Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.04.2024
Exécuté par Mimi (administrateur) sur DESKTOP-8N74VA3 (MSI MS-7918) (12-04-2024 13:17:52)
Exécuté depuis C:\Users\Mimi\Desktop\FRST64.exe
Profils chargés: Mimi
Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.3447 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <6>
(C:\Windows\SysWOW64\cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [MicrosoftEdgeAutoLaunch_DFCE59279629A7E126EA0BB013656E3E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [Screenpresso] => C:\Users\Mimi\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20342016 2024-04-09] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1965424 2024-04-04] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {8dba68a6-9341-11ee-8afc-7413ea7d8a0b} - "E:\setup.EXE" /AUTORUN
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {ebbeb92d-98d5-11ee-8b03-7413ea7d8a07} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\122.0.6261.58\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.122\Installer\chrmstp.exe [2024-04-11] (Google LLC -> Google LLC)
Startup: C:\Users\Mimi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Studio-Scrap.lnk [2023-12-06]
ShortcutTarget: Notifications de Studio-Scrap.lnk -> C:\Program Files (x86)\Notifications de Studio-Scrap\Notifications de Studio-Scrap.exe (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP)
GroupPolicy\User: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {877BA7AA-787E-4946-827C-61ECC8772393} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mirvol13@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {FFDFB56C-98F1-4520-92DE-7933C985760C} - System32\Tasks\AOMEI Mes sauvegardes 2023-12-13, 13-21-27 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {E3270256-6F0C-4FE2-B2C6-A7B86F55FB45} - System32\Tasks\AOMEI Sauvegarde Système(1) 2023-12-13, 13-23-00 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {EB452BC9-1909-44DD-918F-EA5A9536AA0D} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> )
Task: {796899FB-D03A-4516-9068-2B67C221B65A} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> )
Task: {462A027E-D010-47EE-A793-4029262D9494} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{D302A029-DDFA-4ABD-81B9-AED271B54125} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
Task: {59820188-08BD-401C-A055-A2311EED9110} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {BD85F540-59BE-48F6-AC2D-7736D631BB0E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {C7E6AC1E-235C-4BA6-9D1B-2CB52C792A6D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {EBC140E7-2682-4665-9585-F4FE4DB849CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7A7845B-71FB-48C0-939C-FF6DA27129D3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {95572EEC-B8AC-46B6-8D0E-DE542C38A2D6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2252492-A939-48B9-B39E-2E6891277CE9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {14476BA9-A14C-4DD5-9F90-DF662AC33ECC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168488 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {6CA524EB-DB5C-4034-BB39-ABC8FABCDFDC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {124615C9-B3D6-450E-B077-9ACD953ACF93} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {02CA0A1D-311D-412D-A86D-5942CB968BD4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E50D531E-2301-4C65-BF07-CB2637C70C08} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {22878BCF-2008-4C31-A6CD-3BEC8C492EF8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {16440384-4598-43DC-9E56-E9EE357F749A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {645E1595-7938-4AA9-A1F8-62DFF9BF1427} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4D0551D-0E29-4FB6-8158-A4C5401D2822} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {175CB846-D0A7-46FD-8D37-BBCB1B917A59} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4E88D51-FBE0-41A5-A32D-BFC9E6EB2282} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9D41CECE-5719-4C76-8016-F280A2B9483E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6910591-15EA-4D05-B57D-811340C4D670} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD64098E-B89B-4F57-A92C-FD96B7771EE8} - System32\Tasks\PowerDirectorStyleAgent => C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe [97544 2023-12-05] (CyberLink Corp. -> CyberLink Corp.)
