Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2023 Exécuté par michel (administrateur) sur DESKTOP-UTICQ11 (Hewlett-Packard HP Pavilion g7 Notebook PC) (01-11-2023 18:45:13) Exécuté depuis C:\Users\michel\Downloads\FRST(1).exe Profils chargés: michel Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3636 (X86) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5> (C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (explorer.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe (explorer.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE (explorer.exe ->) (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.) C:\Program Files\Pentablet\PenTablet.exe (explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (Indigo Rose Corporation) [Fichier non signé] C:\Users\michel\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe (Indigo Rose Corporation) [Fichier non signé] C:\Users\michel\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <7> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Security Assist\isa.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (svchost.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3536064 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [1101448 2022-08-05] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.) HKLM\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.) HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [351640 2023-10-31] (Avast Software s.r.o. -> AVAST Software) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [Nouvelle valeur #1] 0 HKLM\Software\Policies\...\system: [DisableAcrylicBackgroundOnLogon] 1 HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-2412924731-293402789-2616735408-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2412924731-293402789-2616735408-1001\...\Run: [MicrosoftEdgeAutoLaunch_35387DE899A5D10865ABF3FCAC512772] => "C:\Program Files\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3072040 2023-10-27] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows NT x86\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPDDQ.DLL [382464 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series: C:\WINDOWS\system32\CNMLMDQ.DLL [1067008 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series XPS: C:\WINDOWS\system32\CNMXLMDQ.DLL [1069056 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\mswmp.inf,PerUserStub HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.118\Installer\chrmstp.exe [2023-10-31] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2021-04-25] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé] GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {F97D448B-78AF-4481-928E-859EAB6DAA04} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.) Task: {C5126AAA-9ADD-4971-BAE2-FDB3F9A90CE2} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4703640 2023-10-31] (Avast Software s.r.o. -> AVAST Software) Task: {39085089-7D35-4C87-A954-EE1D62E954FB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1830296 2023-10-31] (Avast Software s.r.o. -> Avast Software) Task: {0878C1B3-ADD6-408C-9FD9-69C36C3F9B70} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {3791DF0A-315C-4DE6-AE6F-9F9E8A3D0408} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4252576 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "f711a2e0-d9dd-496e-9fa7-83304b26ac98" --version "6.17.10746" --silent Task: {85878DD3-2B02-493A-A3C6-B027156B665F} - System32\Tasks\CCleanerSkipUAC - michel => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {F9E7B8C0-599B-487D-8463-9FE83B95C805} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2021-04-25] (Google Inc -> Google Inc.) Task: {9229B209-450F-473A-92E7-75B40BFB384A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153168 2021-04-25] (Google Inc -> Google Inc.) Task: {141FB5C5-56EE-423F-BC80-30F347467D87} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [628024 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {8126BD72-7ACD-40A5-B6CD-D92D74519440} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [72192 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {8EF10EE9-C5DB-4E7E-9FC9-B273413E11C9} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [72192 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {AEC0E02B-543D-4577-A827-442E2491845F} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\WINDOWS\System32\CloudRestoreLauncher.dll [452608 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {20CD9959-DDD6-4D2B-B985-C345DCBB78A9} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [218112 