Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02 Exécuté par Jeannot (administrateur) sur DESKTOP-PE74M4S (Hewlett-Packard ) (23-11-2023 20:56:20) Exécuté depuis C:\Users\Jeannot\Pictures\Desktop\FRST64.exe Profils chargés: Jeannot Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3693 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe (C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe (C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Jeannot\AppData\Local\FluxSoftware\Flux\flux.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) P:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3684_none_7dfc270e7c9a3a0b\TiWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3293072 2023-10-12] (Open Source Developer, Dominik Reichl -> Dominik Reichl) HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> ) HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [f.lux] => C:\Users\Jeannot\AppData\Local\FluxSoftware\Flux\flux.exe [1525880 2023-05-18] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [MicrosoftEdgeAutoLaunch_698F5AAFAFCEF6B5468E8799926ABD16] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-397403350-2384213278-3661612861-1001\...\Run: [CCleaner Smart Cleaning] => P:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\us001PC: C:\Windows\System32\spool\prtprocs\x64\us001pc.dll [43520 2014-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2023-08-30] (pdfforge GmbH) [Fichier non signé] HKLM\...\Print\Monitors\us001 Langmon: C:\Windows\system32\us001lm.dll [22528 2014-10-16] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\us016 Langmon: C:\Windows\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\ux00a Langmon: C:\Windows\system32\ux00alm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.160\Installer\chrmstp.exe [2023-11-17] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\Installer\chrmstp.exe [2023-11-16] (Brave Software, Inc. -> Brave Software, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.exe [2023-11-03] (Quick And Easy Software) [Fichier non signé] Startup: C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.exe - Raccourci.lnk [2023-11-05] ShortcutTarget: USB_Disk_Eject.exe - Raccourci.lnk -> C:\Users\Jeannot\Pictures\Desktop\OUTILS\USB_Disk_Eject.exe (Quick And Easy Software) [Fichier non signé] Startup: C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\USB_Disk_Eject.lnk [2023-11-05] ShortcutTarget: USB_Disk_Eject.lnk -> C:\Users\Jeannot\Pictures\Desktop\OUTILS\USB_Disk_Eject.exe (Quick And Easy Software) [Fichier non signé] GroupPolicy: Restriction - Edge <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {CD0446AF-D5F6-4616-85CE-058C20FCE9EC} - \Microsoft\Windows\Shell\FamilySafetyRefreshTask -> Pas de fichier <==== ATTENTION Task: {7D82C845-21F3-4EC9-8DBE-05B97214A664} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{C1DEC92D-F42A-4485-B53C-7BFB70408F42} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {169BE37D-5186-4E92-935B-06D5DDD466DC} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{4D9DF477-21B3-49E4-91A0-746EFEBF1B96} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {189B51BB-B5C2-4F26-915D-AB250FE0A648} - System32\Tasks\CCleaner Update => P:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {0786A820-3C44-4FC4-8B27-21AB0FE4A95C} - System32\Tasks\CCleanerCrashReporting => P:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "P:\Program Files\CCleaner\LOG" --programpath "P:\Program Files\CCleaner" --configpath "P:\Program Files\CCleaner\Setup" --guid "95057bf3-73fe-4a89-badf-c803ad6e0b0c" --version "6.17.10746" --silent Task: {C7ED5CD9-6642-462E-9D02-63F196219657} - System32\Tasks\CCleanerSkipUAC - Jeannot => P:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {2E66B84E-1815-479F-93C2-C42216EA2276} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5340232 2023-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {DB9C9C85-8470-40A4-9352-D5286547BC5F} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [Fichier non signé] Task: {40098571-8C31-4D17-9A1D-8AE08886F75C} - System32\Tasks\GoogleUpdateTaskMachineCore{B9127A75-BAFC-45A5-A724-D514399CED50} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-11-09] (Google LLC -> Google LLC) Task: {70B180AF-2132-4E8C-A853-137565C5A79E} - System32\Tasks\GoogleUpdateTaskMachineUA{291A1676-E66E-4748-82A9-5C1828411274} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-11-09] (Google LLC -> Google LLC) Task: {DCE0E315-88CD-43AE-BF43-A913D2676606} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {F996EFD7-5D20-400E-9E8E-1F9F12EBDD18} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {02963AFB-10A4-42C3-9938-E75AFA014937} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305304 