Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28.07.2024 Exécuté par cauli (administrateur) sur DESKTOP-HJ5G50R (MSI MS-7721) (29-07-2024 11:33:33) Exécuté depuis C:\Users\cauli\Desktop\FRST64.exe Profils chargés: cauli Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4651 (X64) Langue: Français (France) Navigateur par défaut: "C:\Users\cauli\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1" Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Users\cauli\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\cauli\AppData\Local\Programs\Opera\112.0.5197.30\opera_crashreporter.exe (explorer.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\cauli\AppData\Local\FluxSoftware\Flux\flux.exe (explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\cauli\AppData\Local\Programs\Opera\opera.exe <31> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files\Windscribe\Windscribe.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_355ca23dd63f0b3b\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (TunnelBear (McAfee Canada ULC) -> TunnelBear) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe (services.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files\Windscribe\WindscribeService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\cauli\AppData\Local\Microsoft\OneDrive\24.132.0701.0002\FileCoAuth.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102800 2021-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [ACUW12FR] => C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\acdIDInTouch2.exe [2145752 2018-08-16] (ACD Systems International Inc. -> ACD Systems) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Policies\Explorer: [NoThumbnailCache] 0 HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [f.lux] => C:\Users\cauli\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-22] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [1Password] => C:\Users\cauli\AppData\Local\1Password\app\7\1Password.exe [5318144 2019-04-22] (AgileBits Inc.) [Fichier non signé] HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [ACDSeeCommanderUltimate12] => C:\Program Files\ACD Systems\ACDSee Ultimate\12.0\ACDSeeCommanderUltimate12.exe [4987368 2018-10-22] (ACD Systems International Inc. -> ) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [Opera Stable] => C:\Users\cauli\AppData\Local\Programs\Opera\opera.exe [1592224 2024-07-23] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [MicrosoftEdgeAutoLaunch_DB1B3A68C7DBDF22034974F7188733D0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814848 2024-07-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [com.messenger] => C:\Users\cauli\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin (Pas de fichier) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [Web Companion] => C:\Users\cauli\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe [3429016 2024-04-28] (7270356 Canada Inc. -> Lavasoft) <==== ATTENTION HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Run: [Windscribe] => C:\Program Files\Windscribe\Windscribe.exe [8077936 2024-07-16] (Windscribe Limited -> Windscribe Limited) HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Policies\Explorer: [NoThumbnailCache] 0 HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2015-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65096 2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\WINDOWS\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.) HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2015-11-24] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\PEPrinterMonitor.dll [285232 2022-06-22] (Wondershare Technology Co.,Ltd -> Wondershare Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-3605AD5C0A0C}] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-CE9B79C4B19D}] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f InternetURL: C:\Users\cauli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ExtExport.org.url -> URL: file:///C:\PROGRA~3\Assembly\ExtExport.exe BootExecute: autocheck autochk * ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {3CB04AD3-91CB-4893-9D11-B374240D5A24} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {39BCB68C-B496-443E-9F6C-831812B51D2C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {9DACAFA2-F663-492E-9C48-32670D5F18A0} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5754336 2024-07-09] (Microsoft Windows -> Microsoft Corporation) Task: {BA518C97-DCDF-4F54-B8D2-9A530A92F2ED} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1005590070-1944480240-3661502221-1001 => C:\Users\cauli\AppData\Local\Programs\Messenger\MessengerHelper.exe [2192632 2024-07-05] (Facebook, Inc. -> Meta Platforms, Inc.) Task: {9738C98B-A687-4D9E-8605-A65E309FD68C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [666960 2022-11-18] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus). Task: {445C19D2-964A-4E30-B1C3-EC4A29EE5064} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [712016 2022-11-18] (Mozilla Corporation -> Mozilla Foundation) Task: {FF88208F-0914-4508-81E4-857477DCBEE0} - System32\Tasks\Opera scheduled assistant Autoupdate 1582270519 => C:\Users\cauli\AppData\Local\Programs\Opera\launcher.exe [1592224 2024-07-23] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\cauli\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {23F50750-93A7-4888-B25B-CE45F044D40F} - System32\Tasks\Opera scheduled Autoupdate 1561501258 => C:\Users\cauli\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5770656 2024-07-18] (Opera Norway AS -> Opera Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 08 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 09 C:\WINDOWS\SysWOW64\wlidNSP.dll [41984 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\WINDOWS\system32\wlidnsp.dll [67072 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 09 C:\WINDOWS\system32\wlidnsp.dll [67072 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Winsock: Catalog5-x64 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{75ba2f09-49d5-44c3-a42a-54ce39eac29c}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e84eb4de-0a39-4803-86f9-24157810d1d7}: [DhcpNameServer] 172.18.10.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\cauli\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-27] Edge Extension: (Google Docs hors connexion) - C:\Users\cauli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30] Edge Extension: (Edge relevant text changes) - C:\Users\cauli\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] FireFox: ======== FF DefaultProfile: yyde7kuo.default FF ProfilePath: C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\yyde7kuo.default [2024-07-05] FF Homepage: Mozilla\Firefox\Profiles\yyde7kuo.default -> hxxps:// FF NewTab: Mozilla\Firefox\Profiles\yyde7kuo.default -> hxxps:// FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\yyde7kuo.default\Extensions\sp@avast.com.xpi [2019-06-24] FF Extension: (Avast Online Security) - C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\yyde7kuo.default\Extensions\wrc@avast.com.xpi [2019-06-24] FF ProfilePath: C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587 [2024-07-05] FF Homepage: Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587 -> hxxps:// FF NewTab: Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587 -> hxxps:// FF Notifications: Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587 -> hxxps://www.lesbonsnumeros.com FF Extension: (1Password – Gestionnaire de mots de passe) - C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587\Extensions\{d634138d-c276-4fc8-924b-40a0ea21d284}.xpi [2024-05-03] FF SearchPlugin: C:\Users\cauli\AppData\Roaming\Mozilla\Firefox\Profiles\j16oag7a.default-release-1563515665587\searchplugins\Yahoo Search.xml [2024-07-05] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-02-18] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2017-02-27] (Adobe Systems, Inc.) [Fichier non signé] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default [2024-03-25] CHR Extension: (Extension 1Password (app desktop requise)) - C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjjhallfgjeglblehebfpbcfeobpgk [2019-07-12] CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-09-20] CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-09-20] CHR Extension: (Google Docs