Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par Bruno (administrateur) sur BUREAU-M51AD (ASUSTeK COMPUTER INC. K30AD_M31AD_M51AD) (20-04-2024 17:44:30)
Exécuté depuis E:\Bureau\FRST64.exe
Profils chargés: Bruno
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.3374 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Sticky Password\stpass.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4>
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_44MGGQMD66FRRQ3FOVIWDULU2LOC6USSHQERK4XJKJHECD5IARBA\DeepL.exe ->) (The CefSharp Authors) [Fichier non signé] C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.exe <5>
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(DeepL SE -> DeepL SE) C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_44MGGQMD66FRRQ3FOVIWDULU2LOC6USSHQERK4XJKJHECD5IARBA\DeepL.exe
(explorer.exe ->) ((c)2016 Datacolor) [Fichier non signé] C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\bques\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Asus ProArt Chroma Tune\AsusChromaTune.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\Serviio\bin\ServiioService.exe <2>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (CYBELSOFT -> ) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NIKON CORPORATION -> Nikon Corporation) C:\Program Files\Nikon\Wireless Transmitter Utility\mDNSResponder.exe
(services.exe ->) (NIKON CORPORATION -> Nikon Corporation) C:\Program Files\Nikon\Wireless Transmitter Utility\NkPtpEnum.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
(services.exe ->) (Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
(services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497784 2016-07-06] (Acronis International GmbH -> )
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2023-11-28] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Asus ProArt Chroma Tune] => C:\Program Files\Portrait Displays\Asus ProArt Chroma Tune\AsusChromaTune.exe [3914048 2023-08-29] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [645976 2024-03-05] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5388128 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Display] => C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [480176 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [651560 2015-11-10] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6843208 2016-07-06] (Acronis International GmbH -> )
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-12-15] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-03-22] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [f.lux] => C:\Users\bques\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [72096 2024-03-28] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [MicrosoftEdgeAutoLaunch_F47668F64DA5B2D09B185054A630BF57] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11411360 2024-04-11] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\MountPoints2: {4b37ffc2-7e48-11ee-8d5a-6c71d9d9f796} - "G:\setup.exe"
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\MountPoints2: {b7e2ffff-fe69-11ee-8dc7-6c71d9d9f796} - "G:\setup.exe"
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [176128 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS6100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDP.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series: C:\WINDOWS\system32\CNMLMDP.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series XPS: C:\WINDOWS\system32\CNMXLMDP.DLL [1304064 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon SELPHY Language Monitor 3: C:\WINDOWS\system32\CNYLCP03.DLL [62976 2016-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Canon INC.)
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\WSPDFelementMonitor.dll [271360 2017-10-19] (Wondershare Software) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.61\Installer\chrmstp.exe [2024-04-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\bques\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-07-20]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\bques\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk [2023-02-13]
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe (Schneider Electric -> Schneider Electric) [Fichier non signé] <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2020-05-13]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe ((c)2016 Datacolor) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy-Firefox: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F57AC76D-A73B-4CCF-AF6F-AAD6C1159106} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {1FB09517-077C-459B-B221-4425ACA6E8E2} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {9359EE7A-FD18-4C3E-A217-89D63508FC76} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {045EBA00-B282-4049-B21B-95894D4346D1} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
Task: {C87AA047-4BE8-41EB-A196-39BADFC68C10} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {BBB81FAA-2020-499A-A070-B9F89A7765C0} - System32\Tasks\Arrêt PC => C:\WINDOWS\system32\shutdown.exe [53248 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /S
Task: {EB5287A3-0ADF-4D80-8244-D58D570B9B4F} - System32\Tasks\G2MUpdateTask-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-22] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BC5794A3-C052-47C3-9D0B-F2DD4DE5EACB} - System32\Tasks\G2MUploadTask-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-22] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {D6061BF5-CF60-4576-BA19-65BA032BA633} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-08] (Google Inc -> Google Inc.)
Task: {E2FA181F-2E28-4F6E-96C5-39CD75C05377} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-08] (Google Inc -> Google Inc.)
Task: {ABEBFA13-459B-4808-A999-807B438489E0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {D65AA121-5000-4895-B2F6-30985E2E9935} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-03-22] (Adobe Inc. -> Adobe Inc.)
