Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-12-2022 Exécuté par ACCUEIL (administrateur) sur Z240-ACCUEIL (HP HP Z240 SFF Workstation) (21-12-2022 16:11:30) Exécuté depuis C:\Users\Neoloc\Desktop Profils chargés: ACCUEIL Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.2364 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe ->) (Shenzhen iMyFone Technology Co., Ltd -> ) C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\MFResident.exe (C:\Program Files (x86)\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Common Files\EFI\EFI Measurement Service\EFIMeasurementService.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) C:\Program Files\Common Files\EFI\EFI Measurement Service\EFIMeasurementServer.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (C:\Program Files\EFI\EFILM\lmgrd.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) C:\Program Files\EFI\EFILM\EFI.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\Program Files\RealVNC\VNC Server\vncserver.exe ->) (RealVNC Ltd -> RealVNC) C:\Program Files\RealVNC\VNC Server\vncagent.exe (C:\Program Files\RealVNC\VNC Server\vncserver.exe ->) (RealVNC Ltd -> RealVNC) C:\Program Files\RealVNC\VNC Server\vncserverui.exe (C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt\app\Messenger.exe ->) (Meta) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt\app\CrashpadHandlerWindows.exe (DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\igfxEM.exe (explorer.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> ) C:\Program Files\Fiery\Fiery Hot Folders\HFSysTrayIcon.exe (explorer.exe ->) (La Poste SA -> Colissimo) C:\Users\Neoloc\AppData\Local\Programs\Module ColiShip\Module ColiShip.exe <3> (explorer.exe ->) (Meta) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt\app\Messenger.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <24> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> ) C:\Program Files\Fiery\Components\FieryHealthMonitor\nats_service\EFI_nats_service.exe (services.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Electronics For Imaging) C:\Program Files\Fiery\Fiery Hot Folders\HFService.exe (services.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) C:\Program Files\Common Files\EFI\EFI Measurement Service\EFIMeasurementService.exe (services.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) C:\Program Files\EFI\OFAPIC\ofaApp.exe (services.exe ->) (EFI Software (Electronics for Imaging, Inc.) -> Flexera) C:\Program Files\EFI\EFILM\lmgrd.exe <2> (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_36d4ece3684bf28d\RstMwService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\5.4.105.0\McCSPServiceHost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <3> (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_22_7\mcapexe.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (RealVNC Ltd -> RealVNC) C:\Program Files\RealVNC\VNC Server\vncserver.exe (services.exe ->) (Shenzhen iMyFone Technology Co., Ltd -> ) C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe (services.exe ->) (TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MQS\QcShm.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-03-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\UniConverter\WSVCUUpdateHelper.exe [34736 2020-07-24] (Wondershare Technology Co.,Ltd -> ) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5237416 2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-10-10] (Adobe Inc. -> ) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3617877798-3153765377-381886264-1000\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3617877798-3153765377-381886264-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3617877798-3153765377-381886264-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3617877798-3153765377-381886264-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Neoloc\AppData\Local\WebEx\WebexHost.exe [8013000 2022-10-27] (Cisco WebEx LLC -> Cisco Webex LLC) HKU\S-1-5-21-3617877798-3153765377-381886264-1001\...\Run: [Module ColiShip] => C:\Users\Neoloc\AppData\Local\Programs\Module ColiShip\Module ColiShip.exe [49891168 2022-09-19] (La Poste SA -> Colissimo) HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109080 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65496 2021-02-25] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\MONVNC: C:\Windows\system32\VNCpm.dll [37704 2021-01-20] (RealVNC Ltd -> RealVNC Ltd) HKLM\...