hors connexion) - C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-20] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cauli\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-31] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] Opera: ======= OPR DefaultProfile: Default ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S4 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [392168 2016-08-31] (Digital Wave Ltd -> Digital Wave Ltd.) S2 KMService; C:\WINDOWS\SysWOW64\srvany.exe [8192 2019-11-19] () [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [9423680 2024-03-31] (Malwarebytes Inc. -> Malwarebytes) S3 RichVideo64; C:\Program Files\CyberLink\Shared Files\RichVideo64.exe [386344 2010-08-19] (CyberLink -> ) S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-05-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [140424 2024-04-19] (TunnelBear (McAfee Canada ULC) -> TunnelBear) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-30] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files\Windscribe\WindscribeService.exe [568432 2024-07-16] (Windscribe Limited -> Windscribe Limited) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvak.inf_amd64_355ca23dd63f0b3b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvak.inf_amd64_355ca23dd63f0b3b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-11-14] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2023-11-14] (Microsoft Corporation) [Fichier non signé] R3 cykbfltrService; C:\WINDOWS\system32\DRIVERS\cykbfltr.sys [19968 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Cypress Semiconductor, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 DxVGrb; C:\WINDOWS\system32\drivers\DxVGrb.sys [222464 2012-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Dexetek) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2023-05-27] (Martin Malik - REALiX -> REALiX(tm)) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-03-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-03-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) R3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> ) S3 phidmice; C:\WINDOWS\System32\drivers\phidmice.sys [33048 2016-07-11] (WDKTestCert idd,131110062695071623 -> ) S3 pmouself; C:\WINDOWS\System32\drivers\pmouself.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) S3 polarbear-split-tunneling; C:\Program Files (x86)\TunnelBear\Drivers\x64\SplitTunnelingDriver.sys [29176 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 pvendrlf; C:\WINDOWS\System32\drivers\pvendrlf.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) R3 Serial; C:\WINDOWS\system32\DRIVERS\wdfserial.sys [89976 2018-04-26] (LG Electronics Inc. -> LG Electronics Inc.) S3 sprdvcom; C:\WINDOWS\system32\DRIVERS\sprdvcom.sys [46024 2023-03-05] (Beijing Unisoc Technologies Co., Ltd. -> SPRD Device) S3 SRS_SSCFilter; C:\WINDOWS\system32\drivers\srs_sscfilter_amd64.sys [346992 2009-12-15] (SRS Labs, Inc -> ) S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2018-02-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2023-07-10] (TunnelBear, Inc. -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20928 2024-03-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [603416 2024-03-30] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-30] (Microsoft Windows -> Microsoft Corporation) S3 WindscribeSplitTunnel; C:\WINDOWS\system32\DRIVERS\WindscribeSplitTunnel.sys [38152 2024-07-16] (Windscribe Limited -> ) R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2024-04-08] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-07-16] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WiseHDInfo; C:\WINDOWS\WiseHDInfo64.dll [33864 2022-12-08] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-07-29 11:33 - 2024-07-29 11:34 - 000024460 _____ C:\Users\cauli\Desktop\FRST.txt 2024-07-29 11:33 - 2024-07-29 11:33 - 000000000 ____D C:\FRST 2024-07-29 11:32 - 2024-07-29 11:32 - 002397184 _____ (Farbar) C:\Users\cauli\Desktop\FRST64.exe 2024-07-27 20:04 - 2024-07-27 20:08 - 1268427730 _____ C:\Users\cauli\Downloads\Road.House.2024.TRUEFRENCH.WEBRip.x264-ALFA.mkv 2024-07-26 14:25 - 2024-07-26 14:49 - 