Task: {9138B742-8812-41DF-AB07-8112999BB6C6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A538915D-76C2-4847-89F1-A4B3B805E977} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {4EB5DACB-D083-4358-85A9-8B9F26605E76} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F38F090-27D6-4F7C-9D5C-EF44EE8AB8AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B23D1D5-38AF-4B06-8279-D53C1AC1D0D8} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe RebootDialog (Pas de fichier)
Task: {2F9C455A-A53A-4CB3-9BB9-3C126065E2AC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {E9F0D6EB-B045-4B43-B3C5-8D57DD662FB9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {09497184-2E7B-46B7-B204-7DD557E0EC55} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {54B2EB5C-269E-4407-80A1-710280712DA8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ACD992B0-8130-4645-BEB8-797E92974068} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8EDCF457-F06A-43E6-B321-252B6E3CA7B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DEBFED41-8B90-4A68-AA7B-66795D079589} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8319C3CA-4970-42A7-B4B0-340E628D5027} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2024-03-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {21CB184B-CCF4-4415-AD2E-C698648CE22E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2024-03-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {6ADAD504-5ED6-4283-8DEE-CF90126267E0} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvContainer\-d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {27680767-DF60-4A9B-B8B9-636EABA61147} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6B6C85DA-01A6-497E-9939-3E466476D3E5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1EB74EF6-5456-4D58-BCB6-5B540F0E219A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {55F2401E-50D1-452C-9F7E-F522551D59CC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DCFEFBA-64A0-4F7C-ACCD-380D4EF19CF9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B3A83B8-930C-4BB7-94BF-FC7916205120} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3C228E4-CC2F-4A0B-B1E3-EC3FACB46500} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1D1AB1E-2AEB-4BCC-86DE-7C57FBD6B007} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DEED3A2-C156-45D9-B03B-0BF7E43EEC23} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBBB059F-0FEA-4378-AD3E-86F205B71160} - System32\Tasks\S-1-5-21-3229633961-1422230100-3445060282-1001\DataSenseLiveTileTask => %SystemRoot%\System32\DataUsageLiveTileTask.exe (Pas de fichier)
Task: {D0F3A181-96D9-4643-9337-55DBF2BB9351} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056 2024-03-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\--disable-gpu-sandbox /AUTOHIDE
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3229633961-1422230100-3445060282-1001.job => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3229633961-1422230100-3445060282-1001.job => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{03864580-8b88-4d27-af59-4790e7684dbd}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{03864580-8b88-4d27-af59-4790e7684dbd}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-20]
Edge Extension: (Google Docs hors connexion) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-27]
Edge Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbipmfkjgjhibkepepeneigpkfeikikp [2024-02-26]
Edge Extension: (Edge relevant text changes) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: 7AbV8GIa.default
FF ProfilePath: C:\Users\bques\AppData\Roaming\TomTom\HOME\Profiles\3cth26ir.default [2019-07-26]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default [2024-03-11]
FF Homepage: Mozilla\Firefox\Profiles\7AbV8GIa.default -> hxxps://google.fr
FF Notifications: Mozilla\Firefox\Profiles\7AbV8GIa.default -> hxxps://le.bar.du.port.xooit.fr
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Enabled: {66E978CD-981F-47DF-AC42-E3CF417C1467}
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Enabled: {7965226e-78d5-45c1-a1e9-2c9e6b80fff4}
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Disabled: {7965226e-78d5-45c1-a1e9-2c9e6b80fff4}
FF Extension: (uBlock) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2020-02-05]
FF Extension: (New Tab Homepage) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2019-01-06]
FF Extension: (Qwant Lite) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{7965226e-78d5-45c1-a1e9-2c9e6b80fff4}.xpi [2022-11-03]
FF Extension: (Logitech SetPoint) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2024-03-11]
FF Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2021-11-29]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default [2024-04-20]
CHR Notifications: Default -> hxxps://www.automobile-propre.com
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR NewTab: Default -> Not-active:"chrome-extension://icpgjfneehieebagbmdbhnlpiopdcmna/main.html"
CHR Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2024-04-01]
CHR Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2024-02-21]
CHR Extension: (uBlock Origin) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-04-08]
CHR Extension: (uBlock) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2024-03-15]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-04-11]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2019-12-06]
CHR Extension: (Click&Clean) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2023-10-31]
CHR Extension: (New Tab Redirect) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2023-10-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-13]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-10-26]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-04-04]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-03-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-08]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\System Profile [2024-04-20]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Extension: (Brave Local Data Files Updater) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2020-02-10]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2020-02-10]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-02-10]