Task: {2DC979C2-58F5-44B9-9934-6EBF8EE6C071} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2023-11-26] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{36c75890-0df5-42b0-8ced-a97f01111896}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpDomain] home
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\356425F583339303F5537484A5: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-11]
Edge HomePage: Default -> hxxps://google.com/
Edge DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=U501DF&PC=U501&q={searchTerms}
Edge DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=U501DF&PC=U501&query={searchTerms}
Edge Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-11-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-11]
Edge Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-04-07]
Edge Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-11-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-07]
Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-04-11]
Edge Extension: (Bing) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2023-11-27]
Edge Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2023-11-27]
Edge Extension: (Edge relevant text changes) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-19]
Edge Extension: (Video DownloadHelper) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2024-04-07]
Edge Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kacbklkbjmnjkhnellgciecdogkkldoj [2023-11-27]
Edge Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-07]
Edge Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-19]
Edge HKLM-x32\...\Edge\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default [2024-04-12]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxps://google.com/
CHR StartupUrls: Default -> "hxxps://google.com/"
CHR Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-02-23]
CHR Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-03-31]
CHR Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2024-02-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-31]
CHR Extension: (Klarna | Achetez maintenant, payez plus tard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2024-04-08]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-11]
CHR Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2024-03-31]
CHR Extension: (Bing) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2024-02-23]
CHR Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2024-02-23]
CHR Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-23]
CHR Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-23]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-11-13] (Intel Corporation -> Intel)
S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-11-13] (Intel Corporation -> Intel)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8882936 2024-04-07] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [625928 2023-12-05] (CyberLink Corp. -> CyberLink)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\RpcAgentSrv.exe [141816 2023-10-30] (SiSoftware SPC -> SiSoftware) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21047096 2024-01-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsaService; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2311.40000.5.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe [312832 2024-01-11] (Microsoft Corporation -> )
S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-12-01] (AOMEI International Network Limited -> )
S3 ampa; C:\Windows\system32\ampa.sys [38320 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-12-01] (AOMEI International Network Limited -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 fse; C:\Windows\System32\drivers\fse.sys [218592 2023-11-26] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt11.sys [233704 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78912 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-26] (Microsoft Windows -> )
R3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20936 2024-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [601376 2024-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-12 13:17 - 2024-04-12 13:18 - 000029825 _____ C:\Users\Mimi\Desktop\FRST.txt
2024-04-12 13:17 - 2024-04-12 13:18 - 000000000 ____D C:\FRST
2024-04-12 13:15 - 2024-04-12 13:16 - 002394112 _____ (Farbar) C:\Users\Mimi\Desktop\FRST64.exe
2024-04-12 13:14 - 2024-04-12 13:14 - 000233704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt11.sys
2024-04-12 13:14 - 2024-04-12 13:14 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2024-04-12 13:14 - 2024-04-12 13:14 - 000000000 ____D C:\Users\Mimi\AppData\LocalLow\IGDump
2024-04-12 13:12 - 2024-04-12 13:12 - 002394112 _____ (Farbar) C:\Users\Mimi\Downloads\FRST64.exe
2024-04-12 10:22 - 2024-04-12 10:22 - 000771570 _____ C:\Windows\system32\perfh00C.dat
2024-04-12 10:22 - 2024-04-12 10:22 - 000148698 _____ C:\Windows\system32\perfc00C.dat
2024-04-11 13:33 - 2024-04-11 13:41 - 000000000 ____D C:\Users\Mimi\Desktop\Gilles Vigneault
2024-04-11 10:30 - 2024-04-11 10:30 - 076172440 _____ (The ClipGrab Project ) C:\Users\Mimi\Downloads\clipgrab-3.9.6-cgde.exe
2024-04-10 21:54 - 2024-04-09 20:36 - 000001379 _____ C:\Users\Mimi\Desktop\Free YouTube Download.lnk
2024-04-10 21:44 - 2024-04-10 21:52 - 000000000 ____D C:\Users\Mimi\Desktop\Quilapayun
2024-04-10 20:44 - 2024-04-10 20:44 - 000001412 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2024-04-10 20:42 - 2024-04-10 20:45 - 000000000 ____D C:\Users\Mimi\Desktop\DVDVideo SOFT
