Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-01-2023
Exécuté par Pascal (administrateur) sur PASCAL (MSI MS-7758) (08-01-2023 20:28:25)
Exécuté depuis C:\Users\mistr\Downloads
Profils chargés: Pascal
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.1335 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\Program Files\NVIDIA Corporation\nview\nviewMain64.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\nview\nviewMain.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenu.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <16>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\nview\nviewMain64.exe <2>
(services.exe ->) (devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcig.inf_amd64_1133903e1e2055b7\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcig.inf_amd64_1133903e1e2055b7\NVWMI\nvWmi64.exe <2>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_422.33900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [226816 2022-05-12] (Open-Shell) [Fichier non signé]
HKU\S-1-5-21-2295137458-3064634654-1794538710-1001\...\Run: [Microsoft Edge Update] => "C:\Users\mistr\AppData\Local\Microsoft\EdgeUpdate\1.3.155.77\MicrosoftEdgeUpdateCore.exe" (Pas de fichier)
HKU\S-1-5-21-2295137458-3064634654-1794538710-1001\...\Run: [MicrosoftEdgeAutoLaunch_B37CF3287AF2FA3D29675976A0524F25] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879368 2023-01-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe [2022-12-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Firefox.lnk [2021-12-07]
ShortcutTarget: Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {010056B9-7207-462D-B4A3-38D35EED5D07} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {0A801E40-8231-4FEA-921E-69A7F5E31233} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\WINDOWS\system32\SecureBootEncodeUEFI.exe [90112 2022-11-09] (Microsoft Windows -> )
Task: {12AAC24A-4B9D-4EC9-A621-2BFA6C360FB9} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1555952 2022-07-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4494E878-820B-416C-A134-0DF2ADD50C96} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {46E7085C-F197-41AA-8234-B349B3A18467} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {81062FBF-4FAE-411F-9439-85AA677C3346} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87F58AB2-C2B7-448E-BD85-7E188304D72C} - System32\Tasks\GoogleUpdateTaskMachineUA{FC83784E-CB48-4F1A-9CB1-2403836FB756} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-21] (Google LLC -> Google LLC)
Task: {B1753724-1BE8-403C-93E8-87C8466DF0CE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C986C5E3-57C5-4D2B-8532-E2DA4C9B17E5} - System32\Tasks\GoogleUpdateTaskMachineCore{4536072C-3E0F-492B-8183-2E6B0230F9DB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-21] (Google LLC -> Google LLC)
Task: {D847AB1C-25A8-457F-8E02-7A92FAB84776} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {FB879071-F53B-471E-AB4F-4562CDC2F756} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dfb51228-2f19-44da-85c3-dccd898206a4}: [DhcpNameServer] 192.168.1.254
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\mistr\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-08]
Edge HomePage: Default -> qwant.com
Edge StartupUrls: Default -> "hxxps://mail01.orange.fr/appsuite/#!&app=io.ox/mail&folder=default0/INBOX","hxxps://webmail1d.orange.fr/webmail/fr_FR/inbox.html?FOLDER=SF_INBOX","hxxps://www.facebook.com/"
Edge DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=opensearch
Edge DefaultSearchKeyword: Default -> qwant.com
Edge DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