2023-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {10DC7029-8EA1-4A76-AA4E-0445D51AD47F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305304 2023-11-19] (Microsoft Corporation -> Microsoft Corporation) Task: {8A9803FF-F804-4E77-80C7-F8DE77685D28} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {BA2A1C78-109E-414D-9EFF-84376F824598} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\Windows\System32\unifiedconsent.dll [278016 2023-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {2E632C63-100F-4BA8-9E4D-DCDC902B0695} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7C57755A-7F96-48CE-B239-033F352FE01D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E149EA4E-940A-48F7-A7E4-AD6A79DAF06A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {12BEA6DC-3C5C-4E20-A968-ACF26FE65BEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {238F0B00-B4D9-4E76-920D-3DE907FFBB07} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-15] (Microsoft Windows -> Microsoft Corporation) Task: {ED13D22C-1FAF-442F-BB23-C27A64995B35} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {9EB731BB-FBEE-41A0-BBB7-2068B2B53E58} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation) Task: {DDC7CBF6-6617-4022-BB83-C20B64227B87} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2023-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {E71C03AD-C002-4447-A368-49536320D3D4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-397403350-2384213278-3661612861-1001 => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3165576 2023-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {C73DC7A0-E58F-4096-B218-33973B745F1E} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => P:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{428f7f15-bb55-4013-a213-6960668b4f8f}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{428f7f15-bb55-4013-a213-6960668b4f8f}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: li15ou6e.default FF ProfilePath: C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\li15ou6e.default [2023-11-03] FF ProfilePath: C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\q8x6olh3.default-release [2023-11-23] FF Notifications: Mozilla\Firefox\Profiles\q8x6olh3.default-release -> hxxps://www.tv-direct.fr; hxxps://www.letribunaldunet.fr FF Extension: (To Google Translate) - C:\Users\Jeannot\AppData\Roaming\Mozilla\Firefox\Profiles\q8x6olh3.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-10-31] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-10-09] [non signé] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-10-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-11-02] (Microsoft Corporation -> Microsoft Corporation) Brave: ======= BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2023-11-17] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-11-17] BRA Extension: (Brave NTP background images) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-11-05] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-11-17] BRA Extension: (Brave Ads Resources) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\bgifagoclclhhoflocdefiklgodpihog [2023-11-17] BRA Extension: (Wallet Data Files Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-11-17] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-11-17] BRA Extension: (Brave Ad Block Updater (AdGuard Français (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\flnkmpokemfpaajmiimmjeiandgoodgg [2023-11-17] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-17] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-11-05] BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-11-17] BRA Extension: (Brave NTP sponsored images) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2023-11-17] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-11-17] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Jeannot\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-11-05] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-11-05] (Brave Software, Inc. -> BraveSoftware Inc.) S4 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\brave_vpn_helper.exe [2762264 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.) S4 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10797080 2023-11-15] (Brave Software, Inc. -> Brave Software, Inc.) R2 CCleanerPerformanceOptimizerService; P:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12882616 2023-11-11] (Microsoft Corporation -> Microsoft Corporation) S4 Everything; C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools) S4 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001_1\FileSyncHelper.exe [2576264 2023-10-22] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-10-20] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe [1418736 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) S4 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\23.038.0219.0001_1\OneDriveUpdaterService.exe [2883976 2023-10-22] (Microsoft Corporation -> Microsoft Corporation) S4 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [16033712 2023-10-19] (ADLICE -> ) S4 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\spdsvc.exe [508488 2018-06-24] (HP Inc. -> ) S4 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2023-11-02] (Samsung Electronics CO., LTD. -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-11-15] (Microsoft Windows Publisher -> Microsoft Corporation) S4 BraveElevationService1da1290157b3534; "C:\Program Files\BraveSoftware\Brave-Browser\Application\119.1.60.118\elevation_service.exe" [X] S3 Browser; %SystemRoot%\System32\browser.dll [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [222800 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-09-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [14224 2023-03-29] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> ) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-11-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-11-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-11-15] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-11-23 18:14 - 2023-11-23 18:15 - 000740828 _____ C:\Windows\Minidump\112323-22187-01.dmp 2023-11-23 18:14 - 2023-11-23 18:14 - 519050993 _____ C:\Windows\MEMORY.DMP 2023-11-23 12:25 - 2023-11-23 20:56 - 000000000 ____D C:\FRST 2023-11-15 13:32 - 2023-11-15 13:32 - 000000000 ___HD C:\$WinREAgent 2023-11-09 11:32 - 2023-11-17 01:20 - 000002261 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-11-09 11:32 - 2023-11-17 01:20 - 000002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-11-09 11:31 - 2023-11-09 11:31 - 000000000 ____D C:\Program Files\Google 2023-11-09 11:29 - 2023-11-13 18:08 - 000003992 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{291A1676-E66E-4748-82A9-5C1828411274} 2023-11-09 11:29 - 2023-11-13 18:08 - 000003868 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{B9127A75-BAFC-45A5-A724-D514399CED50} 2023-11-05 09:58 - 2023-11-16 09:32 - 000002378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-11-05 09:58 - 2023-11-16 09:32 - 000002337 _____ C:\Users\Public\Desktop\Brave.lnk 2023-11-05 09:58 - 2023-11-05 09:58 - 000000000 ____D C:\ProgramData\BraveSoftware 2023-11-05 09:58 - 2023-11-05 09:58 - 000000000 ____D C:\Program Files\BraveSoftware 2023-11-05 09:56 - 2023-11-15 16:06 - 000003676 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{4D9DF477-21B3-49E4-91A0-746EFEBF1B96} 2023-11-05 09:56 - 2023-11-15 16:06 - 000003452 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{C1DEC92D-F42A-4485-B53C-7BFB70408F42} 2023-11-05 09:56 - 2023-11-05 09:58 - 000000000 ____D C:\Users\Jeannot\AppData\Local\BraveSoftware 2023-11-05 09:56 - 2023-11-05 09:56 - 000000000 ____D C:\Program Files (x86)\BraveSoftware 2023-11-04 18:56 - 2023-11-04 18:56 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-11-04 17:14 - 2023-11-07 14:43 - 000000987 _____ C:\Users\Jeannot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\USB_Disk_Eject.lnk 2023-11-04 15:27 - 2023-11-04 15:27 - 000000000 ____D C:\Users\Jeannot\AppData\LocalLow\Temp 2023-11-02 19:25 - 2023-11-02 19:25 - 000000000 ____D C:\Users\Jeannot\Documents\Nouveau dossier 2023-11-02 19:19 - 2023-11-02 19:19 - 000000000 ____D C:\Windows\twain_64 2023-11-02 19:19 - 2013-06-01 06:13 - 001571160 ____N C:\Windows\TotalUninstaller.exe 2023-11-02 19:19 - 2012-03-14 00:58 - 000166640 _____ (TWAIN Working Group) C:\Windows\system32\TWAINDSM.dll 2023-11-02 19:19 - 2012-03-14 00:58 - 000148728 _____ (TWAIN Working Group) C:\Windows\SysWOW64\TWAINDSM.dll 2023-11-02 19:17 - 2023-11-03 14:03 - 000002786 _____ C:\Windows\system32\Tasks\EPM Preload 2023-11-02 19:17 - 2023-11-02 19:17 - 000000000 ____D C:\Program Files\Common Files\Common Desktop Agent 2023-11-02 19:17 - 2023-11-02 19:17 - 000000000 ____D C:\Program Files (x86)\Samsung Printers 2023-11-02 19:17 - 2022-02-24 03:06 - 000184168 _____ C:\Windows\system32\us016ci.exe 2023-11-02 19:08 - 2023-11-02 19:08 - 000000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller 2023-11-02 19:08 - 2023-11-02 19:08 - 000000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate 2023-11-02 18:56 - 2018-08-28 14:25 - 000018636 ____N C:\Windows\SysWOW64\spddata.xml 2023-11-02 18:56 - 2018-06-24 10:38 - 000508488 ____N C:\Windows\SysWOW64\spdsvc.exe 2023-11-02 18:34 - 2023-11-02 19:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers 2023-11-02 17:37 - 2023-11-02 17:37 - 000007605 _____ C:\Users\Jeannot\AppData\Local\Resmon.ResmonCfg 2023-11-02 17:13 - 2015-02-02 17:52 - 000158016 _____ C:\Windows\system32\us001ci.exe 2023-11-02 17:13 - 2014-10-16 06:25 - 000226424 _____ C:\Windows\system32\SBuySupplies.exe 2023-11-02 17:07 - 2015-02-04 05:41 - 000158016 _____ C:\Windows\system32\ux00aci.exe 2023-11-02 17:05 - 2023-11-09 20:13 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Samsung 2023-11-02 17:05 - 2023-11-09 20:12 - 000000000 ____D C:\Program Files (x86)\Samsung 2023-11-02 17:05 - 2023-11-02 19:18 - 000000000 ____D C:\ProgramData\Samsung 2023-11-02 17:05 - 2023-11-02 18:34 - 000143664 ____N C:\Windows\SysWOW64\SecUPDUtilSvc.exe 2023-11-02 17:05 - 2023-11-02 18:34 - 000143664 ____N C:\Windows\system32\SecUPDUtilSvc.exe 2023-11-02 17:05 - 2023-11-02 17:05 - 000000000 ____D C:\ProgramData\SSScan 2023-11-02 17:05 - 2018-06-24 10:38 - 002095688 ____N C:\Windows\SysWOW64\DlgSearchEngine.dll 2023-11-02 17:05 - 2016-08-10 12:07 - 002847744 ____N C:\Windows\system32\DlgSearchEngine.dll 2023-11-02 17:05 - 2015-08-17 14:55 - 000158528 _____ C:\Windows\wiainst64.exe 2023-11-02 17:05 - 2015-08-17 14:42 - 000169472 ____N C:\Windows\system32\StatusMessage.dll 2023-11-02 17:05 - 2015-08-17 14:42 - 000124928 ____N C:\Windows\SysWOW64\StatusMessage.dll 2023-11-02 11:14 - 2023-11-02 11:14 - 000000000 ____D C:\Users\Jeannot\AppData\Local\SaRALogs 2023-11-01 18:42 - 2023-11-15 22:06 - 003515040 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPSuite.exe 2023-10-28 18:07 - 2023-10-28 18:12 - 000000000 _____ C:\Users\Jeannot\AppData\Local\{927C7461-5BA7-4516-A42F-BB97C10FCC3B} 2023-10-26 10:02 - 2023-10-26 10:05 - 000000000 ____D C:\ProgramData\RogueKiller 2023-10-26 10:02 - 2023-10-26 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2023-10-26 10:02 - 2023-10-26 10:02 - 000000000 ____D C:\Program Files\RogueKiller ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-11-23 20:55 - 2023-08-27 10:36 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-11-23 20:54 - 2023-09-13 07:14 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\ZHP 2023-11-23 20:46 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-11-23 20:22 - 2023-08-27 10:25 - 000000000 ____D C:\Program Files (x86)\Google 2023-11-23 20:22 - 2023-05-05 13:24 - 000000000 ____D C:\Windows\SystemTemp 2023-11-23 19:56 - 2023-10-05 23:22 - 003346080 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPCleaner.exe 2023-11-23 19:56 - 2023-08-27 10:10 - 000000000 ____D C:\Users\Jeannot 2023-11-23 19:32 - 2023-08-27 18:25 - 000000000 ____D C:\Users\Jeannot\Documents\Fichiers Outlook 2023-11-23 18:18 - 2023-08-27 10:09 - 001761484 _____ C:\Windows\system32\PerfStringBackup.INI 2023-11-23 18:18 - 2019-12-07 15:50 - 000774544 _____ C:\Windows\system32\perfh00C.dat 2023-11-23 18:18 - 2019-12-07 15:50 - 000144692 _____ C:\Windows\system32\perfc00C.dat 2023-11-23 18:18 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2023-11-23 18:16 - 2023-10-04 11:07 - 000000000 ____D C:\Windows\Minidump 2023-11-23 18:15 - 2023-09-13 07:23 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Malwarebytes 2023-11-23 18:14 - 2023-08-27 09:59 - 000008192 ___SH C:\DumpStack.log.tmp 2023-11-23 18:14 - 2023-08-27 09:59 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-11-23 18:14 - 2023-08-27 09:59 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-11-23 12:32 - 2023-08-27 10:10 - 000000000 ___RD C:\Users\Jeannot\telechargement 2023-11-23 12:27 - 2023-09-21 13:13 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\KeePass 2023-11-22 14:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-11-22 14:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2023-11-21 12:20 - 2023-10-22 12:39 - 000000000 ____D C:\Program Files\Microsoft Office 2023-11-18 23:11 - 2023-09-14 12:50 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2023-11-18 23:10 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF 2023-11-18 23:07 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-11-18 10:53 - 2023-08-27 10:12 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Packages 2023-11-18 10:44 - 2023-08-27 09:59 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-11-17 09:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports 2023-11-16 21:19 - 2023-10-06 09:14 - 000000000 ____D C:\Users\Jeannot\Documents\TUTO KEEPASS 2023-11-16 17:32 - 2023-09-21 18:40 - 000020615 _____ C:\Users\Jeannot\Documents\Database.kdbx 2023-11-16 17:03 - 2023-08-27 10:57 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\Word 2023-11-15 