\Print\Monitors\pdfcmon: pdfcmon.dll (Pas de fichier) HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\108.0.19667.127\Installer\chrmstp.exe [2022-12-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe [2022-12-15] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Fiery Command WorkStation.lnk [2022-02-18] ShortcutTarget: Fiery Command WorkStation.lnk -> C:\Program Files\Fiery\Fiery Command WorkStation\Fiery Command WorkStation.exe (EFI Software (Electronics for Imaging, Inc.) -> Electronics For Imaging, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hot Folders Server.lnk [2022-02-18] ShortcutTarget: Hot Folders Server.lnk -> C:\Program Files\Fiery\Fiery Hot Folders\hotfolder.exe (EFI Software (Electronics for Imaging, Inc.) -> ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hot Folders Tray Icon.lnk [2022-02-18] ShortcutTarget: Hot Folders Tray Icon.lnk -> C:\Program Files\Fiery\Fiery Hot Folders\HFSysTrayIcon.exe (EFI Software (Electronics for Imaging, Inc.) -> ) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {04290FDB-CED3-424A-AD87-9D7EC3E46584} - System32\Tasks\FPDUDaily => C:\Program Files (x86)\FPDU\Fiery Driver Updater.exe [9496535 2016-08-30] (Electronics For Imaging, Inc.) [Fichier non signé] Task: {0BFDBC1A-1FDC-494A-AB47-C629A917C7C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.) Task: {0C991CEF-ADA0-40F0-B810-4CDF43AEFCAF} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3617877798-3153765377-381886264-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189072 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {19991072-BC8F-4EC4-8614-1D25B1F9FE8D} - System32\Tasks\CCleanerSkipUAC - ACCUEIL => C:\Program Files\CCleaner\CCleaner.exe [32602448 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {257C5941-3B3C-4352-966F-A2011427006D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {280A1762-73E6-48CF-8417-CE61098A4D6E} - System32\Tasks\CWS Analytics => C:\Program Files\Common Files\EFI\efiLINQ\efiLINQ.exe [3954808 2021-08-28] (EFI Software (Electronics for Imaging, Inc.) -> Electronics For Imaging, Inc.) Task: {29163994-1651-43B6-8E8C-3B363D60BF7A} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3256272 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) Task: {32EB4E30-0BE0-4287-9F69-CC81A1AE013B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "cd72b655-e50c-4b6c-8e01-1a6220bcb3b5" --version "6.07.10191" --silent Task: {37675470-326C-4D09-B9F2-C5361DCBCDA8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {383517FC-982B-4D46-825D-71F89D03D32C} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) Task: {45BB2108-5CDC-4D11-A5B7-61C3DCB570B8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-12-09] (Piriform Software Ltd -> Piriform) Task: {4AADC9F7-FAB2-42BD-8D5B-8087F7A0B85D} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [932376 2022-10-13] (McAfee, LLC -> McAfee, LLC) Task: {4E9083D1-EFE3-41CF-B2A9-CDFA9480E2A1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144344 2022-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {6B5DFEA9-DA7D-48D1-BD68-2894F9AF411E} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3617877798-3153765377-381886264-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2149112 2022-12-19] (Facebook, Inc. -> Meta Platforms, Inc.) Task: {773AAF60-B81A-4791-A40C-673263F5FF19} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) Task: {7938C861-5922-4240-94E0-216AA35542D6} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier) Task: {8722F6B9-EECE-44A7-B9D0-A6E8794E4908} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [768288 2022-03-24] (McAfee, LLC -> McAfee, LLC) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" a été déverrouillé. <==== ATTENTION Task: {8D44FE88-3A9F-4206-92BC-C1EB1DB4BEBF} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [932376 2022-10-13] (McAfee, LLC -> McAfee, LLC) Task: {A2CB6E85-FE01-43C4-B235-956A8C03D5EF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.) Task: {A2F94E5B-6617-45A3-B928-E2DB836D3F9F} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4092968 2022-09-08] (McAfee, LLC -> McAfee, LLC) Task: {A9778985-7172-4457-8E75-B4F91AAA8243} - System32\Tasks\Fiery Software Manager => C:\Program Files\Fiery\Fiery Software Manager\Fiery Software Manager.exe [21483920 2022-03-04] (EFI Software (Electronics for Imaging, Inc.) -> ) Task: {ABCCE345-CFC4-4925-A1CB-2BFE6AB97195} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.12.663\mcdatrep.exe [1889696 2021-01-07] (McAfee, Inc. -> McAfee, LLC.) Task: {AEA41B83-04E9-410D-8F53-148057F12997} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189072 