Edge Extension: (Halo – Banshee Patrol) - C:\Users\mistr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ciofbccjobonpkdcchgdhiicfjcjpndj [2022-09-09]
Edge Extension: (Qwant) - C:\Users\mistr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eljplgljphmgjhnalbganhenlcapgnne [2022-12-20]
Edge Extension: (uBlock Origin) - C:\Users\mistr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-12-23]

FireFox:
========
FF DefaultProfile: muyoset5.default
FF ProfilePath: C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\muyoset5.default [2022-01-29]
FF ProfilePath: C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release [2023-01-08]
FF Homepage: Mozilla\Firefox\Profiles\ux24b5p4.default-release -> hxxps://mail01.orange.fr/appsuite/#!&app=io.ox/mail&folder=default0/INBOX|hxxps://www.facebook.com/
FF Notifications: Mozilla\Firefox\Profiles\ux24b5p4.default-release -> hxxps://queldelai.fr
FF Extension: (OneTab) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\extension@one-tab.com.xpi [2022-05-10]
FF Extension: (Qwant VIPrivacy) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\qwantcomforfirefox@jetpack.xpi [2022-09-01]
FF Extension: (uBlock Origin) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-12-25]
FF Extension: (Colourful Spectrum) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{2365ada2-af27-463b-9830-071c51531043}.xpi [2022-02-21]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-10]
FF Extension: (Best Bright Christmas by MaDonna) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{3ce68e94-0685-4b09-84c0-0d2cff4301a1}.xpi [2022-01-29]
FF Extension: (summer dawn by candelora) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{51a9bbc8-2d3b-4e5d-9fb4-0fb4019bf4d2}.xpi [2022-01-29]
FF Extension: (Painted sea dreams) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{52cccb91-1a4c-4785-9697-8dd898b5be7e}.xpi [2022-01-29]
FF Extension: (Matrix 1 animated) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{8af4f4ff-a5ce-4e59-b057-5146c9f1ded7}.xpi [2022-01-29]
FF Extension: (Christmas_Lights_03 by candelora) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{aaaa902e-d0aa-4052-8b99-840f02b28b27}.xpi [2022-01-29]
FF Extension: (Flowers on fire) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{ad087853-d443-42e2-97dc-09e11eaabb4f}.xpi [2022-01-29]
FF Extension: (Hacker (Animated)) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{ba344789-d1ee-4222-9c4b-5208529b0ee6}.xpi [2022-02-21]
FF Extension: (Christmas Lights Animation) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{c48107ac-9775-42e5-b553-700c991af522}.xpi [2022-01-29]
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2022-06-10]
FF Extension: (StupidFox Persona) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{e4e191a2-90b2-420a-9317-89f4cda666fa}.xpi [2022-01-29]
FF Extension: (Cars Firefoxed) - C:\Users\mistr\AppData\Roaming\Mozilla\Firefox\Profiles\ux24b5p4.default-release\Extensions\{f29c4a56-63a9-4e3a-9233-f3f2ffaba9a9}.xpi [2022-01-29]

Chrome:
=======
CHR Profile: C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default [2022-02-21]
CHR Extension: (Slides) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-21]
CHR Extension: (Docs) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-21]
CHR Extension: (Google Drive) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-21]
CHR Extension: (YouTube) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-21]
CHR Extension: (Sheets) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-21]
CHR Extension: (Gmail) - C:\Users\mistr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-21]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [6108344 2021-07-13] (devolo AG -> devolo AG)