BRA Extension: (Brave NTP sponsored images) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2020-02-10]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-10-30]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135568 2016-07-06] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-12-15] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2020-03-12] (Acronis International GmbH -> Acronis)
R2 APC Data Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [14256 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
R2 APC UPS Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [4261808 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-08-22] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761664 2024-03-14] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 DriversCloudAgent; C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe [1627616 2024-03-03] (CYBELSOFT -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 hasplms; C:\WINDOWS\System32\hasplms.exe [4665168 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397256 2018-11-19] (Canon Inc. -> )
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [505856 2017-02-27] (Intel Corporation) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [9002208 2023-03-12] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis International GmbH -> Acronis)
R2 Nkdnssd Service; C:\Program Files\Nikon\Wireless Transmitter Utility\mDNSResponder.exe [586120 2022-09-21] (NIKON CORPORATION -> Nikon Corporation)
R2 NkPtpEnumWT3; C:\Program Files\Nikon\Wireless Transmitter Utility\NkPtpEnum.exe [50056 2022-09-21] (NIKON CORPORATION -> Nikon Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-01-04] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [645976 2024-03-05] (Geek Software GmbH -> geek software GmbH)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [445760 2024-03-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2021-12-13] () [Fichier non signé]
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-11-06] (Acronis International GmbH -> Acronis)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [668808 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [363888 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 akshasp; C:\WINDOWS\System32\drivers\akshasp.sys [77912 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 akshhl; C:\WINDOWS\System32\drivers\akshhl.sys [81368 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 aksusb; C:\WINDOWS\System32\drivers\aksusb.sys [322560 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [120416 2019-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 DriversCloud_amd64; C:\Program Files\Cybelsoft\DriversCloud.com\Drivers\DriversCloud_amd64.sys [24768 2024-02-09] (Cybelsoft -> CybelSoft)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_9959ba283455536d\e1d.sys [611912 2023-07-19] (Intel Corporation -> Intel Corporation)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [339808 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [160600 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [350552 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2021-09-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-10-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.22.2.0\Drivers\NDivert.sys [131472 2024-03-20] (nordvpn s.a. -> Nordvpn S.A.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [27584 2018-03-24] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [303000 2021-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 Spyder4; C:\WINDOWS\System32\drivers\dccmtr.sys [15360 2015-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [55904 2019-07-22] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2014-07-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2022-06-29] (nordvpn s.a. -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1049432 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [202592 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [581464 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [301408 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-02-28] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 nordlwf; \SystemRoot\system32\DRIVERS\nordlwf.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-20 17:43 - 2024-04-20 17:45 - 000000000 ____D C:\FRST
2024-04-20 17:20 - 2024-04-20 17:20 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-20 17:20 - 2024-04-20 17:20 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-20 13:51 - 2024-04-20 13:52 - 000000000 ___HD C:\$WINDOWS.~BT
2024-04-20 11:40 - 2024-04-20 11:40 - 000001010 __RSH C:\ProgramData\ntuser.pol
2024-04-07 19:44 - 2024-04-07 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2024-04-05 08:45 - 2024-04-05 08:45 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-03 19:24 - 2024-04-03 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Password
2024-03-27 11:24 - 2024-03-27 11:25 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-03-27 11:07 - 2024-03-27 11:07 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-27 11:06 - 2024-03-27 11:06 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-25 12:20 - 2024-03-25 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-20 17:32 - 2023-11-11 14:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-20 17:23 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-20 17:20 - 2023-11-11 14:16 - 001808146 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-20 17:20 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-20 17:17 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-20 17:15 - 2018-11-20 12:58 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-20 17:14 - 2023-11-11 14:01 - 000000000 ____D C:\Users\bques
2024-04-20 17:14 - 2023-03-06 08:52 - 000008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2024-04-20 17:14 - 2021-09-30 14:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\Samsung Magician
2024-04-20 17:14 - 2020-04-26 16:50 - 000000000 ___RD C:\Users\bques\Creative Cloud Files Personal Account bquesnel@wanadoo.fr 831E488E4F7375E30A490D4C@AdobeID