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {FB662E56-411C-476C-9FCE-A9E304B2D434} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [62464 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {5DA34A16-32FD-4C93-8B6F-E2C0924E381E} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\WINDOWS\System32\PrinterCleanupTask.dll [68096 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {46ECCABC-EC3B-4B6D-BB2D-E705193AFDF1} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll [109056 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {F320F750-D9F2-4B57-9ADA-27B10389241D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [202752 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {CEA2C044-64EE-4323-AA2E-03B3D5ABD5AB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [609696 2023-10-26] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {0B149556-90C9-438A-B8EA-2B606701CFAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [680352 2023-10-26] (Mozilla Corporation -> Mozilla Foundation) Task: {A4CDC6CD-4725-4398-9F98-B75B8FD97F29} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2412924731-293402789-2616735408-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier) Task: {0E87B3D5-B882-4996-88AC-5884CFF66C79} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2412924731-293402789-2616735408-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier) Task: {4A14AF49-0894-45A3-A23F-6BBFC807D043} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2414712632-580038325-581801953-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier) Task: {A88857E5-EF36-4DDD-9AD6-A3F3BB79EA79} - System32\Tasks\Opera scheduled Autoupdate 1661357964 => C:\Users\michel\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) Task: {BFCF0E33-6D85-42E2-85E8-A8A930218039} - System32\Tasks\Opera scheduled Autoupdate 1666615037 => C:\Users\michel\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0f670316-e93a-44fb-8b1a-37c6e73c7211}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{be8952de-8723-4669-bd8e-aeb9cc23b988}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{cae0d4ac-3571-4413-9f6e-58fd68725b00}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-01] Edge Notifications: Default -> hxxps://betaengine.org; hxxps://investmeny.org; hxxps://kokotrokot.com; hxxps://onemacusa.net; hxxps://www.msn.com Edge Extension: (Google Docs hors connexion) - C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-26] Edge Extension: (Edge relevant text changes) - C:\Users\michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-26] FireFox: ======== FF DefaultProfile: dtsnazvw.default FF ProfilePath: C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\dtsnazvw.default [2023-10-26] FF ProfilePath: C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 [2023-11-01] FF Notifications: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> hxxps://www.castorama.fr FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Enabled: {c5ffbd00-71e8-4603-a19b-860104b7ac62} FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Enabled: {b98722dd-b4e2-4397-9be4-3d0a144a17d9} FF NewTabOverride: Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508 -> Disabled: Quick_Recipe_Hub___Custom_Web_Search_MTyoGHhulF@quickrecipehub.com FF Extension: (Campaign Holder) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\holder@cholder.xpi [2023-08-14] [UpdateUrl:hxxps://fbunseen.org/firefox/update/data.json] FF Extension: (Quick Recipe Hub & Custom Web Search) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\Quick_Recipe_Hub___Custom_Web_Search_MTyoGHhulF@quickrecipehub.com.xpi [2023-10-25] FF Extension: (Manuals Directory Search) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\{b98722dd-b4e2-4397-9be4-3d0a144a17d9}.xpi [2023-07-24] [UpdateUrl:hxxps://cdn.manualsdirectory-cdn.org/xpi/manualsdirectory/yhs/1120/search/updates.json] FF Extension: (Freshy Newtab and Search ) - C:\Users\michel\AppData\Roaming\Mozilla\Firefox\Profiles\500vru89.default-release-1680367280508\Extensions\{c5ffbd00-71e8-4603-a19b-860104b7ac62}.xpi [2023-07-24] [UpdateUrl:hxxps://cdn.freshysearch-cdn.com/xpi/freshy/yhs/01020/searchnnewtab/updates.json] FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé] FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default [2023-10-31] CHR StartupUrls: Default -> "hxxp://www.google.com" CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-15] CHR Extension: (Google Docs hors