2024-04-10 20:42 - 2024-04-10 20:42 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYouTubeToMP3Converter
2024-04-10 18:47 - 2024-04-10 18:47 - 000001377 _____ C:\Users\Public\Desktop\Free Audio Converter.lnk
2024-04-10 18:46 - 2024-04-10 18:46 - 000000000 ____D C:\Users\Mimi\Desktop\Nouveau dossier
2024-04-10 18:45 - 2024-04-10 18:45 - 000000000 ____D C:\Users\Mimi\Desktop\A INSTALLER
2024-04-10 11:55 - 2024-04-10 11:57 - 000000000 ___HD C:\$WinREAgent
2024-04-09 21:27 - 2024-04-11 13:33 - 038239800 _____ (Digital Wave Ltd ) C:\Users\Mimi\Downloads\FreeGIFMaker_1.3.51.1103_r.exe
2024-04-09 20:46 - 2024-04-10 18:49 - 000000000 ____D C:\Users\Mimi\Documents\Appli Téléchargement
2024-04-09 20:36 - 2024-04-09 20:36 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYTVDownloader
2024-04-09 20:35 - 2024-04-10 20:44 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2024-04-08 15:09 - 2024-04-10 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2024-04-08 15:08 - 2024-04-10 20:44 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\DVDVideoSoft
2024-04-08 14:46 - 2024-04-08 14:46 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2024-04-07 20:03 - 2024-04-07 20:04 - 006970144 _____ (VS Revo Group ) C:\Users\Mimi\Downloads\revosetup.exe
2024-04-05 11:33 - 2024-04-05 11:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-31 21:48 - 2024-03-31 21:48 - 000675010 _____ C:\Users\Mimi\Downloads\takeout-20240331T121830Z-001.zip
2024-03-31 19:38 - 2024-03-31 19:38 - 000000347 _____ C:\Windows\PAGa4.dat
2024-03-31 19:34 - 2024-03-31 19:35 - 080714376 _____ (AOMEI International Network Limited. ) C:\Users\Mimi\Downloads\PAssist_Setup_20240401.11062258.exe
2024-03-31 19:12 - 2024-03-31 19:12 - 000000000 ____D C:\Windows\SysWOW64\DDFs
2024-03-31 19:05 - 2024-03-31 19:05 - 000024320 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-31 19:04 - 2024-03-31 19:04 - 000024320 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-12 13:16 - 2023-11-26 20:50 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-12 13:14 - 2024-01-13 15:51 - 000000000 ____D C:\Program Files\TeamViewer
2024-04-12 13:14 - 2023-12-01 11:47 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-04-12 13:14 - 2023-11-30 12:40 - 000000000 ____D C:\Users\Mimi\AppData\Local\Malwarebytes
2024-04-12 13:14 - 2023-11-29 21:55 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-12 13:13 - 2023-11-26 18:33 - 000000000 ____D C:\Users\Mimi
2024-04-12 13:13 - 2023-11-26 18:27 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-12 13:13 - 2023-11-26 18:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-12 13:13 - 2022-05-07 07:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-04-12 11:03 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-12 10:26 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-12 10:25 - 2023-11-29 19:46 - 000000000 ____D C:\Users\Mimi\AppData\Local\Adobe
2024-04-12 10:22 - 2023-11-26 18:33 - 001713522 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-12 10:22 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-04-11 13:29 - 2023-11-27 16:33 - 000000000 ____D C:\Users\Mimi\AppData\Local\CrashDumps
2024-04-11 09:36 - 2023-11-26 20:40 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-10 22:23 - 2023-12-06 15:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-10 22:23 - 2023-11-26 18:27 - 005383520 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-10 22:22 - 2023-11-26 20:16 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-10 12:04 - 2023-11-26 18:44 - 000000000 ____D C:\Windows\system32\MRT
2024-04-10 12:02 - 2023-11-26 18:44 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 12:02 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-04-10 12:00 - 2023-11-26 18:31 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-09 22:15 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\D3DSCache
2024-04-09 19:29 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AomeiBR
2024-04-09 14:07 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\Packages
2024-04-09 13:20 - 2023-12-05 15:59 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001
2024-04-09 13:20 - 2023-12-05 15:59 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-09 13:20 - 2023-12-05 15:59 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-09 13:14 - 2023-11-29 21:57 - 000001024 ____H C:\SYSTAG.BIN
2024-04-08 14:55 - 2023-12-01 14:26 - 000001183 _____ C:\Users\Public\Desktop\HiBit Uninstaller.lnk
2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiBit Uninstaller
2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\Program Files (x86)\HiBit Uninstaller
2024-04-07 21:26 - 2023-11-26 18:27 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-07 21:20 - 2023-12-09 22:55 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2024-04-07 20:20 - 2023-12-05 16:10 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\Microsoft\Word
2024-04-05 11:33 - 2023-12-05 15:54 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-05 11:33 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-05 11:18 - 2023-11-26 18:27 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 11:18 - 2023-11-26 18:27 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-31 19:51 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AOMEIPA
2024-03-31 19:38 - 2023-11-27 19:53 - 000000432 _____ C:\Windows\SysWOW64\Upgrade.dat