2024-04-20 17:13 - 2023-11-11 14:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-20 17:13 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-20 17:13 - 2020-08-18 18:21 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-20 17:13 - 2019-01-04 19:51 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-20 17:12 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-20 17:09 - 2023-11-15 16:32 - 000000000 ____D C:\Users\bques\AppData\Local\56841CCC-D82E-4700-96C3-59D79C14985B.aplzod
2024-04-20 15:27 - 2018-11-20 12:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\Microsoft\Word
2024-04-20 15:00 - 2020-03-20 17:40 - 000000000 ____D C:\Users\bques\AppData\Local\Spotify
2024-04-20 14:55 - 2020-03-20 17:39 - 000000000 ____D C:\Users\bques\AppData\Roaming\Spotify
2024-04-20 14:38 - 2023-02-17 14:49 - 000000000 ____D C:\Users\bques\AppData\Roaming\deemix-gui
2024-04-20 13:52 - 2023-11-12 12:51 - 000000000 ____D C:\WINDOWS\Panther
2024-04-20 13:52 - 2023-11-11 14:22 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2024-04-20 13:52 - 2023-11-11 14:22 - 000001908 _____ C:\WINDOWS\diagerr.xml
2024-04-20 11:43 - 2024-02-23 10:31 - 000003570 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-04-20 11:36 - 2018-11-20 12:11 - 000000000 ____D C:\Users\bques\AppData\Local\Packages
2024-04-19 17:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-19 17:21 - 2022-11-14 20:58 - 000533848 _____ C:\WINDOWS\ntbtlog.txt
2024-04-19 17:21 - 2022-02-01 12:21 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-19 17:21 - 2020-08-20 14:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-04-19 17:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\catroot2.old
2024-04-19 16:58 - 2019-01-08 18:55 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-19 14:56 - 2023-03-17 00:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2024-04-19 14:56 - 2023-03-17 00:59 - 000000000 ____D C:\Program Files\NordVPN
2024-04-19 14:55 - 2023-03-17 00:59 - 000000000 ____D C:\Program Files\NordUpdater
2024-04-19 07:12 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-18 00:29 - 2023-11-11 14:22 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3229633961-1422230100-3445060282-1001
2024-04-18 00:29 - 2023-11-11 14:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-18 00:29 - 2022-01-30 10:41 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-16 11:54 - 2022-11-01 17:30 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-14 02:18 - 2018-11-20 13:56 - 000000000 ____D C:\ProgramData\Packages
2024-04-13 16:01 - 2023-11-11 14:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-13 16:01 - 2022-10-11 16:55 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-11 11:33 - 2018-11-21 13:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\calibre
2024-04-11 11:12 - 2018-11-20 11:41 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.old
2024-04-11 10:40 - 2018-11-26 19:10 - 000000000 ____D C:\Users\bques\AppData\Local\ElevatedDiagnostics
2024-04-10 16:05 - 2018-11-20 12:41 - 000000000 ____D C:\Users\bques\AppData\Roaming\Microsoft\Excel
2024-04-10 09:50 - 2022-07-20 17:55 - 000000000 ___HD C:\adobeTemp
2024-04-09 22:58 - 2018-11-20 12:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-09 22:54 - 2018-11-20 12:47 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-09 22:51 - 2022-03-02 16:47 - 000000000 ____D C:\Program Files\dotnet
2024-04-09 22:51 - 2018-11-20 16:34 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-09 22:51 - 2018-11-20 13:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-07 19:44 - 2022-10-25 10:32 - 000000000 ____D C:\Program Files\Calibre2
2024-04-07 19:26 - 2023-03-17 00:59 - 000000000 ____D C:\Users\bques\AppData\Local\NordVPN
2024-04-06 11:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-04-05 08:46 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-04 08:47 - 2023-11-11 14:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 08:47 - 2023-11-11 14:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-03 19:24 - 2019-12-04 19:52 - 000000000 ____D C:\Program Files (x86)\Sticky Password
2024-04-03 18:59 - 2018-12-15 10:47 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-03 18:59 - 2018-11-20 16:30 - 000000000 ____D C:\ProgramData\Adobe
2024-04-01 14:07 - 2018-11-20 16:38 - 000000000 ____D C:\ProgramData\opencpn
2024-03-28 11:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-27 11:42 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-27 11:26 - 2023-11-11 14:15 - 000589112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-03-27 11:24 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-27 11:07 - 2023-11-11 14:16 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-27 00:24 - 2018-11-21 12:49 - 000000000 ____D C:\Users\bques\AppData\Roaming\vlc
2024-03-25 23:56 - 2023-02-28 10:04 - 000000000 ____D C:\Users\bques\AppData\Roaming\DeepL_SE
2024-03-25 12:20 - 2023-11-11 14:22 - 000003390 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2024-03-22 19:40 - 2018-11-20 21:52 - 000000000 ____D C:\Program Files\Adobe
==================== Fichiers à la racine de certains dossiers ========
2023-11-11 13:31 - 2023-11-11 13:36 - 000000001 _____ () C:\Users\bques\AppData\Roaming\c
2020-04-22 15:51 - 2022-12-21 11:19 - 000000268 ___RH () C:\Users\bques\AppData\Roaming\Iterate Items
2022-11-14 20:31 - 2022-11-14 20:31 - 000000001 _____ () C:\Users\bques\AppData\Local\llftool.4.40.agreement
2020-04-26 17:29 - 2020-04-26 17:29 - 000000000 _____ () C:\Users\bques\AppData\Local\oobelibMkey.log
2020-04-02 18:13 - 2020-04-02 18:13 - 000004680 _____ () C:\Users\bques\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Bruno (administrateur) sur BUREAU-M51AD (ASUSTeK COMPUTER INC. K30AD_M31AD_M51AD) (20-04-2024 17:44:30)
Exécuté depuis E:\Bureau\FRST64.exe
Profils chargés: Bruno
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22631.3374 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Sticky Password\stpass.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4>