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {B2559C54-D024-4092-A6C5-135FB8462E16} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [146816 2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Task: {C326A92F-E5A4-43F8-AD01-0E886B8294CA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144344 2022-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {CCBE065F-3145-482B-9E27-085C3BE73952} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {CFA83D61-5173-4E52-B220-CABD1C870597} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3256272 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) Task: {E290AA21-1C81-4218-BDCB-25042CC19D3F} - System32\Tasks\xxasy => C:\ProgramData\HGX\HGX.vbs (Pas de fichier) Task: {E2AF4F3C-6C2A-4922-9F35-EA753BAD28EB} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3617877798-3153765377-381886264-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189072 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {E754306E-D00E-494E-8DB0-CBAF338AD8BB} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {ED2A3704-1232-46DD-8507-B6C472F7515C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26308584 2022-12-19] (Microsoft Corporation -> Microsoft Corporation) Task: {F1BDDF3E-4AE9-41CD-A8E3-CA1ADAAC6AB3} - System32\Tasks\{55A6EB8A-E7C0-4CFB-9239-3C969336BC1B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe" -d "C:\Program Files (x86)\Overwatch" (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 178.255.160.92 178.255.160.94 Tcpip\..\Interfaces\{7345a9d3-a125-4585-965f-5a672526bfe0}: [DhcpNameServer] 178.255.160.92 178.255.160.94 Tcpip\..\Interfaces\{96935324-026d-438c-9a1a-2385df994469}: [DhcpNameServer] 192.168.42.129 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Neoloc\AppData\Local\Microsoft\Edge\User Data\cId=128000000001363769&path= [2022-12-21] <==== ATTENTION Edge Profile: C:\Users\Neoloc\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-21] Edge HomePage: Default -> about:blank FireFox: ======== FF DefaultProfile: v9ic0wau.default FF ProfilePath: C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default [2022-12-21] FF Session Restore: Mozilla\Firefox\Profiles\v9ic0wau.default -> est activé. FF Notifications: Mozilla\Firefox\Profiles\v9ic0wau.default -> hxxps://www.checkmytrip.com FF Extension: (Hoxx VPN Proxy) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\@hoxx-vpn.xpi [2022-11-30] FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\@setupvpncom.xpi [2022-12-16] FF Extension: (Enhancer for YouTube™) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-12-09] FF Extension: (Folx) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\folx5@eltima.com.xpi [2021-05-17] FF Extension: (To Google Translate) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-23] FF Extension: (English (GB) Language Pack) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2022-12-16] FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\marcoagpinto@mail.telepac.pt.xpi [2022-12-01] FF Extension: (Nimbus Screen Capture: Screenshots, Annotate) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\nimbusscreencaptureff@everhelper.me.xpi [2020-08-11] FF Extension: (SaveItOffline) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\saveitoffline@mozext.com.xpi [2019-05-02] FF Extension: (uBlock Origin) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\uBlock0@raymondhill.net.xpi [2022-11-21] FF Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2022-12-21] FF Extension: (Video DownloadHelper) - C:\Users\Neoloc\AppData\Roaming\Mozilla\Firefox\Profiles\v9ic0wau.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-12-09] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-24] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2022-10-19] (McAfee, LLC -> ) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1228198.dll [2017-02-27] (Adobe Systems, Inc.) [Fichier non signé] FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2022-10-19] (McAfee, LLC -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default [2022-12-21] CHR HomePage: Default -> hxxps://www.google.fr/ CHR StartupUrls: Default -> "hxxps://www.google.fr/","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://fr.search.yahoo.com/?type=407453&fr=yo-yhp-ch","hxxps://www.google.com/","hxxp://www.yahoo.com/" CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E211FR1311G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Dropbox pour