R2 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4490376 2020-09-18] (Logitech Inc -> Logitech)
R2 NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcig.inf_amd64_1133903e1e2055b7\NVWMI\nvWmi64.exe [4486664 2022-07-28] (Nvidia Corporation -> NVIDIA Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcig.inf_amd64_1133903e1e2055b7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcig.inf_amd64_1133903e1e2055b7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2021-09-13] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2021-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [36496 2021-07-13] (devolo AG -> Riverbed Technology, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 hsstap; \SystemRoot\System32\drivers\hsstap.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-08 20:28 - 2023-01-08 20:30 - 000016844 _____ C:\Users\mistr\Downloads\FRST.txt
2023-01-08 20:28 - 2023-01-08 20:28 - 000000000 ____D C:\Users\mistr\Downloads\FRST-OlderVersion
2023-01-08 20:27 - 2023-01-08 20:29 - 000000000 ____D C:\FRST
2023-01-08 20:27 - 2023-01-08 20:28 - 002376704 _____ (Farbar) C:\Users\mistr\Downloads\FRST64.exe
2023-01-07 23:57 - 2023-01-07 23:57 - 000597270 _____ C:\Users\mistr\Downloads\MAhw4amO8Ko_ZHPDiag-1(1).html
2023-01-07 23:56 - 2023-01-07 23:56 - 000597270 _____ C:\Users\mistr\Downloads\MAhw4amO8Ko_ZHPDiag-1.html
2023-01-07 23:54 - 2023-01-07 23:55 - 000597270 _____ C:\Users\mistr\Desktop\ZHPDiag 1.html
2023-01-07 23:54 - 2023-01-07 23:55 - 000000000 ____D C:\Users\mistr\Desktop\ZHPDiag 1_fichiers
2023-01-07 23:53 - 2023-01-07 23:53 - 001108715 _____ C:\Users\mistr\Downloads\MAhvu5SvVYo_07012023.html
2023-01-07 23:52 - 2023-01-07 23:52 - 000261271 _____ C:\Users\mistr\Desktop\ZHPDiag.txt
2023-01-07 22:20 - 2023-01-07 22:20 - 001108715 _____ C:\Users\mistr\Desktop\07012023.html
2023-01-07 22:20 - 2023-01-07 22:20 - 000000000 ____D C:\Users\mistr\Desktop\07012023_fichiers
2023-01-06 23:21 - 2023-01-06 23:21 - 003305672 _____ (Nicolas Coolman) C:\Users\mistr\Downloads\ZHPCleaner.exe
2023-01-06 23:10 - 2023-01-06 23:10 - 000014140 _____ C:\Users\mistr\Desktop\ZHPCleaner (S).html
2023-01-06 23:10 - 2023-01-06 23:10 - 000006204 _____ C:\Users\mistr\Desktop\ZHPCleaner (S).txt
2023-01-06 22:53 - 2023-01-06 22:53 - 000000000 ____D C:\Users\mistr\AppData\Local\Avast Software
2023-01-06 22:43 - 2023-01-06 22:43 - 000000000 ____D C:\Users\mistr\AppData\Roaming\Avast Software
2023-01-06 22:43 - 2023-01-06 22:43 - 000000000 ____D C:\Users\mistr\AppData\Local\CEF
2023-01-06 22:41 - 2023-01-06 23:21 - 000000875 _____ C:\Users\mistr\Desktop\ZHPCleaner.lnk
2023-01-06 22:41 - 2023-01-06 22:41 - 000065944 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswd2da6f4dc7797632.tmp
2023-01-06 22:40 - 2023-01-06 22:40 - 006300824 _____ (Avira Operations GmbH & Co. KG) C:\Users\mistr\Downloads\avira_fr_sptl1___clbpdi(2).exe
2023-01-06 22:40 - 2023-01-06 22:40 - 003305672 _____ (Nicolas Coolman) C:\Users\mistr\Downloads\zhpcleaner_2023-1-3-1_fr_433513.exe
2023-01-06 22:40 - 2023-01-06 22:40 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2023-01-06 22:39 - 2023-01-06 23:37 - 000000000 ____D C:\Program Files\Avast Software
2023-01-06 22:39 - 2023-01-06 22:40 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-01-06 22:39 - 2023-01-06 22:39 - 000273816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-01-06 22:38 - 2023-01-06 23:37 - 000000000 ____D C:\ProgramData\Avast Software
2023-01-06 22:38 - 2023-01-06 22:38 - 000268488 _____ (AVAST Software) C:\Users\mistr\Downloads\avast_one_free_antivirus.exe