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\ai.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_44MGGQMD66FRRQ3FOVIWDULU2LOC6USSHQERK4XJKJHECD5IARBA\DeepL.exe ->) (The CefSharp Authors) [Fichier non signé] C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_WNVUT4A7COIHUPNX3HWQQZD5BU3GEPFRMM3BLVJW4ICRXIJEKBJQ\CefSharp.BrowserSubprocess.exe <5>
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(DeepL SE -> DeepL SE) C:\Users\bques\AppData\Local\0install.net\implementations\sha256new_44MGGQMD66FRRQ3FOVIWDULU2LOC6USSHQERK4XJKJHECD5IARBA\DeepL.exe
(explorer.exe ->) ((c)2016 Datacolor) [Fichier non signé] C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\bques\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Portrait Displays, Inc. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Asus ProArt Chroma Tune\AsusChromaTune.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\Serviio\bin\ServiioService.exe <2>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (CYBELSOFT -> ) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NIKON CORPORATION -> Nikon Corporation) C:\Program Files\Nikon\Wireless Transmitter Utility\mDNSResponder.exe
(services.exe ->) (NIKON CORPORATION -> Nikon Corporation) C:\Program Files\Nikon\Wireless Transmitter Utility\NkPtpEnum.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (SafeNet, Inc. -> SafeNet Inc.) C:\Windows\System32\hasplms.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
(services.exe ->) (Schneider Electric -> Schneider Electric) [Fichier non signé] C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
(services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(services.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497784 2016-07-06] (Acronis International GmbH -> )
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [367456 2023-11-28] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Asus ProArt Chroma Tune] => C:\Program Files\Portrait Displays\Asus ProArt Chroma Tune\AsusChromaTune.exe [3914048 2023-08-29] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [645976 2024-03-05] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5388128 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Display] => C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [480176 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [651560 2015-11-10] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6843208 2016-07-06] (Acronis International GmbH -> )
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [612304 2019-11-18] (NIKON CORPORATION -> Nikon Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-12-15] (Adobe Inc. -> Adobe Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-03-22] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [f.lux] => C:\Users\bques\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [72096 2024-03-28] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [MicrosoftEdgeAutoLaunch_F47668F64DA5B2D09B185054A630BF57] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11411360 2024-04-11] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\MountPoints2: {4b37ffc2-7e48-11ee-8d5a-6c71d9d9f796} - "G:\setup.exe"
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\...\MountPoints2: {b7e2ffff-fe69-11ee-8dc7-6c71d9d9f796} - "G:\setup.exe"
HKU\S-1-5-21-3229633961-1422230100-3445060282-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [176128 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS6100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDP.DLL [482816 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series: C:\WINDOWS\system32\CNMLMDP.DLL [1302016 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS6100 series XPS: C:\WINDOWS\system32\CNMXLMDP.DLL [1304064 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon SELPHY Language Monitor 3: C:\WINDOWS\system32\CNYLCP03.DLL [62976 2016-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Canon INC.)
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\WSPDFelementMonitor.dll [271360 2017-10-19] (Wondershare Software) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\124.0.6367.61\Installer\chrmstp.exe [2024-04-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\bques\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-07-20]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\bques\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk [2023-02-13]
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe (Schneider Electric -> Schneider Electric) [Fichier non signé] <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2020-05-13]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Elite\Utility\SpyderUtility.exe ((c)2016 Datacolor) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy-Firefox: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {F57AC76D-A73B-4CCF-AF6F-AAD6C1159106} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {1FB09517-077C-459B-B221-4425ACA6E8E2} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {9359EE7A-FD18-4C3E-A217-89D63508FC76} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {045EBA00-B282-4049-B21B-95894D4346D1} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
Task: {C87AA047-4BE8-41EB-A196-39BADFC68C10} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {BBB81FAA-2020-499A-A070-B9F89A7765C0} - System32\Tasks\Arrêt PC => C:\WINDOWS\system32\shutdown.exe [53248 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /S
Task: {EB5287A3-0ADF-4D80-8244-D58D570B9B4F} - System32\Tasks\G2MUpdateTask-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-22] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BC5794A3-C052-47C3-9D0B-F2DD4DE5EACB} - System32\Tasks\G2MUploadTask-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-22] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {D6061BF5-CF60-4576-BA19-65BA032BA633} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-08] (Google Inc -> Google Inc.)
Task: {E2FA181F-2E28-4F6E-96C5-39CD75C05377} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-08] (Google Inc -> Google Inc.)
Task: {ABEBFA13-459B-4808-A999-807B438489E0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {D65AA121-5000-4895-B2F6-30985E2E9935} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-03-22] (Adobe Inc. -> Adobe Inc.)
