Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.04.2024
Exécuté par nicol (administrateur) sur DESKTOP-HO06S6C (GIGABYTE GB-BRR7H-4800) (13-04-2024 14:33:41)
Exécuté depuis C:\Users\nicol\Downloads\FRST64.exe
Profils chargés: nicol
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\nicol\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <84>
(explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\nicol\AppData\Roaming\Telegram Desktop\Telegram.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2414.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2401.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe [3479488 2022-04-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [UniConverterUpdateHelper] => C:\Program Files\Wondershare\UniConverter 14 for Windows\WSVCUUpdateHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3671040 2023-01-09] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11411360 2024-04-11] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe [7272032 2024-04-01] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [CiscoSpark] => C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk [1472 2024-02-08] () [Fichier non signé]
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2023-08-19] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.122\Installer\chrmstp.exe [2024-04-10] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {AA980753-58F7-4EA4-A344-3C87B63022CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {DF185CF5-BDE6-4B5C-8965-D3D62A5F4D27} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.2{25C781FC-6722-4DD5-BE2C-90B1D2CF83E5} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
Task: {EA63FD96-A9F1-4750-B8A8-4F46682AC053} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {0032659C-3B8D-4E94-B8C0-8D0CCCF910E8} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4093021739-1487486643-3916191762-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {AC3AA295-548E-40A2-ACC7-71FEEF7065B0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-04] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{344dba6b-6834-489e-a556-22e36b502107}: [NameServer] 10.96.0.1
Tcpip\..\Interfaces\{67b87153-01c6-4dc6-830a-0e8c14373254}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{67b87153-01c6-4dc6-830a-0e8c14373254}: [DhcpDomain] lan
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}\2426F687D26363132493034454: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}\2426F687D26363132493034454: [DhcpDomain] lan
Edge:
=======
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-13]
Edge Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
Edge Extension: (Edge relevant text changes) - C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-31]
FireFox:
========
FF DefaultProfile: 5muvevbw.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\5muvevbw.default [2022-11-21]
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\miu8xnmn.default-release [2024-04-13]
FF Session Restore: Mozilla\Firefox\Profiles\miu8xnmn.default-release -> est activé.
FF Extension: (Video DownloadHelper) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\miu8xnmn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-03-22]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default [2024-04-13]
CHR Notifications: Default -> hxxps://www.interactivebrokers.co.uk
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
CHR Extension: (Office Online - Copier et coller) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2023-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-21]
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-14]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-13]
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-14]
CHR HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [372736 2023-01-04] (Brother Industries, Ltd.) [Fichier non signé]
S2 GoogleUpdaterInternalService125.0.6386.2; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.2; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [234968 2024-03-06] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8884840 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.11\ProtonVPNService.exe [474824 2024-03-27] (Proton AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.WireGuardService.exe [474312 2024-02-01] (Proton AG -> ProtonVPN)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [11776 2024-01-25] () [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [18944 2024-01-25] () [Fichier non signé]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54720 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-05-14] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [201280 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.11\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [Fichier non signé]
R3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2023-10-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-05-25] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-13 14:33 - 2024-04-13 14:34 - 000020516 _____ C:\Users\nicol\Downloads\FRST.txt
2024-04-13 14:33 - 2024-04-13 14:33 - 000000000 ____D C:\FRST
2024-04-13 14:32 - 2024-04-13 14:32 - 002394112 _____ (Farbar) C:\Users\nicol\Downloads\FRST64.exe
2024-04-12 17:58 - 2024-04-12 17:58 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-04-12 17:57 - 2024-04-13 14:33 - 000000000 ____D C:\Users\nicol\AppData\Local\Malwarebytes
2024-04-12 17:57 - 2024-04-12 17:57 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-12 17:57 - 2024-04-12 17:57 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-04-12 17:56 - 2024-04-12 17:56 - 002589624 _____ (Malwarebytes) C:\Users\nicol\Downloads\MBSetup.exe