2024-03-31 19:38 - 2023-11-27 19:53 - 000000208 _____ C:\Windows\SysWOW64\PaBakConfig.dat
2024-03-31 19:38 - 2023-11-27 19:45 - 000001024 ____H C:\AMTAG.BIN
2024-03-31 19:38 - 2023-11-27 19:45 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant
2024-03-31 19:33 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-03-31 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-31 19:29 - 2023-11-26 18:29 - 000000000 ____D C:\ProgramData\Packages
2024-03-31 19:12 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\DDFs
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-03-31 19:12 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\servicing
2024-03-31 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Mimi (administrateur) sur DESKTOP-8N74VA3 (MSI MS-7918) (12-04-2024 13:17:52)
Exécuté depuis C:\Users\Mimi\Desktop\FRST64.exe
Profils chargés: Mimi
Plate-forme: Microsoft Windows 11 Professionnel Version 22H2 22621.3447 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe <6>
(C:\Windows\SysWOW64\cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2413.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [MicrosoftEdgeAutoLaunch_DFCE59279629A7E126EA0BB013656E3E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4063784 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [Screenpresso] => C:\Users\Mimi\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [20342016 2024-04-09] (Learnpulse -> Learnpulse)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1965424 2024-04-04] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {8dba68a6-9341-11ee-8afc-7413ea7d8a0b} - "E:\setup.EXE" /AUTORUN
HKU\S-1-5-21-2123058746-3684523357-4272769664-1001\...\MountPoints2: {ebbeb92d-98d5-11ee-8b03-7413ea7d8a07} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\122.0.6261.58\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.122\Installer\chrmstp.exe [2024-04-11] (Google LLC -> Google LLC)
Startup: C:\Users\Mimi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notifications de Studio-Scrap.lnk [2023-12-06]
ShortcutTarget: Notifications de Studio-Scrap.lnk -> C:\Program Files (x86)\Notifications de Studio-Scrap\Notifications de Studio-Scrap.exe (CENTRE DE DEVELOPPEMENT DE L'INFORMATIQUE PERSONNELLE SAS -> CDIP)
GroupPolicy\User: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {877BA7AA-787E-4946-827C-61ECC8772393} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mirvol13@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {FFDFB56C-98F1-4520-92DE-7933C985760C} - System32\Tasks\AOMEI Mes sauvegardes 2023-12-13, 13-21-27 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {E3270256-6F0C-4FE2-B2C6-A7B86F55FB45} - System32\Tasks\AOMEI Sauvegarde Système(1) 2023-12-13, 13-23-00 => C:\Program Files (x86)\AOMEI\AOMEI Backupper\ABLaucher.exe [497096 2022-08-31] (AOMEI International Network Limited -> AOMEI International Network Limited)
Task: {EB452BC9-1909-44DD-918F-EA5A9536AA0D} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> )
Task: {796899FB-D03A-4516-9068-2B67C221B65A} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2317064 2023-12-05] (CyberLink Corp. -> )
Task: {462A027E-D010-47EE-A793-4029262D9494} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{D302A029-DDFA-4ABD-81B9-AED271B54125} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
Task: {59820188-08BD-401C-A055-A2311EED9110} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {BD85F540-59BE-48F6-AC2D-7736D631BB0E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation)
Task: {C7E6AC1E-235C-4BA6-9D1B-2CB52C792A6D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {EBC140E7-2682-4665-9585-F4FE4DB849CC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7A7845B-71FB-48C0-939C-FF6DA27129D3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {95572EEC-B8AC-46B6-8D0E-DE542C38A2D6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2252492-A939-48B9-B39E-2E6891277CE9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {14476BA9-A14C-4DD5-9F90-DF662AC33ECC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168488 2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {6CA524EB-DB5C-4034-BB39-ABC8FABCDFDC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {124615C9-B3D6-450E-B077-9ACD953ACF93} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {02CA0A1D-311D-412D-A86D-5942CB968BD4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E50D531E-2301-4C65-BF07-CB2637C70C08} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {22878BCF-2008-4C31-A6CD-3BEC8C492EF8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {16440384-4598-43DC-9E56-E9EE357F749A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {645E1595-7938-4AA9-A1F8-62DFF9BF1427} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4D0551D-0E29-4FB6-8158-A4C5401D2822} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {175CB846-D0A7-46FD-8D37-BBCB1B917A59} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4E88D51-FBE0-41A5-A32D-BFC9E6EB2282} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9D41CECE-5719-4C76-8016-F280A2B9483E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6910591-15EA-4D05-B57D-811340C4D670} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD64098E-B89B-4F57-A92C-FD96B7771EE8} - System32\Tasks\PowerDirectorStyleAgent => C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe [97544 2023-12-05] (CyberLink Corp. -> CyberLink Corp.)