Task: {9138B742-8812-41DF-AB07-8112999BB6C6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A538915D-76C2-4847-89F1-A4B3B805E977} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {4EB5DACB-D083-4358-85A9-8B9F26605E76} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F38F090-27D6-4F7C-9D5C-EF44EE8AB8AD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B23D1D5-38AF-4B06-8279-D53C1AC1D0D8} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Pas de fichier)
Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe RebootDialog (Pas de fichier)
Task: {2F9C455A-A53A-4CB3-9BB9-3C126065E2AC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Pas de fichier)
Task: {E9F0D6EB-B045-4B43-B3C5-8D57DD662FB9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Pas de fichier)
Task: {09497184-2E7B-46B7-B204-7DD557E0EC55} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (Pas de fichier)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {54B2EB5C-269E-4407-80A1-710280712DA8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ACD992B0-8130-4645-BEB8-797E92974068} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8EDCF457-F06A-43E6-B321-252B6E3CA7B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DEBFED41-8B90-4A68-AA7B-66795D079589} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8319C3CA-4970-42A7-B4B0-340E628D5027} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [674720 2024-03-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {21CB184B-CCF4-4415-AD2E-C698648CE22E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [35232 2024-03-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {6ADAD504-5ED6-4283-8DEE-CF90126267E0} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvContainer\-d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {27680767-DF60-4A9B-B8B9-636EABA61147} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6B6C85DA-01A6-497E-9939-3E466476D3E5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1EB74EF6-5456-4D58-BCB6-5B540F0E219A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {55F2401E-50D1-452C-9F7E-F522551D59CC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2DCFEFBA-64A0-4F7C-ACCD-380D4EF19CF9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5B3A83B8-930C-4BB7-94BF-FC7916205120} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3C228E4-CC2F-4A0B-B1E3-EC3FACB46500} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B1D1AB1E-2AEB-4BCC-86DE-7C57FBD6B007} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DEED3A2-C156-45D9-B03B-0BF7E43EEC23} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3229633961-1422230100-3445060282-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBBB059F-0FEA-4378-AD3E-86F205B71160} - System32\Tasks\S-1-5-21-3229633961-1422230100-3445060282-1001\DataSenseLiveTileTask => %SystemRoot%\System32\DataUsageLiveTileTask.exe (Pas de fichier)
Task: {D0F3A181-96D9-4643-9337-55DBF2BB9351} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [140405056 2024-03-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\--disable-gpu-sandbox /AUTOHIDE
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3229633961-1422230100-3445060282-1001.job => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3229633961-1422230100-3445060282-1001.job => C:\Users\bques\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{03864580-8b88-4d27-af59-4790e7684dbd}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{03864580-8b88-4d27-af59-4790e7684dbd}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a68bdaf1-af0f-40e8-9a0b-26873d7c2a03}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-20]
Edge Extension: (Google Docs hors connexion) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-27]
Edge Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbipmfkjgjhibkepepeneigpkfeikikp [2024-02-26]
Edge Extension: (Edge relevant text changes) - C:\Users\bques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF DefaultProfile: 7AbV8GIa.default
FF ProfilePath: C:\Users\bques\AppData\Roaming\TomTom\HOME\Profiles\3cth26ir.default [2019-07-26]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default [2024-03-11]
FF Homepage: Mozilla\Firefox\Profiles\7AbV8GIa.default -> hxxps://google.fr
FF Notifications: Mozilla\Firefox\Profiles\7AbV8GIa.default -> hxxps://le.bar.du.port.xooit.fr
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Enabled: {66E978CD-981F-47DF-AC42-E3CF417C1467}
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Enabled: {7965226e-78d5-45c1-a1e9-2c9e6b80fff4}
FF NewTabOverride: Mozilla\Firefox\Profiles\7AbV8GIa.default -> Disabled: {7965226e-78d5-45c1-a1e9-2c9e6b80fff4}
FF Extension: (uBlock) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi [2020-02-05]
FF Extension: (New Tab Homepage) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2019-01-06]
FF Extension: (Qwant Lite) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{7965226e-78d5-45c1-a1e9-2c9e6b80fff4}.xpi [2022-11-03]
FF Extension: (Logitech SetPoint) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2024-03-11]
FF Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Roaming\Mozilla\Firefox\Profiles\7AbV8GIa.default\Extensions\{ecb80162-dfbd-4d91-a8da-17b35ba4707a}.xpi [2021-11-29]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-12-15] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default [2024-04-20]
CHR Notifications: Default -> hxxps://www.automobile-propre.com
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR NewTab: Default -> Not-active:"chrome-extension://icpgjfneehieebagbmdbhnlpiopdcmna/main.html"
CHR Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2024-04-01]
CHR Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2024-02-21]
CHR Extension: (uBlock Origin) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-04-08]
CHR Extension: (uBlock) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2024-03-15]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-04-11]
CHR Extension: (Désactivation de Google Analytics) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2019-12-06]
CHR Extension: (Click&Clean) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2023-10-31]
CHR Extension: (New Tab Redirect) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2023-10-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (EuroSaver - Amazon Product Price Comparison) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofiokjopppicpjjnklicjlnenhabhfhf [2024-03-13]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-10-26]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-04-04]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-03-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-08]
CHR Profile: C:\Users\bques\AppData\Local\Google\Chrome\User Data\System Profile [2024-04-20]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Extension: (Brave Local Data Files Updater) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2020-02-10]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2020-02-10]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-02-10]
BRA Extension: (Brave NTP sponsored images) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2020-02-10]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\bques\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-10-30]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135568 2016-07-06] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-12-15] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2020-03-12] (Acronis International GmbH -> Acronis)
R2 APC Data Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [14256 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
R2 APC UPS Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [4261808 2019-06-07] (Schneider Electric -> Schneider Electric) [Fichier non signé]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2023-08-22] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761664 2024-03-14] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 DriversCloudAgent; C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloudAgent.exe [1627616 2024-03-03] (CYBELSOFT -> )
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 hasplms; C:\WINDOWS\System32\hasplms.exe [4665168 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397256 2018-11-19] (Canon Inc. -> )
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [505856 2017-02-27] (Intel Corporation) [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [9002208 2023-03-12] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis International GmbH -> Acronis)
R2 Nkdnssd Service; C:\Program Files\Nikon\Wireless Transmitter Utility\mDNSResponder.exe [586120 2022-09-21] (NIKON CORPORATION -> Nikon Corporation)
R2 NkPtpEnumWT3; C:\Program Files\Nikon\Wireless Transmitter Utility\NkPtpEnum.exe [50056 2022-09-21] (NIKON CORPORATION -> Nikon Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-01-04] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [645976 2024-03-05] (Geek Software GmbH -> geek software GmbH)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [445760 2024-03-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2021-12-13] () [Fichier non signé]
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-11-06] (Acronis International GmbH -> Acronis)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [668808 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [363888 2018-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 akshasp; C:\WINDOWS\System32\drivers\akshasp.sys [77912 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 akshhl; C:\WINDOWS\System32\drivers\akshhl.sys [81368 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 aksusb; C:\WINDOWS\System32\drivers\aksusb.sys [322560 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [120416 2019-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 DriversCloud_amd64; C:\Program Files\Cybelsoft\DriversCloud.com\Drivers\DriversCloud_amd64.sys [24768 2024-02-09] (Cybelsoft -> CybelSoft)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_9959ba283455536d\e1d.sys [611912 2023-07-19] (Intel Corporation -> Intel Corporation)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [339808 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [160600 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [350552 2015-09-24] (SafeNet, Inc. -> SafeNet Inc.)