088267091 _____ C:\Users\cauli\Downloads\Mickey3762.3763.pdf 2024-07-26 10:41 - 2024-07-26 10:41 - 000000000 ____D C:\Users\cauli\StartupDis 2024-07-26 10:41 - 2024-07-26 10:41 - 000000000 ____D C:\ProgramData\StartupDis 2024-07-26 10:40 - 2024-07-26 10:40 - 003961612 _____ C:\Users\cauli\Downloads\HiBitStartupManager-Portable (1).zip 2024-07-25 20:18 - 2024-07-25 20:18 - 000000000 ____D C:\Users\cauli\Documents\FeedbackHub 2024-07-25 19:25 - 2024-07-25 19:33 - 000002259 _____ C:\WINDOWS\epplauncher.mif 2024-07-25 17:11 - 2024-07-25 17:11 - 000002451 _____ C:\Users\cauli\Desktop\KMS_Suite.v9.3.EN.bat - Raccourci.lnk 2024-07-25 03:37 - 2024-07-25 03:37 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1005590070-1944480240-3661502221-1001 2024-07-25 03:37 - 2024-07-25 03:37 - 000002421 _____ C:\Users\cauli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-07-24 14:12 - 2024-07-24 14:12 - 000907776 _____ C:\Users\cauli\Downloads\ClasseSortedListCollDavid84 (1).xls 2024-07-24 14:11 - 2024-07-24 14:11 - 000907776 _____ C:\Users\cauli\Downloads\ClasseSortedListCollDavid84.xls 2024-07-23 20:40 - 2024-07-23 20:44 - 014109513 _____ C:\Users\cauli\Downloads\LE BARBECUE FACILE (French Edition)_nodrm (1).pdf 2024-07-23 20:38 - 2024-07-23 20:42 - 014109513 _____ C:\Users\cauli\Downloads\LE BARBECUE FACILE (French Edition)_nodrm.pdf 2024-07-23 20:33 - 2024-07-23 20:33 - 000004296 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1561501258 2024-07-23 20:33 - 2024-07-23 20:33 - 000001390 _____ C:\Users\cauli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2024-07-23 15:56 - 2024-07-23 15:57 - 004816382 _____ C:\Users\cauli\Downloads\Livre De Cuisine Au Wok_ Authentiques Plats Sautés Asiatiques en 50 Recettes (French Edition)_nodrm.pdf 2024-07-23 12:37 - 2024-07-23 12:57 - 074078317 _____ C:\Users\cauli\Downloads\Maxi.Cuisine.Hs.46.pdf 2024-07-23 12:18 - 2024-07-23 12:29 - 069222298 _____ C:\Users\cauli\Downloads\Cuisine.Actuelle.399 (1).pdf 2024-07-22 09:18 - 2024-07-22 09:18 - 000002183 _____ C:\Users\cauli\Desktop\Motorway.lnk 2024-07-21 20:23 - 2024-07-21 20:24 - 010615575 _____ C:\Users\cauli\Desktop\BlueStacks-Support.7z 2024-07-20 12:32 - 2024-07-20 12:32 - 111554709 _____ C:\Users\cauli\Downloads\Mickey 3751.pdf 2024-07-20 12:29 - 2024-07-20 12:29 - 117911985 _____ C:\Users\cauli\Downloads\Mickey 3750.pdf 2024-07-20 12:19 - 2024-07-20 12:19 - 114965283 _____ C:\Users\cauli\Downloads\Mickey 3749.pdf 2024-07-20 11:40 - 2024-07-20 11:53 - 4089713410 _____ C:\Users\cauli\Downloads\Meteor.First.Impact.2022.MULTi.1080p.WEB.H264-DDLPZ.mkv 2024-07-19 20:05 - 2024-07-19 20:53 - 174329318 _____ C:\Users\cauli\Downloads\Picsou579.pdf 2024-07-19 20:03 - 2024-07-19 20:04 - 085240590 _____ C:\Users\cauli\Downloads\Mickey3760.3761.pdf 2024-07-18 20:26 - 2024-07-18 20:26 - 000000000 ____D C:\WINDOWS\system32\compatrel 2024-07-18 19:51 - 2024-07-18 19:51 - 000000761 _____ C:\Users\cauli\Downloads\Objets 3D - Raccourci.lnk 2024-07-18 15:08 - 2024-07-18 15:08 - 000076207 _____ C:\Users\cauli\Downloads\Certificat_situation_administrative_histovec.pdf 2024-07-18 13:57 - 2024-07-18 14:24 - 163541864 _____ C:\Users\cauli\Downloads\Picsou.Magazine.578.pdf 2024-07-17 18:47 - 2024-07-17 19:08 - 076153757 _____ C:\Users\cauli\Downloads\Mickey3756.pdf 2024-07-17 18:39 - 2024-07-17 18:46 - 045033269 _____ C:\Users\cauli\Downloads\Mickey3755.pdf 2024-07-17 10:02 - 2024-07-17 10:02 - 000189562 _____ C:\Users\cauli\Downloads\Projet d-Assurance (1).pdf 2024-07-16 20:46 - 2024-07-16 20:46 - 000095228 _____ C:\Users\cauli\Downloads\Releve d-operations.pdf 2024-07-16 20:45 - 2024-07-16 20:45 - 000189562 _____ C:\Users\cauli\Downloads\Projet d-Assurance.pdf 2024-07-16 20:44 - 2024-07-16 20:44 - 000084448 _____ C:\Users\cauli\Downloads\Demande de resiliation.pdf 2024-07-16 19:21 - 2024-07-16 19:28 - 041389641 _____ C:\Users\cauli\Downloads\Mickey3754.pdf 2024-07-16 18:50 - 2024-07-16 19:03 - 044267891 _____ C:\Users\cauli\Downloads\Mickey3753.pdf 2024-07-16 16:30 - 2024-07-16 16:37 - 042637003 _____ C:\Users\cauli\Downloads\Mickey3752.pdf 2024-07-16 13:49 - 2024-07-16 14:41 - 186947173 _____ C:\Users\cauli\Downloads\Super.Picsou.Geant.241.pdf 2024-07-16 13:46 - 2024-07-16 13:54 - 043897118 _____ C:\Users\cauli\Downloads\Mickey3748.pdf 2024-07-16 12:31 - 2024-07-28 16:33 - 000000000 ____D C:\Program Files\Windscribe 2024-07-16 12:31 - 2024-07-16 12:31 - 000038152 _____ C:\WINDOWS\system32\Drivers\windscribesplittunnel.sys 2024-07-16 12:31 - 2024-07-16 12:31 - 000001066 _____ C:\Users\Public\Desktop\Windscribe.lnk 2024-07-16 12:31 - 2024-07-16 12:31 - 000000000 ____D C:\Users\cauli\AppData\Local\Windscribe 2024-07-16 12:31 - 2024-07-16 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe 2024-07-15 18:12 - 2024-07-15 18:12 - 000352139 _____ C:\Users\cauli\Downloads\C00041330550000000000015205929100001.pdf 2024-07-15 18:10 - 2024-07-15 18:10 - 000322237 _____ C:\Users\cauli\Downloads\C00041330550000000000015127379900001.pdf 2024-07-12 16:52 - 2024-07-12 16:52 - 000022262 _____ C:\Users\cauli\Downloads\AEC_52145348_AQ-022-JA_94811688.pdf 2024-07-12 14:36 - 2024-07-12 14:36 - 000022262 _____ C:\Users\cauli\Downloads\accuse-enregistrement-dces.pdf 2024-07-12 10:39 - 2024-07-12 10:39 - 000011679 _____ C:\Users\cauli\Downloads\TEST EPARGNE.xlsx 2024-07-10 17:18 - 2024-07-10 17:18 - 000093523 _____ C:\Users\cauli\Downloads\COMMANDE - TEST - Bureau - juillet 2024.pdf 2024-07-10 17:15 - 2024-07-10 17:15 - 000143053 _____ C:\Users\cauli\Downloads\COMMANDE xld (1).xlsm 2024-07-10 17:14 - 2024-07-10 17:14 - 000143053 _____ C:\Users\cauli\Downloads\COMMANDE xld.xlsm 2024-07-10 10:31 - 2024-07-10 10:31 - 000792745 _____ C:\Users\cauli\Downloads\Devis Mr et Mme Caulier pour la baie coulissante en double vitrage (2).pdf 2024-07-09 22:18 - 2024-07-09 22:18 - 000021724 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-07-09 22:17 - 2024-07-09 22:17 - 000021724 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-07-09 22:07 - 2024-07-09 22:07 - 000000000 ___HD C:\$WinREAgent 2024-07-07 15:53 - 2024-07-07 15:53 - 000035965 _____ C:\Users\cauli\Downloads\Select loulou.xlsm 2024-07-07 15:51 - 2024-07-07 15:51 - 000016315 _____ C:\Users\cauli\Downloads\Ajustement cellule fusionnee V1 (1).xlsm 2024-07-07 15:50 - 2024-07-07 15:50 - 000016315 _____ C:\Users\cauli\Downloads\Ajustement cellule fusionnee V1.xlsm 2024-07-06 14:19 - 2024-07-06 14:19 - 000054152 _____ C:\Users\cauli\Downloads\Classeur2.xlsm 2024-07-03 16:50 - 2024-07-03 16:50 - 000785757 _____ C:\Users\cauli\Downloads\15776-02 (2).pdf 2024-07-03 10:23 - 2024-07-03 10:23 - 000056259 _____ C:\Users\cauli\Downloads\rapprochement bancaire V4.xlsm 2024-07-02 20:34 - 2024-07-02 20:34 - 000000000 ___SD C:\0.0Dossier Eric - Retraite - Chèque vacances - Pension 2024-07-02 19:23 - 2024-07-02 19:23 - 000021624 _____ C:\Users\cauli\Downloads\USF Test.xlsm 2024-07-02 17:30 - 2024-07-02 17:30 - 000047831 _____ C:\Users\cauli\Downloads\RemboursementSoins15052024.pdf 2024-07-02 17:29 - 2024-07-02 17:29 - 000047739 _____ C:\Users\cauli\Downloads\RemboursementSoins16052024.pdf 2024-07-02 17:28 - 2024-07-02 17:28 - 000048197 _____ C:\Users\cauli\Downloads\PaiementTiers16052024.pdf 2024-07-02 17:18 - 2024-07-02 17:19 - 000266148 _____ C:\Users\cauli\Documents\Séance ostéopaphe Jard sur Mer.pdf 2024-07-01 18:00 - 2024-07-01 18:00 - 000044678 _____ C:\Users\cauli\Downloads\BS00000270_1592 (2).pdf 2024-07-01 18:00 - 2024-07-01 18:00 - 000044678 _____ C:\Users\cauli\Downloads\BS00000270_1592 (1).pdf ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-07-29 11:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-07-29 11:23 - 2020-10-09 18:45 - 000000000 ____D C:\Users\cauli\AppData\Roaming\Microsoft\Windows 2024-07-29 11:20 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-07-29 10:21 - 2019-06-12 19:56 - 000000000 ___RD C:\Users\cauli\OneDrive 2024-07-29 10:19 - 2020-10-09 18:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-07-29 09:47 - 2019-06-26 00:21 - 000000000 ____D C:\Users\cauli\AppData\Local\CrashDumps 2024-07-29 07:42 - 2019-06-13 07:33 - 000000000 ____D C:\Users\cauli\AppData\LocalLow\Mozilla 2024-07-29 05:52 - 2020-10-09 19:02 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-29 05:52 - 2020-10-09 19:02 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-07-28 