Gmail) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-09-02] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-11-24] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-11-24] CHR Extension: (Google Docs hors connexion) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-09] CHR Extension: (WhatFont) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2019-05-06] CHR Extension: (Google Maps) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-05-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-08] CHR Profile: C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-21] CHR Profile: C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-12-21] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-23] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-06-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-06] CHR Profile: C:\Users\Neoloc\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-21] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.) S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\108.0.19667.127\elevation_service.exe [1794056 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-13] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12540928 2022-12-19] (Microsoft Corporation -> Microsoft Corporation) R2 EFI License Manager; C:\Program Files\EFI\EFILM\lmgrd.exe [1202920 2021-10-11] (EFI Software (Electronics for Imaging, Inc.) -> Flexera) R2 EFI Measurement Service; C:\Program Files\Common Files\EFI\EFI Measurement Service\EFIMeasurementService.exe [34056 2021-10-08] (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) R2 EFI Nats Service; C:\Program Files\Fiery\Components\FieryHealthMonitor\nats_service\EFI_nats_service.exe [13325056 2021-08-05] (EFI Software (Electronics for Imaging, Inc.) -> ) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncHelper.exe [3478928 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) S3 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 HFServiceLaunchAgent; C:\Program Files\Fiery\Fiery Hot Folders\HFService.exe [52976 2022-01-03] (EFI Software (Electronics for Imaging, Inc.) -> Electronics For Imaging) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8892256 2022-12-21] (Malwarebytes Inc. -> Malwarebytes) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [849744 2022-12-09] (McAfee, LLC -> McAfee, LLC) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_7\McApExe.exe [816696 2022-10-17] (McAfee, LLC -> McAfee, LLC) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.4.105.0\\McCSPServiceHost.exe [3379584 ] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC) R2 MFLocalService; C:\Program Files (x86)\Common Files\iMyFone\Components\Resident\LocalService.exe [54664 2022-04-28] (Shenzhen iMyFone Technology Co., Ltd -> ) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1571608 2022-10-09] (McAfee, LLC -> McAfee, LLC) R2 ofaApp; C:\Program Files\EFI\OFAPIC\ofaApp.exe [4682472 2021-10-19] (EFI Software (Electronics for Imaging, Inc.) -> Electronics for Imaging, Inc.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.238.1114.0002\OneDriveUpdaterService.exe [3845008 2022-12-15] (Microsoft Corporation -> Microsoft Corporation) R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4248712 2022-10-14] (McAfee, LLC -> McAfee, LLC) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH) R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253912 2019-10-30] (Synology Inc. -> ) R2 vncserver; C:\Program Files\RealVNC\VNC Server\vncserver.exe [7537408 2022-09-15] (RealVNC Ltd -> RealVNC) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare) S3 WsDrvInst; C:\Program Files\Wondershare\UniConverter\Transfer\DriverInstall.exe [112560 2020-07-24] (Wondershare Technology Co.,Ltd -> Wondershare) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77888 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr64.sys [37112 2015-06-17] (Hewlett-Packard Company -> Hewlett-Packard Company) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [476224 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349760 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [84440 2022-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Trellix US LLC.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [445504 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [920128 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [665424 2022-07-07] (Musarubra US LLC -> Trellix US LLC.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [119632 2022-07-07] (Musarubra US LLC -> Trellix US LLC.