S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47928 2021-09-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-10-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.22.2.0\Drivers\NDivert.sys [131472 2024-03-20] (nordvpn s.a. -> Nordvpn S.A.)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NVSWCFilter; C:\WINDOWS\System32\drivers\nvswcfilter.sys [27584 2018-03-24] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [303000 2021-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 Spyder4; C:\WINDOWS\System32\drivers\dccmtr.sys [15360 2015-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Datacolor)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [55904 2019-07-22] (Samsung Electronics CO., LTD. -> QUALCOMM Incorporated)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2014-07-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2022-06-29] (nordvpn s.a. -> The OpenVPN Project)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1049432 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [202592 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [581464 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [301408 2020-03-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-09] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-02-28] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 nordlwf; \SystemRoot\system32\DRIVERS\nordlwf.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-20 17:43 - 2024-04-20 17:45 - 000000000 ____D C:\FRST
2024-04-20 17:20 - 2024-04-20 17:20 - 000808228 _____ C:\WINDOWS\system32\perfh00C.dat
2024-04-20 17:20 - 2024-04-20 17:20 - 000156716 _____ C:\WINDOWS\system32\perfc00C.dat
2024-04-20 13:51 - 2024-04-20 13:52 - 000000000 ___HD C:\$WINDOWS.~BT
2024-04-20 11:40 - 2024-04-20 11:40 - 000001010 __RSH C:\ProgramData\ntuser.pol
2024-04-07 19:44 - 2024-04-07 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2024-04-05 08:45 - 2024-04-05 08:45 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-03 19:24 - 2024-04-03 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Password
2024-03-27 11:24 - 2024-03-27 11:25 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-03-27 11:07 - 2024-03-27 11:07 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-27 11:06 - 2024-03-27 11:06 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-25 12:20 - 2024-03-25 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-04-20 17:32 - 2023-11-11 14:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-20 17:23 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-20 17:20 - 2023-11-11 14:16 - 001808146 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-20 17:20 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-04-20 17:17 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-20 17:15 - 2018-11-20 12:58 - 000000000 ____D C:\Program Files (x86)\Google
2024-04-20 17:14 - 2023-11-11 14:01 - 000000000 ____D C:\Users\bques
2024-04-20 17:14 - 2023-03-06 08:52 - 000008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2024-04-20 17:14 - 2021-09-30 14:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\Samsung Magician
2024-04-20 17:14 - 2020-04-26 16:50 - 000000000 ___RD C:\Users\bques\Creative Cloud Files Personal Account bquesnel@wanadoo.fr 831E488E4F7375E30A490D4C@AdobeID
2024-04-20 17:13 - 2023-11-11 14:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-20 17:13 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-20 17:13 - 2020-08-18 18:21 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-20 17:13 - 2019-01-04 19:51 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-20 17:12 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-20 17:09 - 2023-11-15 16:32 - 000000000 ____D C:\Users\bques\AppData\Local\56841CCC-D82E-4700-96C3-59D79C14985B.aplzod
2024-04-20 15:27 - 2018-11-20 12:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\Microsoft\Word
2024-04-20 15:00 - 2020-03-20 17:40 - 000000000 ____D C:\Users\bques\AppData\Local\Spotify
2024-04-20 14:55 - 2020-03-20 17:39 - 000000000 ____D C:\Users\bques\AppData\Roaming\Spotify
2024-04-20 14:38 - 2023-02-17 14:49 - 000000000 ____D C:\Users\bques\AppData\Roaming\deemix-gui
2024-04-20 13:52 - 2023-11-12 12:51 - 000000000 ____D C:\WINDOWS\Panther
2024-04-20 13:52 - 2023-11-11 14:22 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2024-04-20 13:52 - 2023-11-11 14:22 - 000001908 _____ C:\WINDOWS\diagerr.xml
2024-04-20 11:43 - 2024-02-23 10:31 - 000003570 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-04-20 11:36 - 2018-11-20 12:11 - 000000000 ____D C:\Users\bques\AppData\Local\Packages