Task: {2DC979C2-58F5-44B9-9934-6EBF8EE6C071} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [200704 2023-11-26] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{36c75890-0df5-42b0-8ced-a97f01111896}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\2556075616475627F523E24374F5641424146414: [DhcpDomain] home
Tcpip\..\Interfaces\{bb41a677-c9bb-42c8-8374-23b349938b4c}\356425F583339303F5537484A5: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-11]
Edge HomePage: Default -> hxxps://google.com/
Edge DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=U501DF&PC=U501&q={searchTerms}
Edge DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=U501DF&PC=U501&query={searchTerms}
Edge Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-11-27]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-11]
Edge Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-04-07]
Edge Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-11-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-07]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-04-07]
Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-04-11]
Edge Extension: (Bing) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2023-11-27]
Edge Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2023-11-27]
Edge Extension: (Edge relevant text changes) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-19]
Edge Extension: (Video DownloadHelper) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmkaglaafmhbcpleggkmaliipiilhldn [2024-04-07]
Edge Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kacbklkbjmnjkhnellgciecdogkkldoj [2023-11-27]
Edge Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-07]
Edge Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-19]
Edge HKLM-x32\...\Edge\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2023-11-13] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default [2024-04-12]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxps://google.com/
CHR StartupUrls: Default -> "hxxps://google.com/"
CHR Extension: (Google Traduction) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-02-23]
CHR Extension: (IG Downloader) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpgaheeihidjmolbakklolchdplenjai [2024-03-31]
CHR Extension: (Signets iCloud) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2024-02-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-31]
CHR Extension: (Klarna | Achetez maintenant, payez plus tard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfapbcheiepjppjbnkphkmegjlipojba [2024-04-08]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-11]
CHR Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2024-03-31]
CHR Extension: (Bing) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jekkhdbkcbpelmgeekmdjnfapnecfmha [2024-02-23]
CHR Extension: (Save to Facebook) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2024-02-23]
CHR Extension: (Video Downloader PLUS) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2024-04-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-23]
CHR Extension: (Chromebook Recovery Utility) - C:\Users\Mimi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pocpnlppkickgojjlmhdmidojbmbodfm [2024-02-23]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ilmjbgiecbgkmepblgofekmfbibffafn] - C:\\Users\\Mimi\\AppData\\Local\\apps.crx
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-11-13] (Intel Corporation -> Intel)
S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-11-13] (Intel Corporation -> Intel)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2438128 2023-11-11] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8882936 2024-04-07] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [625928 2023-12-05] (CyberLink Corp. -> CyberLink)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\RpcAgentSrv.exe [141816 2023-10-30] (SiSoftware SPC -> SiSoftware) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-03-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21047096 2024-01-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsaService; C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2311.40000.5.0_x64__8wekyb3d8bbwe\WsaService\WsaService.exe [312832 2024-01-11] (Microsoft Corporation -> )
S2 DigitalWave.Update.Service; "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5292bbfbf575e2d2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-12-01] (AOMEI International Network Limited -> )