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [112712 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [234584 2022-09-15] (Musarubra US LLC -> Trellix US LLC.) S3 mt7612US; C:\WINDOWS\System32\drivers\mt7612US.sys [377864 2015-12-09] (Windows Central Build Account - X -> MediaTek Inc.) S3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) S3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> ) S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-12-10] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; pas de ImagePath U3 avgbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-12-21 16:11 - 2022-12-21 16:13 - 000043523 _____ C:\Users\Neoloc\Desktop\FRST.txt 2022-12-21 16:10 - 2022-12-21 16:13 - 000000000 ____D C:\FRST 2022-12-21 16:10 - 2022-12-21 16:10 - 002375680 _____ (Farbar) C:\Users\Neoloc\Desktop\FRST64.exe 2022-12-21 13:38 - 2022-12-21 13:38 - 000445704 _____ C:\Users\Neoloc\Desktop\ZHPDiag.txt 2022-12-21 13:04 - 2022-12-21 13:06 - 000000908 _____ C:\Users\Neoloc\Desktop\ZHPSuite.lnk 2022-12-21 12:42 - 2022-12-21 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2022-12-21 12:35 - 2022-12-21 12:35 - 003510472 _____ (Nicolas Coolman) C:\Users\Neoloc\Desktop\ZHPSuite.exe 2022-12-21 12:27 - 2022-12-21 12:27 - 000001535 _____ C:\Users\Neoloc\Desktop\Malwarebytes.txt 2022-12-21 11:46 - 2022-12-21 11:46 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-12-21 11:46 - 2022-12-21 11:46 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-12-21 11:46 - 2022-12-21 11:46 - 000000000 ____D C:\Users\Neoloc\AppData\Local\mbam 2022-12-21 11:45 - 2022-12-21 11:45 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-12-21 11:45 - 2022-12-21 11:45 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-12-21 11:45 - 2022-12-21 11:45 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-12-21 11:44 - 2022-12-21 11:44 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-12-21 11:44 - 2022-12-21 11:44 - 000000000 ____D C:\Program Files\Malwarebytes 2022-12-21 11:43 - 2022-12-21 11:44 - 002542312 _____ (Malwarebytes) C:\Users\Neoloc\Desktop\MBSetup.exe 2022-12-21 11:40 - 2022-12-21 11:40 - 000001420 _____ C:\Users\Neoloc\Desktop\AdwCleaner[S00].txt 2022-12-21 11:39 - 2022-12-21 11:40 - 000000000 ____D C:\AdwCleaner 2022-12-21 10:50 - 2022-12-21 10:50 - 008791352 _____ (Malwarebytes) C:\Users\Neoloc\Desktop\adwcleaner_8.4.0.exe 2022-12-21 10:48 - 2022-12-21 10:48 - 000008706 _____ C:\Users\Neoloc\Desktop\ZHPCleaner (R).txt 2022-12-20 18:35 - 2022-12-20 18:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-12-20 18:28 - 2022-12-20 18:29 - 000000918 _____ C:\Users\Neoloc\Desktop\ZHPCleaner.lnk 2022-12-20 18:28 - 2022-12-20 18:28 - 003305672 _____ (Nicolas Coolman) C:\Users\Neoloc\Desktop\ZHPCleaner.exe 2022-12-20 16:30 - 2022-12-21 13:38 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\ZHP 2022-12-20 16:30 - 2022-12-20 18:28 - 000000000 ____D C:\Users\Neoloc\AppData\Local\ZHP 2022-12-19 10:09 - 2022-12-21 12:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-12-16 12:42 - 2022-12-16 12:42 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\AMD 2022-12-16 12:40 - 2022-12-16 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2022-12-16 12:40 - 2022-12-16 12:40 - 000000000 ____D C:\ProgramData\ATI 2022-12-16 12:39 - 2022-12-16 12:39 - 000000000 ____D C:\Program Files\ATI Technologies 2022-12-16 12:36 - 2022-12-16 12:36 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2022-12-16 12:11 - 2022-12-16 12:11 - 000000000 ____D C:\Users\Neoloc\AppData\Local\RadeonInstaller 2022-12-16 12:03 - 2022-12-16 12:10 - 513396904 _____ (AMD Inc.) C:\Users\Neoloc\Downloads\win10-radeon-pro-software-enterprise-21.Q2.1.exe 2022-12-15 16:58 - 2022-12-15 16:58 - 000000000 ____D C:\Users\Neoloc\Documents\Adobe 2022-12-15 15:12 - 2022-12-15 15:12 - 000000000 ____D C:\Users\Neoloc\Documents\Blackmagic Design 2022-12-15 13:22 - 2022-12-15 13:22 - 000000000 ____D C:\Users\Public\Documents\Blackmagic Design 2022-12-15 13:22 - 2022-12-15 13:22 - 000000000 ____D C:\Users\Neoloc\AppData\Local\cache 2022-12-15 13:22 - 2022-12-15 13:22 - 000000000 ____D C:\ProgramData\Reprise 2022-12-15 13:21 - 2022-12-15 13:21 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\Blackmagic Design 2022-12-15 12:50 - 2022-12-15 12:50 - 000000000 ____D C:\ProgramData\Blackmagic Design 2022-12-15 12:46 - 2022-12-15 12:46 - 000003524 _____ C:\WINDOWS\system32\Tasks\xxasy 2022-12-15 12:44 - 2022-12-15 12:44 - 000000000 ____D C:\Users\Public\Torrent 2022-12-14 22:36 - 2022-12-14 22:36 - 