connexion) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-18] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-25] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKU\S-1-5-21-2412924731-293402789-2616735408-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8221080 2023-10-31] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [766872 2023-10-31] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [799640 2023-10-31] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-10-31] (Avast Software s.r.o. -> AVAST Software) S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-04-18] (Microsoft Windows -> ) S3 Browser; C:\WINDOWS\System32\browser.dll [106496 2021-04-27] (Microsoft Corporation) [Fichier non signé] S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [896416 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [300120 2021-04-25] (Intel(R) pGFX -> Intel Corporation) R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> ) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [728360 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files\Intel\Intel(R) Security Assist\isa.exe [335360 2016-03-18] (Intel Corporation) [Fichier non signé] S2 isaHelperSvc; C:\Program Files\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-18] (Intel Corporation) [Fichier non signé] R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7503888 2023-10-31] (Malwarebytes Inc. -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [392160 2023-10-27] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [227504 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [300400 2023-07-25] (Microsoft Windows -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [2050568 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [91928 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [28928 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [190624 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [331416 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [242184 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [87768 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [22984 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [36648 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [230304 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [409072 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [89848 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69152 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [779896 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [597576 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [159032 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [264856 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [104448 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [139808 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [124864 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [6656 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 HidSpiCx; C:\WINDOWS\System32\drivers\HidSpiCx.sys [65536 2023-10-27] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [184288 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [18920 2023-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [161704 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [66008 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [205256 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [158808 2023-11-01] (Malwarebytes Inc. -> Malwarebytes) R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [163896 2016-03-28] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 mrxsmb10; C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys [233472 2021-04-27] (Microsoft Corporation) [Fichier non signé] R0 MsSecCore; C:\WINDOWS\System32\drivers\msseccore.sys [21888 2023-10-27] (Microsoft Windows -> Microsoft Corporation) S3 MsSecWfp; C:\WINDOWS\System32\drivers\mssecwfp.sys [28544 2023-10-27] (Microsoft Windows -> Microsoft Corporation) R3 netr28; C:\WINDOWS\System32\drivers\netr28.sys [1510912 2019-12-07] (Microsoft Windows -> MediaTek Inc.) S3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [266840 2021-04-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [980984 2021-04-18] (Realtek Semiconductor Corp. -> Realtek) S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8133120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44216 2021-04-25] (Synaptics Incorporated -> Synaptics Incorporated) R2 srv; C:\WINDOWS\System32\DRIVERS\srv.sys [345088 2021-04-27] (Microsoft Corporation) [Fichier non signé] S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [155664 