2024-04-19 17:36 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-19 17:21 - 2022-11-14 20:58 - 000533848 _____ C:\WINDOWS\ntbtlog.txt
2024-04-19 17:21 - 2022-02-01 12:21 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-19 17:21 - 2020-08-20 14:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-04-19 17:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\catroot2.old
2024-04-19 16:58 - 2019-01-08 18:55 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-19 14:56 - 2023-03-17 00:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2024-04-19 14:56 - 2023-03-17 00:59 - 000000000 ____D C:\Program Files\NordVPN
2024-04-19 14:55 - 2023-03-17 00:59 - 000000000 ____D C:\Program Files\NordUpdater
2024-04-19 07:12 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-18 00:29 - 2023-11-11 14:22 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3229633961-1422230100-3445060282-1001
2024-04-18 00:29 - 2023-11-11 14:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-18 00:29 - 2022-01-30 10:41 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-16 11:54 - 2022-11-01 17:30 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-14 02:18 - 2018-11-20 13:56 - 000000000 ____D C:\ProgramData\Packages
2024-04-13 16:01 - 2023-11-11 14:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-13 16:01 - 2022-10-11 16:55 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-11 11:33 - 2018-11-21 13:40 - 000000000 ____D C:\Users\bques\AppData\Roaming\calibre
2024-04-11 11:12 - 2018-11-20 11:41 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.old
2024-04-11 10:40 - 2018-11-26 19:10 - 000000000 ____D C:\Users\bques\AppData\Local\ElevatedDiagnostics
2024-04-10 16:05 - 2018-11-20 12:41 - 000000000 ____D C:\Users\bques\AppData\Roaming\Microsoft\Excel
2024-04-10 09:50 - 2022-07-20 17:55 - 000000000 ___HD C:\adobeTemp
2024-04-09 22:58 - 2018-11-20 12:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-09 22:54 - 2018-11-20 12:47 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-09 22:51 - 2022-03-02 16:47 - 000000000 ____D C:\Program Files\dotnet
2024-04-09 22:51 - 2018-11-20 16:34 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-09 22:51 - 2018-11-20 13:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-07 19:44 - 2022-10-25 10:32 - 000000000 ____D C:\Program Files\Calibre2
2024-04-07 19:26 - 2023-03-17 00:59 - 000000000 ____D C:\Users\bques\AppData\Local\NordVPN
2024-04-06 11:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-04-05 08:46 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-04 08:47 - 2023-11-11 14:22 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-04 08:47 - 2023-11-11 14:22 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-03 19:24 - 2019-12-04 19:52 - 000000000 ____D C:\Program Files (x86)\Sticky Password
2024-04-03 18:59 - 2018-12-15 10:47 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-04-03 18:59 - 2018-11-20 16:30 - 000000000 ____D C:\ProgramData\Adobe
2024-04-01 14:07 - 2018-11-20 16:38 - 000000000 ____D C:\ProgramData\opencpn
2024-03-28 11:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-27 11:42 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-03-27 11:26 - 2023-11-11 14:15 - 000589112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-03-27 11:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-03-27 11:24 - 2022-05-07 12:35 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-03-27 11:24 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-03-27 11:07 - 2023-11-11 14:16 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-27 00:24 - 2018-11-21 12:49 - 000000000 ____D C:\Users\bques\AppData\Roaming\vlc
2024-03-25 23:56 - 2023-02-28 10:04 - 000000000 ____D C:\Users\bques\AppData\Roaming\DeepL_SE
2024-03-25 12:20 - 2023-11-11 14:22 - 000003390 _____ C:\WINDOWS\system32\Tasks\SamsungMagician
2024-03-22 19:40 - 2018-11-20 21:52 - 000000000 ____D C:\Program Files\Adobe
==================== Fichiers à la racine de certains dossiers ========
2023-11-11 13:31 - 2023-11-11 13:36 - 000000001 _____ () C:\Users\bques\AppData\Roaming\c
2020-04-22 15:51 - 2022-12-21 11:19 - 000000268 ___RH () C:\Users\bques\AppData\Roaming\Iterate Items
2022-11-14 20:31 - 2022-11-14 20:31 - 000000001 _____ () C:\Users\bques\AppData\Local\llftool.4.40.agreement
2020-04-26 17:29 - 2020-04-26 17:29 - 000000000 _____ () C:\Users\bques\AppData\Local\oobelibMkey.log
2020-04-02 18:13 - 2020-04-02 18:13 - 000004680 _____ () C:\Users\bques\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================