2023-01-06 22:10 - 2023-01-06 22:41 - 000000000 ____D C:\Users\mistr\AppData\Local\ZHP
2023-01-06 22:10 - 2023-01-06 22:10 - 000000865 _____ C:\Users\mistr\Desktop\ZHPDiag.lnk
2023-01-06 22:09 - 2023-01-06 22:10 - 003311816 _____ (Nicolas Coolman) C:\Users\mistr\Downloads\ZHPDiag3.exe
2023-01-06 20:17 - 2023-01-06 22:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-01-05 21:42 - 2023-01-05 21:42 - 000000000 ____D C:\Users\mistr\AppData\Local\mbam
2023-01-05 21:30 - 2023-01-05 21:30 - 002542312 _____ (Malwarebytes) C:\Users\mistr\Downloads\MBSetup(11).exe
2023-01-05 21:30 - 2023-01-05 21:30 - 000000000 ____D C:\Program Files\Malwarebytes
2023-01-05 21:28 - 2023-01-05 21:28 - 002542312 _____ (Malwarebytes) C:\Users\mistr\Downloads\MBSetup(10).exe
2023-01-05 21:26 - 2023-01-05 21:26 - 006300824 _____ (Avira Operations GmbH & Co. KG) C:\Users\mistr\Downloads\avira_fr_sptl1___clbpdi(1).exe
2023-01-03 19:57 - 2023-01-03 19:57 - 000477464 _____ C:\Users\mistr\Desktop\papier carte identité.pdf
2023-01-03 19:49 - 2023-01-03 19:49 - 000431122 _____ C:\Users\mistr\Downloads\perso(1).zip
2023-01-03 19:48 - 2023-01-03 19:48 - 000431122 _____ C:\Users\mistr\Downloads\perso.zip
2022-12-28 21:24 - 2022-12-28 21:24 - 000277019 _____ C:\Users\mistr\Downloads\Planning 202301 - THOMAS Pascal-1.pdf
2022-12-25 10:30 - 2022-12-25 10:30 - 000110416 _____ C:\Users\mistr\Downloads\Avenant CG CDD et Cartes.pdf
2022-12-24 19:00 - 2022-12-24 19:03 - 001902396 _____ C:\WINDOWS\Minidump\122422-46265-01.dmp
2022-12-22 15:57 - 2022-12-22 15:57 - 000273511 _____ C:\Users\mistr\Downloads\Planning 202301 - THOMAS Pascal.pdf
2022-12-21 02:49 - 2022-12-21 02:49 - 000279149 _____ C:\Users\mistr\Downloads\Planning 202210 - THOMAS Pascal-2.pdf
2022-12-21 02:49 - 2022-12-21 02:49 - 000274082 _____ C:\Users\mistr\Downloads\Planning 202209 - THOMAS Pascal.pdf
2022-12-21 02:48 - 2022-12-21 02:48 - 000275649 _____ C:\Users\mistr\Downloads\Planning 202208 - THOMAS Pascal-1.pdf
2022-12-15 19:44 - 2022-12-15 19:44 - 000000000 ___HD C:\$WinREAgent
2022-12-14 20:48 - 2022-12-14 20:48 - 000226734 _____ C:\Users\mistr\Downloads\échographie.pdf
2022-12-14 19:44 - 2022-12-14 19:44 - 000226734 _____ C:\Users\mistr\Downloads\CR-THOMAS-PASCAL-20220419-1.pdf
2022-12-14 19:44 - 2022-12-14 19:44 - 000226734 _____ C:\Users\mistr\Desktop\échographie.pdf
2022-12-09 21:54 - 2022-12-09 21:54 - 001105546 _____ C:\Users\mistr\Downloads\Planning site Schaeffler décembre(1).zip
2022-12-09 21:54 - 2022-12-09 21:54 - 000270359 _____ C:\Users\mistr\Downloads\Planning 202211 - THOMAS Pascal-1.pdf
2022-12-09 21:22 - 2022-12-09 21:22 - 002348186 _____ C:\Users\mistr\Downloads\A15 Mulhouse St Louis Bâle (Du 11 décembre au 15 juillet 2023) .pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-08 20:18 - 2022-02-21 19:34 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-08 20:11 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-01-08 20:06 - 2021-12-07 10:01 - 000000000 ____D C:\Users\mistr\AppData\LocalLow\Mozilla
2023-01-08 20:02 - 2022-02-11 01:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-08 00:07 - 2022-01-27 21:44 - 000000000 ____D C:\ProgramData\NVIDIA
2023-01-08 00:07 - 2022-01-27 21:32 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-08 00:06 - 2022-08-19 00:21 - 000000000 ____D C:\Users\mistr\AppData\Local\OpenShell
2023-01-07 23:52 - 2022-08-23 23:56 - 000000000 ____D C:\Users\mistr\AppData\Roaming\ZHP
2023-01-07 23:36 - 2022-01-27 22:08 - 000000000 ____D C:\Users\mistr\AppData\Local\D3DSCache