18:21 - 2020-10-09 18:55 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-07-28 18:21 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat 2024-07-28 18:21 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat 2024-07-28 18:21 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2024-07-28 18:15 - 2024-03-31 01:33 - 000000000 ____D C:\Users\cauli\AppData\Local\Malwarebytes 2024-07-28 18:15 - 2022-09-26 15:58 - 000000000 ____D C:\Users\cauli\AppData\Roaming\Messenger 2024-07-28 18:15 - 2020-10-09 19:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-07-28 18:15 - 2019-06-24 18:38 - 000000000 ____D C:\ProgramData\NVIDIA 2024-07-28 18:14 - 2023-10-20 11:36 - 000008192 ___SH C:\DumpStack.log.tmp 2024-07-28 18:14 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2024-07-28 00:18 - 2020-10-09 18:45 - 000000000 ____D C:\Users\cauli 2024-07-27 20:29 - 2019-08-02 21:46 - 000000000 ____D C:\Users\cauli\AppData\Roaming\vlc 2024-07-27 19:59 - 2019-06-29 07:35 - 000000000 ____D C:\Users\cauli\AppData\Roaming\Microsoft\Excel 2024-07-27 01:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-07-26 19:02 - 2019-07-11 08:09 - 000000000 ____D C:\Users\cauli\AppData\Roaming\Microsoft\Word 2024-07-26 18:56 - 2019-09-12 09:41 - 000000000 ____D C:\Program Files (x86)\Everything 2024-07-26 10:29 - 2019-07-28 23:52 - 000000000 ___SD C:\Double explorer 2024-07-26 07:53 - 2020-06-25 01:02 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-07-26 07:53 - 2020-06-25 01:02 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-07-25 18:06 - 2022-09-26 15:58 - 000000000 ____D C:\Users\cauli\AppData\Local\Messenger 2024-07-25 18:06 - 2019-06-12 19:52 - 000000000 ___SD C:\Users\cauli\AppData\Roaming\Microsoft\Credentials 2024-07-25 03:37 - 2022-04-16 09:20 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1005590070-1944480240-3661502221-1001 2024-07-19 20:01 - 2022-09-26 15:58 - 000002329 _____ C:\Users\cauli\Desktop\Messenger.lnk 2024-07-18 20:28 - 2023-08-09 23:55 - 000665808 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-07-18 20:26 - 2023-12-14 11:14 - 000000000 ____D C:\WINDOWS\InboxApps 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-07-18 20:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-07-18 20:25 - 2021-03-02 22:30 - 000043718 _____ C:\Users\cauli\Desktop\Annonce caravane.odt 2024-07-09 22:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-07-09 22:17 - 2020-10-09 18:44 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-07-09 22:05 - 2019-06-26 08:52 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-07-09 22:01 - 2019-06-26 08:52 - 194135240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-07-06 19:39 - 2019-07-18 08:54 - 000076922 _____ C:\Users\cauli\Desktop\Mes annonces LeBonCoin.odt 2024-07-01 14:11 - 2022-01-18 10:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla ==================== Fichiers à la racine de certains dossiers ======== 2019-09-21 08:54 - 2023-12-23 15:21 - 000000138 _____ () C:\Users\cauli\AppData\Roaming\licecap.ini 2022-03-31 10:21 - 2022-03-31 10:21 - 000000020 ___SH () C:\Users\cauli\AppData\Roaming\Sys11965 DataCollection.dat 2022-03-31 10:21 - 2022-03-31 10:21 - 000000020 ___SH () C:\Users\cauli\AppData\Roaming\System413_DataDB.ind 2020-01-26 12:19 - 2019-10-25 10:52 - 000000701 _____ () C:\Users\cauli\AppData\Roaming\vsound.dll 2021-04-01 21:19 - 2022-09-25 15:36 - 000516582 _____ () C:\Users\cauli\AppData\Local\ars.cache 2021-04-01 21:20 - 2022-09-25 15:37 - 002712865 _____ () C:\Users\cauli\AppData\Local\census.cache 2021-03-31 19:03 - 2021-03-31 19:03 - 000000036 _____ () C:\Users\cauli\AppData\Local\housecall.guid.cache 2019-06-25 00:31 - 2021-04-03 10:30 - 000000615 _____ () C:\Users\cauli\AppData\Local\oobelibMkey.log 2020-01-21 12:20 - 2020-01-21 12:20 - 000006697 _____ () C:\Users\cauli\AppData\Local\recently-used.xbel 2021-08-18 19:28 - 2021-08-18 19:28 - 000007620 _____ () C:\Users\cauli\AppData\Local\Resmon.ResmonCfg 2021-03-31 19:20 - 2022-02-04 16:38 - 000000010 _____ () C:\Users\cauli\AppData\Local\sponge.last.runtime.cache ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================