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 TClass2k; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [30952 2015-09-21] (Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver) S3 UCTblHid; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [26344 2015-09-21] (Guangzhou Ugee Computer Technology Co.,Ltd -> Tablet Driver) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-11-19] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [40392 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420232 2023-10-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [68888 2023-10-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver86; C:\WINDOWS\System32\drivers\WirelessButtonDriver86.sys [30848 2018-05-11] (HP Inc. -> HP) S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [218624 2023-10-27] (Microsoft Windows -> Microsoft Corporation) R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [7680 2022-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S2 PTSimBus; "%SystemRoot%\System32\Drivers\PTSimBus.sys" [X] S3 PTSimHid; "%SystemRoot%\System32\Drivers\PTSimHid.sys" [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-11-01 18:31 - 2023-11-01 18:33 - 000044592 _____ C:\Users\michel\Downloads\Addition.txt 2023-11-01 18:30 - 2023-11-01 18:44 - 000001034 _____ C:\Users\michel\Desktop\FRST(1) - Raccourci.lnk 2023-11-01 18:28 - 2023-11-01 18:46 - 000029677 _____ C:\Users\michel\Downloads\FRST.txt 2023-11-01 18:27 - 2023-11-01 18:45 - 000000000 ____D C:\FRST 2023-11-01 18:27 - 2023-11-01 18:27 - 002084352 _____ (Farbar) C:\Users\michel\Downloads\FRST(1).exe 2023-11-01 18:25 - 2023-11-01 18:25 - 002084352 _____ (Farbar) C:\Users\michel\Downloads\FRST.exe 2023-11-01 16:31 - 2023-11-01 16:38 - 000000000 ____D C:\KVRT2020_Data 2023-11-01 16:29 - 2023-11-01 16:30 - 107018096 _____ (AO Kaspersky Lab) C:\Users\michel\Downloads\KVRT.exe 2023-11-01 16:20 - 2023-11-01 16:24 - 000000000 ____D C:\Program Files\RealFlight7 2023-11-01 15:35 - 2023-11-01 15:38 - 000000000 ____D C:\Users\michel\AppData\Local\CrashDumps 2023-11-01 15:33 - 2023-11-01 15:33 - 000000000 ____D C:\Users\michel\Documents\RealFlight Basic 2023-11-01 15:31 - 2023-11-01 15:31 - 000158808 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2023-10-31 12:06 - 2023-11-01 15:33 - 000000000 ____D C:\Users\michel\AppData\Local\Malwarebytes 2023-10-31 12:06 - 2023-10-31 12:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-10-31 12:06 - 2023-10-31 12:06 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-10-31 12:06 - 2023-10-31 12:06 - 000000000 ____D C:\Users\michel\AppData\Local\mbam 2023-10-31 12:04 - 2023-10-31 12:04 - 002606880 _____ (Malwarebytes) C:\Users\michel\Downloads\MBSetup.exe 2023-10-31 12:04 - 2023-10-31 12:04 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-10-31 12:04 - 2023-10-31 12:04 - 000000000 ____D C:\Program Files\Malwarebytes 2023-10-31 11:58 - 2023-10-31 12:53 - 000000000 ____D C:\Users\michel\AppData\Local\Avast Software 2023-10-31 11:57 - 2023-10-31 11:57 - 000002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk 2023-10-31 11:55 - 2023-11-01 15:34 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2023-10-31 11:55 - 2023-10-31 11:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2023-10-31 11:54 - 2023-10-31 11:54 - 000270232 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2023-10-31 11:52 - 2023-10-31 11:52 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll 2023-10-31 11:49 - 2023-10-31 11:49 - 000263576 _____ (AVAST Software) C:\Users\michel\Downloads\avast_free_antivirus_setup_online.exe 2023-10-30 12:34 - 2023-10-30 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2023-10-27 09:50 - 2023-10-27 09:50 - 000000000 ___HD C:\$WinREAgent 2023-10-26 17:12 - 2023-10-26 17:12 - 008791352 _____ (Malwarebytes) C:\Users\michel\Downloads\adwcleaner_8.4.0.exe 2023-10-26 17:12 - 2023-10-26 17:12 - 008791352 _____ (Malwarebytes) C:\Users\michel\Downloads\adwcleaner_8.4.0(1).exe 2023-10-26 16:39 - 2023-10-27 09:36 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-10-26 13:44 - 2023-10-26 14:35 - 000000000 ____D C:\$SysReset 2023-10-25 11:45 - 2023-10-25 11:54 - 297811968 _____ C:\Users\michel\Downloads\_Getintopc.ZLo7qWS7.com_Phoenix_RC_v5_Setup.rar.part 2023-10-25 11:35 - 2023-10-25 11:35 - 006254391 _____ C:\Users\michel\Downloads\_Getintopc.com_Phoenix_RC.mp4 2023-10-25 11:29 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\PhoenixRC Demo 2023-10-25 11:12 - 2023-10-31 12:58 - 064749568 _____ C:\WINDOWS\system32\config\SOFTWARE 