S3 ampa; C:\Windows\system32\ampa.sys [38320 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-12-01] (AOMEI International Network Limited -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2023-11-06] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 fse; C:\Windows\System32\drivers\fse.sys [218592 2023-11-26] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-11-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt11.sys [233704 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78912 2024-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-04-12] (Malwarebytes Inc. -> Malwarebytes)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2021\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-26] (Microsoft Windows -> )
R3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [20936 2024-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [601376 2024-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-12 13:17 - 2024-04-12 13:18 - 000029825 _____ C:\Users\Mimi\Desktop\FRST.txt
2024-04-12 13:17 - 2024-04-12 13:18 - 000000000 ____D C:\FRST
2024-04-12 13:15 - 2024-04-12 13:16 - 002394112 _____ (Farbar) C:\Users\Mimi\Desktop\FRST64.exe
2024-04-12 13:14 - 2024-04-12 13:14 - 000233704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt11.sys
2024-04-12 13:14 - 2024-04-12 13:14 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2024-04-12 13:14 - 2024-04-12 13:14 - 000000000 ____D C:\Users\Mimi\AppData\LocalLow\IGDump
2024-04-12 13:12 - 2024-04-12 13:12 - 002394112 _____ (Farbar) C:\Users\Mimi\Downloads\FRST64.exe
2024-04-12 10:22 - 2024-04-12 10:22 - 000771570 _____ C:\Windows\system32\perfh00C.dat
2024-04-12 10:22 - 2024-04-12 10:22 - 000148698 _____ C:\Windows\system32\perfc00C.dat
2024-04-11 13:33 - 2024-04-11 13:41 - 000000000 ____D C:\Users\Mimi\Desktop\Gilles Vigneault
2024-04-11 10:30 - 2024-04-11 10:30 - 076172440 _____ (The ClipGrab Project ) C:\Users\Mimi\Downloads\clipgrab-3.9.6-cgde.exe
2024-04-10 21:54 - 2024-04-09 20:36 - 000001379 _____ C:\Users\Mimi\Desktop\Free YouTube Download.lnk
2024-04-10 21:44 - 2024-04-10 21:52 - 000000000 ____D C:\Users\Mimi\Desktop\Quilapayun
2024-04-10 20:44 - 2024-04-10 20:44 - 000001412 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2024-04-10 20:42 - 2024-04-10 20:45 - 000000000 ____D C:\Users\Mimi\Desktop\DVDVideo SOFT
2024-04-10 20:42 - 2024-04-10 20:42 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYouTubeToMP3Converter
2024-04-10 18:47 - 2024-04-10 18:47 - 000001377 _____ C:\Users\Public\Desktop\Free Audio Converter.lnk
2024-04-10 18:46 - 2024-04-10 18:46 - 000000000 ____D C:\Users\Mimi\Desktop\Nouveau dossier
2024-04-10 18:45 - 2024-04-10 18:45 - 000000000 ____D C:\Users\Mimi\Desktop\A INSTALLER
2024-04-10 11:55 - 2024-04-10 11:57 - 000000000 ___HD C:\$WinREAgent
2024-04-09 21:27 - 2024-04-11 13:33 - 038239800 _____ (Digital Wave Ltd ) C:\Users\Mimi\Downloads\FreeGIFMaker_1.3.51.1103_r.exe
2024-04-09 20:46 - 2024-04-10 18:49 - 000000000 ____D C:\Users\Mimi\Documents\Appli Téléchargement
2024-04-09 20:36 - 2024-04-09 20:36 - 000000000 ____D C:\Users\Mimi\AppData\Local\FreeYTVDownloader
2024-04-09 20:35 - 2024-04-10 20:44 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2024-04-08 15:09 - 2024-04-10 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2024-04-08 15:08 - 2024-04-10 20:44 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\DVDVideoSoft
2024-04-08 14:46 - 2024-04-08 14:46 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2024-04-07 20:03 - 2024-04-07 20:04 - 006970144 _____ (VS Revo Group ) C:\Users\Mimi\Downloads\revosetup.exe
2024-04-05 11:33 - 2024-04-05 11:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-03-31 21:48 - 2024-03-31 21:48 - 000675010 _____ C:\Users\Mimi\Downloads\takeout-20240331T121830Z-001.zip
2024-03-31 19:38 - 2024-03-31 19:38 - 000000347 _____ C:\Windows\PAGa4.dat
2024-03-31 19:34 - 2024-03-31 19:35 - 080714376 _____ (AOMEI International Network Limited. ) C:\Users\Mimi\Downloads\PAssist_Setup_20240401.11062258.exe
2024-03-31 19:12 - 2024-03-31 19:12 - 000000000 ____D C:\Windows\SysWOW64\DDFs
2024-03-31 19:05 - 2024-03-31 19:05 - 000024320 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-31 19:04 - 2024-03-31 19:04 - 000024320 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-12 13:16 - 2023-11-26 20:50 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-12 13:14 - 2024-01-13 15:51 - 000000000 ____D C:\Program Files\TeamViewer