2023-01-07 22:14 - 2022-01-27 21:32 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-01-07 22:13 - 2022-01-27 21:32 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-07 22:13 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-07 22:10 - 2022-01-27 21:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-07 21:16 - 2022-01-28 00:37 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-07 21:16 - 2022-01-28 00:37 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-06 22:41 - 2022-01-27 21:31 - 000000000 ____D C:\WINDOWS\INF
2023-01-06 22:15 - 2022-01-29 20:33 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-01-06 22:15 - 2022-01-29 20:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-01-06 22:15 - 2022-01-29 20:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-01-06 20:10 - 2022-01-28 00:37 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-06 20:10 - 2022-01-28 00:37 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-24 19:07 - 2022-01-27 21:56 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-12-24 19:07 - 2022-01-27 21:35 - 000769848 _____ C:\WINDOWS\system32\perfh00C.dat
2022-12-24 19:07 - 2022-01-27 21:35 - 000148146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-12-24 19:03 - 2022-08-13 20:23 - 000000000 ____D C:\WINDOWS\Minidump
2022-12-24 19:00 - 2022-08-13 20:23 - 752176824 _____ C:\WINDOWS\MEMORY.DMP
2022-12-24 19:00 - 2022-01-27 21:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-12-24 19:00 - 2022-01-21 21:52 - 000012288 ___SH C:\DumpStack.log.tmp
2022-12-16 00:36 - 2022-02-21 19:34 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-12-16 00:36 - 2022-02-21 19:34 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-12-16 00:04 - 2022-08-16 19:32 - 000000000 ____D C:\Users\mistr\AppData\Roaming\ExplorerPatcher
2022-12-15 22:28 - 2022-01-27 21:51 - 000000000 ____D C:\Users\mistr
2022-12-15 22:19 - 2022-01-28 00:02 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-12-15 22:19 - 2022-01-28 00:01 - 148633544 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-12-15 22:12 - 2022-01-27 21:42 - 000492072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-12-15 22:10 - 2022-01-27 21:24 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SystemResources
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\SystemApps
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\Provisioning
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-12-15 22:09 - 2022-01-27 21:32 - 000000000 ____D C:\Program Files\Common Files\System
2022-12-15 20:06 - 2022-01-27 21:27 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-12-15 19:52 - 2022-01-27 21:45 - 003110912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-12-14 00:33 - 2022-01-27 21:32 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-12-14 00:23 - 2022-05-19 21:44 - 000000000 ____D C:\Users\mistr\AppData\Local\ElevatedDiagnostics
2022-12-12 18:51 - 2022-01-27 22:09 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2295137458-3064634654-1794538710-1001
2022-12-12 18:51 - 2022-01-27 22:09 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2295137458-3064634654-1794538710-1001
2022-12-12 18:51 - 2022-01-27 22:09 - 000002421 _____ C:\Users\mistr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-12-09 21:26 - 2021-12-06 10:39 - 000000000 ___RD C:\Users\mistr\OneDrive
2022-12-09 00:26 - 2022-01-27 21:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Fichiers à la racine de certains dossiers ========

2021-12-08 12:01 - 2021-04-04 19:47 - 003273368 _____ (Nicolas Coolman) C:\Users\mistr\ZHPDiag3.exe
2021-12-08 12:01 - 2020-03-23 20:57 - 003426688 _____ (Nicolas Coolman) C:\Users\mistr\ZHPSuite.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================