000012367 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-12-14 22:35 - 2022-12-14 22:35 - 000297472 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-12-14 22:09 - 2022-12-14 22:09 - 000000000 ___HD C:\$WinREAgent 2022-12-14 12:43 - 2022-12-14 13:28 - 000000000 ____D C:\Users\Public\CyberLink 2022-12-14 12:43 - 2022-12-14 13:28 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\CyberLink 2022-12-14 11:01 - 2022-12-15 12:32 - 000000000 ____D C:\ProgramData\install_clap 2022-12-14 11:01 - 2022-12-14 12:33 - 000000000 ____D C:\ProgramData\CLSK 2022-12-14 10:57 - 2022-12-15 12:32 - 000000000 ___HD C:\ProgramData\CyberLink 2022-12-08 16:21 - 2022-12-08 16:21 - 000063243 _____ C:\Users\Neoloc\Downloads\bordereau-dépôt-08-12-2022.pdf 2022-12-06 16:11 - 2022-12-06 16:11 - 005406017 _____ C:\Users\Neoloc\Downloads\Carte guide de Phuket.pdf 2022-12-06 12:48 - 2022-12-06 12:48 - 000000000 ____D C:\Users\Neoloc\AppData\LocalLow\webviewdata 2022-12-06 12:45 - 2022-12-06 12:45 - 000027382 _____ C:\Users\Neoloc\Downloads\Facture G7 18 oct.pdf 2022-12-01 15:19 - 2022-12-01 15:19 - 000069337 _____ C:\Users\Neoloc\Downloads\7560585843-1.pdf 2022-11-28 15:08 - 2022-11-28 15:08 - 000069337 _____ C:\Users\Neoloc\Downloads\7560585843.pdf 2022-11-23 11:14 - 2022-11-29 14:12 - 000000000 ____D C:\Users\Neoloc\Desktop\lucky draw Nice Airport and Emirates 01.12.22 2022-11-21 10:48 - 2022-11-21 10:49 - 004956902 _____ C:\Users\Neoloc\Downloads\Ayutthaya Carte Guide - Back [FR].pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-12-21 16:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-12-21 16:08 - 2022-04-05 09:03 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\coliship 2022-12-21 16:07 - 2016-12-16 14:21 - 000000000 ____D C:\Program Files (x86)\Google 2022-12-21 15:41 - 2022-04-05 09:03 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\Module ColiShip 2022-12-21 14:28 - 2020-09-08 13:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-12-21 14:16 - 2020-09-08 14:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2022-12-21 13:06 - 2022-02-14 10:50 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-12-21 13:04 - 2016-12-16 14:31 - 000000000 ____D C:\Users\Neoloc\AppData\LocalLow\Mozilla 2022-12-21 12:41 - 2019-08-21 14:09 - 000000000 ____D C:\Program Files\CCleaner 2022-12-21 12:39 - 2021-03-17 13:01 - 000000000 ____D C:\Users\Neoloc\AppData\Local\RealVNC 2022-12-21 12:38 - 2021-06-16 14:16 - 000000000 ____D C:\ProgramData\RealVNC-Service 2022-12-21 12:38 - 2020-09-08 14:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-12-21 12:38 - 2020-09-08 13:39 - 000008192 ___SH C:\DumpStack.log.tmp 2022-12-21 12:38 - 2016-12-16 14:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-12-21 12:36 - 2020-09-02 17:06 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2022-12-21 12:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-12-21 12:36 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-12-21 12:35 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-12-21 12:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-12-21 12:11 - 2020-08-28 09:16 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-12-21 12:03 - 2019-12-07 10:03 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2022-12-21 12:03 - 2019-05-02 11:14 - 000000000 ____D C:\Program Files (x86)\McAfee 2022-12-21 12:02 - 2016-12-16 14:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-12-21 11:58 - 2020-09-08 13:43 - 000000000 ____D C:\Users\Neoloc 2022-12-21 11:48 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-12-21 11:45 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-12-21 11:18 - 2020-09-08 14:08 - 000003624 _____ C:\WINDOWS\system32\Tasks\FPDUDaily 2022-12-21 11:18 - 2019-05-03 08:58 - 000000121 _____ C:\Users\Neoloc\AppData\Roaming\com.efi.FieryPrinterDriverUpdater 2022-12-21 11:18 - 2019-05-03 08:58 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\Fiery Driver Updater 2022-12-20 18:35 - 2016-12-16 14:21 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-12-20 18:14 - 2021-10-29 12:40 - 000000000 ____D C:\Users\Neoloc\AppData\Local\CrashDumps 2022-12-20 16:21 - 2021-08-19 15:10 - 000002385 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk 2022-12-20 16:21 - 2021-08-19 15:10 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser 2022-12-19 10:22 - 2020-06-22 09:56 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-19 10:20 - 2019-04-30 10:10 - 000000000 ____D C:\Program Files\Microsoft Office 2022-12-19 10:10 - 2020-09-08 