2024-04-12 17:56 - 2024-04-12 17:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-12 17:56 - 2024-04-12 17:56 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-12 04:22 - 2024-04-12 04:23 - 000000000 ___HD C:\$WinREAgent
2024-04-11 18:03 - 2024-04-11 18:03 - 000012497 _____ C:\Users\nicol\Downloads\Premium-Odds-Feed_bookmakers.xlsx
2024-04-11 13:04 - 2024-04-11 13:04 - 014679291 _____ C:\Users\nicol\Downloads\ScraperV4_Linux.zip
2024-04-11 13:00 - 2024-04-11 13:00 - 014664705 _____ C:\Users\nicol\Downloads\ScraperV3_Linux.zip
2024-04-11 12:49 - 2024-04-11 12:49 - 014677654 _____ C:\Users\nicol\Downloads\Scraper_Windows.zip
2024-04-11 12:40 - 2024-04-11 12:40 - 000070942 _____ C:\Users\nicol\Downloads\data.pdf
2024-04-10 08:18 - 2024-04-10 08:18 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-10 08:18 - 2024-04-10 08:18 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-08 23:07 - 2024-04-08 23:08 - 000000000 ____D C:\Users\nicol\Documents\Creation
2024-04-06 18:06 - 2024-04-06 18:06 - 002999307 _____ C:\Users\nicol\Desktop\Scan2024-04-06_180542.pdf
2024-04-04 22:07 - 2024-04-10 08:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-03 21:56 - 2024-04-03 21:56 - 004053664 _____ C:\Users\nicol\Desktop\Service des contraventions.pdf
2024-04-03 21:52 - 2024-04-03 21:52 - 011788745 _____ C:\Users\nicol\Desktop\POLICE.pdf
2024-03-27 10:27 - 2024-03-27 10:27 - 000183497 _____ C:\Users\nicol\Downloads\GFIS-Services-Subscriber-Agreement-3089.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-13 14:04 - 2022-11-21 03:58 - 000000000 ____D C:\Users\nicol\Downloads\Telegram Desktop
2024-04-13 13:53 - 2022-11-21 03:58 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Telegram Desktop
2024-04-13 13:45 - 2022-11-21 02:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-13 11:07 - 2024-02-08 16:25 - 000000000 ____D C:\Users\nicol\AppData\Local\CiscoSparkLauncher
2024-04-13 11:06 - 2024-02-08 15:03 - 000000000 ____D C:\Users\nicol\AppData\Local\WebEx
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-13 10:17 - 2022-11-21 03:05 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2024-04-13 10:08 - 2022-11-21 03:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-13 10:07 - 2022-11-21 02:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-12 17:56 - 2022-11-21 02:42 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-12 17:56 - 2022-11-21 02:41 - 000000000 ____D C:\WINDOWS\INF
2024-04-12 17:27 - 2023-05-25 11:31 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-12 17:27 - 2022-11-21 03:07 - 000000000 ___RD C:\Users\nicol\OneDrive
2024-04-12 17:17 - 2024-02-08 16:25 - 000000000 ____D C:\Users\nicol\AppData\Local\CiscoSpark
2024-04-12 17:09 - 2023-09-04 22:21 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2024-04-12 17:09 - 2023-07-18 23:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-12 17:09 - 2023-07-18 23:13 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-12 17:09 - 2023-07-18 23:13 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-12 10:05 - 2022-11-21 02:59 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-12 10:05 - 2022-11-21 02:43 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-12 10:05 - 2022-11-21 02:43 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-12 09:58 - 2022-11-21 02:50 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-12 09:58 - 2022-11-21 02:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-12 09:57 - 2022-11-21 02:38 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-12 07:22 - 2023-10-16 20:06 - 000001050 _____ C:\Users\Public\Desktop\Proton VPN.lnk
2024-04-12 07:22 - 2023-10-16 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2024-04-11 06:00 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-11 04:42 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-10 08:22 - 2022-11-21 03:05 - 000000000 ____D C:\Users\nicol\AppData\Local\Packages
2024-04-10 08:22 - 2022-11-21 02:42 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-10 08:20 - 2023-12-23 11:32 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-10 08:20 - 2022-11-21 03:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-10 08:20 - 2022-11-21 02:50 - 000336280 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-10 08:19 - 2022-11-21 02:39 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-10 08:17 - 2022-11-21 02:53 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-10 08:14 - 2022-11-23 00:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 08:12 - 2022-11-23 00:05 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 08:12 - 2022-11-21 02:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-05 08:07 - 2022-11-21 03:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-03 21:57 - 2023-07-18 23:14 - 000000000 ____D C:\Users\nicol\AppData\Roaming\com.adobe.dunamis
2024-04-03 16:41 - 2022-11-21 02:50 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-03 16:41 - 2022-11-21 02:50 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-01 17:01 - 2023-10-12 19:52 - 000000000 ____D C:\Users\nicol\AppData\Local\Notepad
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par nicol (administrateur) sur DESKTOP-HO06S6C (GIGABYTE GB-BRR7H-4800) (13-04-2024 14:33:41)
Exécuté depuis C:\Users\nicol\Downloads\FRST64.exe
Profils chargés: nicol
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4291 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\Browny02\BrYNSvc.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe <2>
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\nicol\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <84>
(explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\nicol\AppData\Roaming\Telegram Desktop\Telegram.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2414.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2401.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_eb52bf0d4dccfcf3\RtkAudUService64.exe [3479488 2022-04-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM\...\Run: [UniConverterUpdateHelper] => C:\Program Files\Wondershare\UniConverter 14 for Windows\WSVCUUpdateHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [I20A] => C:\WINDOWS\twain_32\Brimi20a\Common\TwDsUiLaunch.exe [86976 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3384320 2022-03-17] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3671040 2023-01-09] (Brother Industries, Ltd.) [Fichier non signé]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4063800 2024-04-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11411360 2024-04-11] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\nicol\AppData\Local\WebEx\WebexHost.exe [7272032 2024-04-01] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\...\Run: [CiscoSpark] => C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webex\Webex.lnk [1472 2024-02-08] () [Fichier non signé]
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2023-08-19] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.122\Installer\chrmstp.exe [2024-04-10] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {AA980753-58F7-4EA4-A344-3C87B63022CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {DF185CF5-BDE6-4B5C-8965-D3D62A5F4D27} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.2{25C781FC-6722-4DD5-BE2C-90B1D2CF83E5} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
Task: {EA63FD96-A9F1-4750-B8A8-4F46682AC053} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {0032659C-3B8D-4E94-B8C0-8D0CCCF910E8} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4093021739-1487486643-3916191762-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-04-04] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {AC3AA295-548E-40A2-ACC7-71FEEF7065B0} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-04-04] (Mozilla Corporation -> Mozilla Foundation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{344dba6b-6834-489e-a556-22e36b502107}: [NameServer] 10.96.0.1
Tcpip\..\Interfaces\{67b87153-01c6-4dc6-830a-0e8c14373254}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{67b87153-01c6-4dc6-830a-0e8c14373254}: [DhcpDomain] lan
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}\2426F687D26363132493034454: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6ab9d72a-18cc-4b3f-9714-11210cc1825d}\2426F687D26363132493034454: [DhcpDomain] lan
Edge:
=======
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-13]
Edge Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
Edge Extension: (Edge relevant text changes) - C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-31]
FireFox:
========
FF DefaultProfile: 5muvevbw.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\5muvevbw.default [2022-11-21]
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\miu8xnmn.default-release [2024-04-13]
FF Session Restore: Mozilla\Firefox\Profiles\miu8xnmn.default-release -> est activé.
FF Extension: (Video DownloadHelper) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\miu8xnmn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-03-22]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default [2024-04-13]
CHR Notifications: Default -> hxxps://www.interactivebrokers.co.uk
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-02]
CHR Extension: (Office Online - Copier et coller) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2023-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-21]
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-10-14]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nicol\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-13]
CHR Profile: C:\Users\nicol\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-14]
CHR HKU\S-1-5-21-4093021739-1487486643-3916191762-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [372736 2023-01-04] (Brother Industries, Ltd.) [Fichier non signé]
S2 GoogleUpdaterInternalService125.0.6386.2; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.2; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.2\updater.exe [4774176 2024-04-04] (Google LLC -> Google LLC)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [234968 2024-03-06] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8884840 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.11\ProtonVPNService.exe [474824 2024-03-27] (Proton AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.WireGuardService.exe [474312 2024-02-01] (Proton AG -> ProtonVPN)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [11776 2024-01-25] () [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [18944 2024-01-25] () [Fichier non signé]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54720 2022-10-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-05-14] (Microsoft Corporation) [Fichier non signé]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [201280 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78400 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [188784 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.11\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49664 2022-07-13] (Microsoft Corporation) [Fichier non signé]
R3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2023-10-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-05-25] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-13 14:33 - 2024-04-13 14:34 - 000020516 _____ C:\Users\nicol\Downloads\FRST.txt
2024-04-13 14:33 - 2024-04-13 14:33 - 000000000 ____D C:\FRST
2024-04-13 14:32 - 2024-04-13 14:32 - 002394112 _____ (Farbar) C:\Users\nicol\Downloads\FRST64.exe