20:35 - 2023-08-27 17:08 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\Excel 2023-11-15 16:10 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-11-15 16:05 - 2023-08-27 09:59 - 000439128 _____ C:\Windows\system32\FNTCACHE.DAT 2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ___SD C:\Windows\system32\AppV 2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-11-15 16:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-11-15 16:03 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\SysWOW64\fr 2023-11-15 16:03 - 2019-12-07 15:50 - 000000000 ____D C:\Windows\system32\fr 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2023-11-15 16:03 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-11-15 16:03 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2023-11-15 16:02 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2023-11-15 14:03 - 2023-08-27 09:59 - 000000000 ____D C:\Windows\system32\Drivers\wd 2023-11-15 13:59 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2023-11-15 13:58 - 2019-12-07 15:53 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2023-11-15 13:58 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2023-11-15 13:58 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2023-11-15 13:50 - 2023-08-27 10:54 - 000416138 __RSH C:\bootmgr 2023-11-15 13:47 - 2023-08-27 10:01 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-11-15 12:48 - 2023-08-27 14:01 - 000000000 ____D C:\Windows\system32\MRT 2023-11-15 12:43 - 2023-08-27 14:01 - 182871392 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-11-12 09:11 - 2023-08-27 10:36 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-11-12 09:11 - 2023-08-27 10:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-11-09 20:13 - 2023-08-30 12:28 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-11-09 20:11 - 2023-10-20 21:56 - 000000000 ____D C:\AdwCleaner 2023-11-09 11:32 - 2023-08-27 10:24 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Google 2023-11-08 23:31 - 2023-08-27 11:39 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Everything 2023-11-08 23:31 - 2023-08-27 10:32 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Everything 2023-11-08 22:18 - 2023-08-27 09:59 - 000003676 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-11-08 18:12 - 2023-08-27 10:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-11-07 15:01 - 2023-08-29 22:26 - 000000000 ____D C:\Users\Jeannot\AppData\Local\D3DSCache 2023-11-07 06:23 - 2023-08-27 16:29 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job 2023-11-05 09:32 - 2023-09-16 14:44 - 000000000 ____D C:\Users\Jeannot\AppData\Local\CrashDumps 2023-11-05 09:31 - 2023-08-27 16:29 - 000003474 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting 2023-11-05 09:29 - 2023-08-27 16:29 - 000002256 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Jeannot 2023-11-03 14:03 - 2023-09-24 07:40 - 000002648 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask 2023-11-03 14:03 - 2023-08-27 09:59 - 000003452 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-11-03 14:02 - 2023-08-27 11:28 - 000003382 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{42791226-B343-4066-A734-2BC14728963A} 2023-11-03 13:00 - 2023-08-27 10:20 - 000000000 ____D C:\Users\Jeannot\AppData\Roaming\Microsoft\MMC 2023-11-02 19:21 - 2023-08-27 10:12 - 000000000 ____D C:\Users\Jeannot\AppData\Local\VirtualStore 2023-11-02 18:07 - 2023-08-27 10:47 - 000000000 ____D C:\Users\Jeannot\AppData\Local\ElevatedDiagnostics 2023-11-02 11:32 - 2023-08-30 10:21 - 000000000 ____D C:\Users\Jeannot\AppData\Local\Deployment 2023-10-29 11:01 - 2023-08-28 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2023-10-27 19:19 - 2023-08-27 14:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-10-24 21:50 - 2023-08-27 10:12 - 000000000 ____D C:\ProgramData\Packages 2023-10-24 21:48 - 2023-08-27 10:15 - 000000000 ____D C:\Users\Jeannot\AppData\Local\PlaceholderTileLogoFolder ==================== Fichiers à la racine de certains dossiers ======== 2023-10-05 23:22 - 2023-11-23 19:56 - 003346080 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPCleaner.exe 2023-11-01 18:42 - 2023-11-15 22:06 - 003515040 _____ (Nicolas Coolman) C:\Users\Jeannot\ZHPSuite.exe 2023-08-27 19:54 - 2023-08-27 19:54 - 000051886 _____ () C:\Users\Jeannot\AppData\Roaming\Valeurs séparées par une virgule.ADR 2023-11-02 17:37 - 2023-11-02 17:37 - 000007605 _____ () C:\Users\Jeannot\AppData\Local\Resmon.ResmonCfg 2023-10-28 18:07 - 2023-10-28 18:12 - 000000000 _____ () C:\Users\Jeannot\AppData\Local\{927C7461-5BA7-4516-A42F-BB97C10FCC3B} ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================