13:43 - 000000000 ____D C:\Users\defaultuser0 2022-12-16 12:40 - 2020-09-08 14:00 - 001771910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-12-16 12:40 - 2019-12-07 15:50 - 000792000 _____ C:\WINDOWS\system32\perfh00C.dat 2022-12-16 12:40 - 2019-12-07 15:50 - 000150166 _____ C:\WINDOWS\system32\perfc00C.dat 2022-12-16 12:39 - 2016-12-16 12:59 - 000000000 ____D C:\Program Files (x86)\ATI Technologies 2022-12-16 12:36 - 2017-05-29 11:20 - 000000000 ____D C:\Program Files\AMD 2022-12-16 12:36 - 2016-12-16 12:58 - 000000000 ____D C:\AMD 2022-12-16 10:57 - 2019-05-27 14:50 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\MPC-HC 2022-12-16 10:40 - 2021-09-12 08:38 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-12-15 18:42 - 2019-05-02 10:58 - 000000000 ____D C:\Program Files\Common Files\McAfee 2022-12-15 16:36 - 2019-05-27 14:50 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\vlc 2022-12-15 13:13 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3617877798-3153765377-381886264-1001 2022-12-15 13:13 - 2021-12-13 10:56 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3617877798-3153765377-381886264-1000 2022-12-15 13:13 - 2021-06-01 14:37 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-12-15 13:13 - 2021-06-01 14:37 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-12-15 13:01 - 2022-09-21 10:13 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-12-15 12:52 - 2016-12-16 12:59 - 000000000 ____D C:\ProgramData\Package Cache 2022-12-15 12:32 - 2020-10-16 11:18 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-12-15 10:55 - 2022-11-04 10:05 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-12-15 10:55 - 2020-09-08 14:08 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-12-14 23:33 - 2020-09-08 13:39 - 000599024 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-12-14 23:29 - 2020-09-08 14:12 - 000000000 ____D C:\WINDOWS\en-GB 2022-12-14 23:29 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-12-14 23:29 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-14 22:43 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-12-14 22:35 - 2020-09-08 13:43 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-12-14 21:46 - 2016-12-16 13:44 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-12-14 21:36 - 2020-09-03 08:39 - 148633544 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-12-13 17:15 - 2021-08-19 15:10 - 000003644 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA 2022-12-13 17:15 - 2021-08-19 15:10 - 000003520 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore 2022-12-13 16:32 - 2018-02-08 15:14 - 000000000 ____D C:\Users\Neoloc\AppData\Local\Packages 2022-12-12 12:25 - 2020-01-16 12:36 - 000000000 ____D C:\Users\Neoloc\Documents\Perso 2022-12-12 11:09 - 2022-05-05 16:37 - 000000000 ____D C:\Users\Neoloc\AppData\Roaming\fiery-health-monitor 2022-12-08 15:30 - 2021-06-21 11:55 - 000000000 ____D C:\Users\Neoloc\Documents\Enveloppe 2022-12-07 11:44 - 2022-10-07 10:02 - 000059392 _____ C:\Users\Neoloc\Desktop\List DMC for French Speaking Market.xls 2022-12-06 12:45 - 2019-05-06 10:27 - 000000000 ____D C:\Users\Neoloc\Documents\FACTURES - DEVIS 2022-11-30 17:40 - 2020-09-08 09:09 - 000000000 ____D C:\Users\Neoloc\Desktop\Preuve Livraison 2022-11-30 12:21 - 2022-05-03 12:16 - 000000000 ____D C:\Users\Neoloc\Desktop\Colissimo 2022-11-25 11:12 - 2019-11-18 16:33 - 000000000 ____D C:\Users\Neoloc\Documents\Arts Works 2022-11-22 10:40 - 2021-09-10 09:30 - 000000000 ____D C:\Users\Neoloc\Documents\Arkanae 2022-11-22 10:38 - 2022-07-06 14:56 - 000000000 ____D C:\Users\Neoloc\Documents\Market Briefing 2022-11-22 10:37 - 2019-09-25 16:08 - 000000000 ____D C:\Users\Neoloc\Documents\Statistiques 2022-11-22 10:37 - 2019-05-06 10:27 - 000000000 ____D C:\Users\Neoloc\Documents\Staci 2022-11-22 10:36 - 2020-06-09 10:21 - 000000000 ____D C:\Users\Neoloc\Documents\La poste 2022-11-22 10:34 - 2020-02-17 10:46 - 000000000 ____D C:\Users\Neoloc\Documents\Articles 2022-11-22 10:33 - 2019-11-14 17:50 - 000000000 ____D C:\Users\Neoloc\Documents\PPT ==================== Fichiers à la racine de certains dossiers ======== 2019-05-03 08:58 - 2022-12-21 11:18 - 000000121 _____ () C:\Users\Neoloc\AppData\Roaming\com.efi.FieryPrinterDriverUpdater 2020-10-16 11:03 - 2022-11-07 10:09 - 000000228 _____ () C:\Users\Neoloc\AppData\Roaming\com.efi.FierySoftwareManager 2020-08-28 09:14 - 2020-08-28 09:14 - 000000410 _____ () C:\Users\Neoloc\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================