2024-04-12 17:58 - 2024-04-12 17:58 - 000188784 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-04-12 17:57 - 2024-04-13 14:33 - 000000000 ____D C:\Users\nicol\AppData\Local\Malwarebytes
2024-04-12 17:57 - 2024-04-12 17:57 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-04-12 17:57 - 2024-04-12 17:57 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-04-12 17:56 - 2024-04-12 17:56 - 002589624 _____ (Malwarebytes) C:\Users\nicol\Downloads\MBSetup.exe
2024-04-12 17:56 - 2024-04-12 17:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-04-12 17:56 - 2024-04-12 17:56 - 000000000 ____D C:\Program Files\Malwarebytes
2024-04-12 04:22 - 2024-04-12 04:23 - 000000000 ___HD C:\$WinREAgent
2024-04-11 18:03 - 2024-04-11 18:03 - 000012497 _____ C:\Users\nicol\Downloads\Premium-Odds-Feed_bookmakers.xlsx
2024-04-11 13:04 - 2024-04-11 13:04 - 014679291 _____ C:\Users\nicol\Downloads\ScraperV4_Linux.zip
2024-04-11 13:00 - 2024-04-11 13:00 - 014664705 _____ C:\Users\nicol\Downloads\ScraperV3_Linux.zip
2024-04-11 12:49 - 2024-04-11 12:49 - 014677654 _____ C:\Users\nicol\Downloads\Scraper_Windows.zip
2024-04-11 12:40 - 2024-04-11 12:40 - 000070942 _____ C:\Users\nicol\Downloads\data.pdf
2024-04-10 08:18 - 2024-04-10 08:18 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-10 08:18 - 2024-04-10 08:18 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-08 23:07 - 2024-04-08 23:08 - 000000000 ____D C:\Users\nicol\Documents\Creation
2024-04-06 18:06 - 2024-04-06 18:06 - 002999307 _____ C:\Users\nicol\Desktop\Scan2024-04-06_180542.pdf
2024-04-04 22:07 - 2024-04-10 08:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-03 21:56 - 2024-04-03 21:56 - 004053664 _____ C:\Users\nicol\Desktop\Service des contraventions.pdf
2024-04-03 21:52 - 2024-04-03 21:52 - 011788745 _____ C:\Users\nicol\Desktop\POLICE.pdf
2024-03-27 10:27 - 2024-03-27 10:27 - 000183497 _____ C:\Users\nicol\Downloads\GFIS-Services-Subscriber-Agreement-3089.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-13 14:04 - 2022-11-21 03:58 - 000000000 ____D C:\Users\nicol\Downloads\Telegram Desktop
2024-04-13 13:53 - 2022-11-21 03:58 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Telegram Desktop
2024-04-13 13:45 - 2022-11-21 02:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-13 11:07 - 2024-02-08 16:25 - 000000000 ____D C:\Users\nicol\AppData\Local\CiscoSparkLauncher
2024-04-13 11:06 - 2024-02-08 15:03 - 000000000 ____D C:\Users\nicol\AppData\Local\WebEx
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-13 11:06 - 2022-11-21 02:42 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-13 10:17 - 2022-11-21 03:05 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2024-04-13 10:08 - 2022-11-21 03:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-13 10:07 - 2022-11-21 02:50 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-12 17:56 - 2022-11-21 02:42 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-12 17:56 - 2022-11-21 02:41 - 000000000 ____D C:\WINDOWS\INF
2024-04-12 17:27 - 2023-05-25 11:31 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-12 17:27 - 2022-11-21 03:07 - 000000000 ___RD C:\Users\nicol\OneDrive
2024-04-12 17:17 - 2024-02-08 16:25 - 000000000 ____D C:\Users\nicol\AppData\Local\CiscoSpark
2024-04-12 17:09 - 2023-09-04 22:21 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2024-04-12 17:09 - 2023-07-18 23:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-12 17:09 - 2023-07-18 23:13 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-12 17:09 - 2023-07-18 23:13 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-12 10:05 - 2022-11-21 02:59 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-12 10:05 - 2022-11-21 02:43 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-12 10:05 - 2022-11-21 02:43 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-12 09:58 - 2022-11-21 02:50 - 000008192 ___SH C:\DumpStack.log.tmp
2024-04-12 09:58 - 2022-11-21 02:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-12 09:57 - 2022-11-21 02:38 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-12 07:22 - 2023-10-16 20:06 - 000001050 _____ C:\Users\Public\Desktop\Proton VPN.lnk
2024-04-12 07:22 - 2023-10-16 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2024-04-11 06:00 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-11 04:42 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-10 08:22 - 2022-11-21 03:05 - 000000000 ____D C:\Users\nicol\AppData\Local\Packages
2024-04-10 08:22 - 2022-11-21 02:42 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-10 08:20 - 2023-12-23 11:32 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-10 08:20 - 2022-11-21 03:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-10 08:20 - 2022-11-21 02:50 - 000336280 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-10 08:20 - 2022-11-21 02:42 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-10 08:19 - 2022-11-21 02:39 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-10 08:17 - 2022-11-21 02:53 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-10 08:14 - 2022-11-23 00:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 08:12 - 2022-11-23 00:05 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 08:12 - 2022-11-21 02:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-05 08:07 - 2022-11-21 03:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-03 21:57 - 2023-07-18 23:14 - 000000000 ____D C:\Users\nicol\AppData\Roaming\com.adobe.dunamis
2024-04-03 16:41 - 2022-11-21 02:50 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-03 16:41 - 2022-11-21 02:50 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-01 17:01 - 2023-10-12 19:52 - 000000000 ____D C:\Users\nicol\AppData\Local\Notepad
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================