2023-10-25 10:59 - 2023-10-25 11:12 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2023-10-25 10:45 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\RealFlight G4 Demo 2023-10-25 10:31 - 2023-10-25 10:31 - 000000000 ____D C:\Users\michel\.crrcsim 2023-10-24 16:20 - 2023-10-26 14:35 - 000000000 ____D C:\Users\michel\Documents\RealFlight 7 2023-10-24 16:20 - 2023-10-24 16:33 - 000000000 ____D C:\ProgramData\TEMP 2023-10-24 15:12 - 2023-10-24 15:53 - 000000000 ____D C:\Users\michel\Documents\PhoenixRC 2023-10-24 15:01 - 2023-10-24 15:10 - 000000000 ___HD C:\WINDOWS\msdownld.tmp 2023-10-24 15:01 - 2023-10-24 15:10 - 000000000 ____D C:\WINDOWS\system32\directx 2023-10-23 11:14 - 2023-10-23 11:14 - 000000000 ____D C:\Users\michel\AppData\Local\Backup 2023-10-14 09:44 - 2023-10-14 09:44 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2023-10-12 09:17 - 2023-10-12 09:17 - 000000017 _____ C:\Users\michel\AppData\Local\resmon.resmoncfg 2023-10-11 09:48 - 2023-10-11 09:48 - 001909692 _____ C:\Users\michel\Downloads\481010532891.pdf 2023-10-11 09:45 - 2023-10-11 09:45 - 000039997 _____ C:\Users\michel\Downloads\facture-f-1186617-1.pdf 2023-10-11 09:45 - 2023-10-11 09:45 - 000039997 _____ C:\Users\michel\Downloads\facture-f-1186617.pdf 2023-10-10 15:34 - 2023-10-10 15:34 - 000000000 ____D C:\ProgramData\PLUG ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-11-01 18:44 - 2022-02-11 11:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-11-01 18:40 - 2021-12-19 20:46 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-11-01 18:40 - 2021-04-25 20:41 - 000000000 ____D C:\Program Files\Google 2023-11-01 18:33 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF 2023-11-01 18:21 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps 2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-11-01 18:14 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-11-01 15:36 - 2020-11-19 00:53 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-11-01 15:36 - 2019-12-07 13:20 - 000792836 _____ C:\WINDOWS\system32\perfh00C.dat 2023-11-01 15:36 - 2019-12-07 13:20 - 000149966 _____ C:\WINDOWS\system32\perfc00C.dat 2023-11-01 15:33 - 2021-04-25 20:45 - 000000000 ____D C:\Program Files\CCleaner 2023-11-01 15:32 - 2022-08-17 09:05 - 000000000 ____D C:\Users\michel\AppData\Roaming\Pentablet V3 2023-11-01 15:32 - 2021-04-25 20:48 - 000000000 ____D C:\ProgramData\Avast Software 2023-11-01 15:31 - 2021-04-27 12:35 - 000008192 ___SH C:\DumpStack.log.tmp 2023-11-01 15:31 - 2021-04-25 19:02 - 000000000 ____D C:\Program Files\TeamViewer 2023-11-01 15:31 - 2020-11-19 00:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-31 12:58 - 2019-12-07 07:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-10-31 12:05 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-10-30 12:45 - 2021-04-25 18:50 - 000000000 ____D C:\Users\michel\AppData\Roaming\Microsoft\Skype for Desktop 2023-10-30 12:44 - 2021-04-25 15:38 - 000000000 ___SD C:\Users\michel\AppData\Roaming\Microsoft\Credentials 2023-10-30 11:49 - 2021-04-25 16:41 - 000000000 ____D C:\Users\michel\AppData\Roaming\vlc 2023-10-30 11:19 - 2020-11-19 00:45 - 000002388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-30 10:58 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-10-30 10:53 - 2020-11-18 23:42 - 000530240 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ___SD C:\WINDOWS\system32\AppV 2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-10-27 10:28 - 2019-12-07 13:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-10-27 10:28 - 2019-12-07 13:20 - 000000000 ____D C:\WINDOWS\system32\fr 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\UNP 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\F12 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\et-EE 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Com 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\Provisioning 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\IME 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Windows Defender 2023-10-27 10:28 - 2019-12-07 07:12 - 000000000 ____D C:\Program Files\Common Files\System 2023-10-27 10:28 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\servicing 2023-10-27 10:12 - 2019-12-07 13:23 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2023-10-27 10:12 - 2019-12-07 07:12 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2023-10-27 09:40 - 2020-11-19 00:45 - 000003676 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-10-27 09:40 - 2020-11-19 00:45 - 000003552 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-10-27 09:36 - 2023-04-01 17:39 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2023-10-26 17:13 - 2021-04-25 20:39 - 000000000 ____D C:\AdwCleaner 2023-10-26 16:40 - 2023-04-01 17:39 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-10-26 16:17 - 2023-01-23 13:04 - 000004550 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-10-26 16:16 - 2023-01-23 13:03 - 000002106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-10-26 15:56 - 2022-10-17 10:03 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-10-26 15:42 - 2022-10-17 10:03 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-10-26 15:42 - 2021-04-27 12:41 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-10-26 15:36 - 2021-04-27 12:38 - 000000000 ____D C:\Users\michel 2023-10-26 15:19 - 2023-04-14 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FonePaw 2023-10-26 15:19 - 2023-04-14 10:47 - 000000000 ____D C:\Program Files\FonePaw 2023-10-26 15:19 - 2023-01-20 20:11 - 000000000 ____D C:\Users\michel\Documents\XuanZhi9 2023-10-26 15:19 - 2022-11-30 16:31 - 000000000 ___RD C:\Users\michel\Documents\Scanned Documents 2023-10-26 15:19 - 2022-08-25 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX 2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Users\Public\Documents\MAGIX_Music_Maker_MX_Production_Suite_Version_a_telecharger 2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Program Files\MAGIX 2023-10-26 15:19 - 2022-08-25 10:01 - 000000000 ____D C:\Program Files\Common Files\MAGIX Services 2023-10-26 15:19 - 2022-08-24 16:15 - 000000000 ____D C:\Users\michel\Documents\MAGIX Downloads 2023-10-26 15:19 - 2022-08-17 09:21 - 000000000 ____D C:\Users\michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pentablet 2023-10-26 15:19 - 2022-08-17 09:05 - 000000000 ____D C:\Program Files\Pentablet 2023-10-26 15:19 - 2021-04-25 20:53 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2023-10-26 15:19 - 2021-04-25 16:02 - 000000000 ____D C:\Users\michel\Downloads\ME_Corporate_Win8.1_10_11.0.6.1194 2023-10-26 15:19 - 2021-04-25 15:54 - 000000000 ____D C:\Users\michel\Downloads\Realtek_RtsP2Stor_10.0.19041.29098 2023-10-26 15:19 - 2020-11-19 00:48 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2023-10-26 15:19 - 2019-12-07 07:12 - 000000000 __SHD C:\Program Files\Windows Sidebar 2023-10-26 15:00 - 2022-08-25 10:01 - 000000000 ____D C:\ProgramData\MAGIX 2023-10-26 15:00 - 2021-04-25 15:42 - 000000000 ____D C:\Users\michel\AppData\Local\Mozilla 2023-10-26 15:00 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\registration 2023-10-26 14:59 - 2021-04-25 16:20 - 000000000 __RHD C:\MSOCache 2023-10-26 13:56 - 2023-07-24 19:33 - 000000000 ____D C:\Users\michel\Downloads\CH_XA9B_FR_V20.0048_22D1050_C215F14-E1-P(G6) 2023-10-26 09:24 - 2021-04-25 15:38 - 000000000 ____D C:\Users\michel\AppData\Local\Packages 2023-10-15 16:18 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\NDF 2023-10-14 10:43 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-10-14 09:51 - 2021-04-25 19:02 - 000000000 ____D C:\Users\michel\AppData\Roaming\TeamViewer 2023-10-11 10:39 - 2021-04-25 16:57 - 177261816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-10-11 10:39 - 2021-04-25 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-10-11 09:48 - 2022-10-22 20:49 - 000000000 ____D C:\ProgramData\CanonIJPLM 2023-10-07 16:33 - 2020-11-19 00:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-10-07 16:31 - 2021-04-25 16:59 - 000000000 ____D C:\Program Files\ruxim 2023-10-07 16:31 - 2021-04-25 16:59 - 000000000 ____D C:\Program Files\rempl ==================== Fichiers à la racine de certains dossiers ======== 2023-01-20 20:14 - 2023-01-20 20:14 - 000000068 _____ () C:\Users\michel\AppData\Roaming\changzhi_leidian.data 2022-09-30 18:14 - 2022-09-30 18:14 - 000038447 _____ () C:\Users\michel\AppData\Roaming\Valeurs séparées par une virgule (DOS).ADR 2022-05-03 08:44 - 2022-05-03 08:44 - 000009330 _____ () C:\Users\michel\AppData\Roaming\Valeurs séparées par une virgule (Windows).EML 2022-04-19 10:10 - 2022-04-19 10:10 - 000001876 _____ () C:\Users\michel\AppData\Roaming\Microsoft\e2f1eb6d-e78b-498e-94c1-1ba5cbe9cba1.tmp 2023-10-12 09:17 - 2023-10-12 09:17 - 000000017 _____ () C:\Users\michel\AppData\Local\resmon.resmoncfg 2022-09-02 16:22 - 2022-09-02 16:22 - 000000000 _____ () C:\Users\michel\AppData\Local\{923F9775-FF34-4ADE-AE35-D479CD197D39} ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================