2024-04-12 13:14 - 2023-12-01 11:47 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-04-12 13:14 - 2023-11-30 12:40 - 000000000 ____D C:\Users\Mimi\AppData\Local\Malwarebytes
2024-04-12 13:14 - 2023-11-29 21:55 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-04-12 13:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-12 13:13 - 2023-11-26 18:33 - 000000000 ____D C:\Users\Mimi
2024-04-12 13:13 - 2023-11-26 18:27 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-12 13:13 - 2023-11-26 18:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-04-12 13:13 - 2022-05-07 07:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-12 12:36 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-04-12 11:03 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-04-12 10:26 - 2023-11-26 18:27 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-12 10:25 - 2023-11-29 19:46 - 000000000 ____D C:\Users\Mimi\AppData\Local\Adobe
2024-04-12 10:22 - 2023-11-26 18:33 - 001713522 _____ C:\Windows\system32\PerfStringBackup.INI
2024-04-12 10:22 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-04-11 13:29 - 2023-11-27 16:33 - 000000000 ____D C:\Users\Mimi\AppData\Local\CrashDumps
2024-04-11 09:36 - 2023-11-26 20:40 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-10 22:23 - 2023-12-06 15:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-10 22:23 - 2023-11-26 18:27 - 005383520 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-10 22:22 - 2023-11-26 20:16 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-10 22:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-10 12:04 - 2023-11-26 18:44 - 000000000 ____D C:\Windows\system32\MRT
2024-04-10 12:02 - 2023-11-26 18:44 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 12:02 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-04-10 12:00 - 2023-11-26 18:31 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-09 22:15 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\D3DSCache
2024-04-09 19:29 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AomeiBR
2024-04-09 14:07 - 2023-11-26 18:34 - 000000000 ____D C:\Users\Mimi\AppData\Local\Packages
2024-04-09 13:20 - 2023-12-05 15:59 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2123058746-3684523357-4272769664-1001
2024-04-09 13:20 - 2023-12-05 15:59 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-09 13:20 - 2023-12-05 15:59 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-09 13:14 - 2023-11-29 21:57 - 000001024 ____H C:\SYSTAG.BIN
2024-04-08 14:55 - 2023-12-01 14:26 - 000001183 _____ C:\Users\Public\Desktop\HiBit Uninstaller.lnk
2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiBit Uninstaller
2024-04-08 14:55 - 2023-12-01 14:26 - 000000000 ____D C:\Program Files (x86)\HiBit Uninstaller
2024-04-07 21:26 - 2023-11-26 18:27 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-07 21:20 - 2023-12-09 22:55 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2024-04-07 20:20 - 2023-12-05 16:10 - 000000000 ____D C:\Users\Mimi\AppData\Roaming\Microsoft\Word
2024-04-05 11:33 - 2023-12-05 15:54 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-05 11:33 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-05 11:18 - 2023-11-26 18:27 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 11:18 - 2023-11-26 18:27 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-03-31 19:51 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\AOMEIPA
2024-03-31 19:38 - 2023-11-27 19:53 - 000000432 _____ C:\Windows\SysWOW64\Upgrade.dat
2024-03-31 19:38 - 2023-11-27 19:53 - 000000208 _____ C:\Windows\SysWOW64\PaBakConfig.dat
2024-03-31 19:38 - 2023-11-27 19:45 - 000001024 ____H C:\AMTAG.BIN
2024-03-31 19:38 - 2023-11-27 19:45 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant
2024-03-31 19:33 - 2023-11-27 19:45 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-03-31 19:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-31 19:29 - 2023-11-26 18:29 - 000000000 ____D C:\ProgramData\Packages
2024-03-31 19:12 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\DDFs
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2024-03-31 19:12 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-03-31 19:12 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\servicing
2024-03-31 18:51 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================