55 - 000000000 ____D C:\Users\Jess\AppData\Roaming\.ggtmp
2024-04-14 03:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat
2024-04-13 17:48 - 2021-04-01 19:14 - 000000000 ____D C:\Users\Jess\AppData\Local\Packages
2024-04-13 17:48 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-13 17:43 - 2023-12-16 00:38 - 000000000 ____D C:\Windows\InboxApps
2024-04-13 17:43 - 2021-04-01 19:18 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2024-04-13 17:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2024-04-13 14:05 - 2020-11-19 01:31 - 003017216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-13 13:57 - 2021-04-01 19:21 - 000000000 ____D C:\Windows\system32\MRT
2024-04-13 13:53 - 2021-04-01 19:21 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-13 12:55 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Fichiers à la racine de certains dossiers ========
2024-04-24 12:41 - 2024-04-30 17:43 - 000000034 _____ () C:\Users\Jess\AppData\Roaming\AdobeWLCMCache.dat
2024-05-06 18:55 - 2024-05-06 18:55 - 000000132 _____ () C:\Users\Jess\AppData\Roaming\Préférences Adobe PNG Format CC
2024-02-28 02:17 - 2024-02-28 02:17 - 000005824 _____ () C:\Users\Jess\AppData\Roaming\Microsoft\83b968be-efe4-4a91-894a-ec489147e1aa
2021-11-02 17:42 - 2022-05-11 15:02 - 000002557 _____ () C:\Users\Jess\AppData\Local\krita-sysinfo.log
2021-11-02 17:42 - 2022-05-11 15:02 - 000001654 _____ () C:\Users\Jess\AppData\Local\krita.log
2022-05-11 15:02 - 2022-05-11 15:02 - 000000039 _____ () C:\Users\Jess\AppData\Local\kritadisplayrc
2021-11-02 17:42 - 2022-05-11 15:02 - 000016397 _____ () C:\Users\Jess\AppData\Local\kritarc
2022-10-10 14:24 - 2022-10-10 14:24 - 000007642 _____ () C:\Users\Jess\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================