Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Exécuté par Administrateur (administrateur) sur PCWIN1122H2 (Gigabyte Technology Co., Ltd. B365M DS3H) (05-05-2024 18:24:36)
Exécuté depuis D:\_1_OneDrive\OneDrive\Bureau\FRST64.exe
Profils chargés: tbaro & Administrateur
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22635.3500 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe ->) (Hasleo Software) [Fichier non signé] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupSystemTray.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Waves Audio Ltd.) [Fichier non signé] C:\Windows\SysWOW64\SGDawNodeService.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) () [Fichier non signé] C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Hasleo Software) [Fichier non signé] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_518f2921ba495409\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\tbaro\AppData\Local\Microsoft\OneDrive\24.081.0421.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
Impossible d'accéder au processus -> vmmemCmZygote
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SGDawNodeService] => C:\Windows\SysWOW64\SGDawNodeService.exe [6014464 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3302288 2024-02-04] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Opera Browser Assistant] => C:\Users\tbaro\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Emjysoft Sauvegarde Facile] => C:\Program Files\Emjysoft\Sauvegarde-Facile\Sauvegarde.exe start (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [MicrosoftEdgeAutoLaunch_BB202E6882A355C809BC75A4FF5B13CF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\MountPoints2: {eff12438-6267-11ed-baf0-de28b994db10} - "H:\vs90sp1\SPInstaller.exe"
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417976 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-05] (Google LLC -> Google LLC)
Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SoundGridStudioSilent.lnk [2022-11-13]
ShortcutTarget: SoundGridStudioSilent.lnk -> C:\Program Files (x86)\Waves\SoundGrid Studio\SoundGrid Studio.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WavesLocalServer.lnk [2022-11-13]
ShortcutTarget: WavesLocalServer.lnk -> C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe (Waves Inc -> Waves Audio Ltd.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {7BBC684E-1436-4623-9171-BA87CC531729} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {B1448F41-E3B5-4984-9F9A-C207520243B8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {59DA7391-3458-439B-8DE6-8DD846DB3EFC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "51c25333-6d35-4121-bdef-09c8d44f2189" --version "6.22.10977" --silent
Task: {B5FE2CAE-63A2-4D0C-9BF3-EB3162876C95} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {493AB6AE-14C6-4CEA-900D-E870637D4147} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{E337D36E-8676-4BF7-9419-849362A50E30} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {1E8F4D12-51CE-4BB5-B248-3065C6AA8987} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {673ED929-C6AD-4235-BDF9-DF3E2C6DE79B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A19F5A08-BA3D-4205-AC0A-79F469CFA193} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9AF88C-103F-4337-8996-F00DA53D161B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1939C591-E8B1-4043-A736-5C2A49DB136E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F2B355E7-3B9E-4270-8059-53C84AE49920} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [255040 2024-04-04] (Microsoft Corporation -> Microsoft)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {1D3EE0BD-DA71-4AC0-9510-9128F9A833CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C243C9D7-8DE0-48FD-95BE-5522D22A6F75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9FFC8228-47FD-4A09-8E8F-EE3C82B37869} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A61DB47B-9DE5-4145-92BC-05F56BBFD315} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EE71ACE2-4394-4807-88C1-C35BFF262292} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {FC612F5F-C848-488A-ADDD-0308D3E49370} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2449686422-2661205932-1969823142-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8621A235-54B5-415B-B00D-902004EA9834} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {983116E0-082B-461F-B9CE-9292F1255517} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {161CC31F-EE16-4DBE-831A-CCCDA5CBDEE2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {B4BE6110-2096-4D73-8DF0-08E67C00BF21} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {A470EE5C-4F33-46C6-805F-8B3609D2983A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {26EBB521-4E92-44C5-B8CC-0BDA26FA49E3} - System32\Tasks\Opera scheduled assistant Autoupdate 1667905404 => C:\Users\tbaro\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-05-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\tbaro\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {B2499FFA-D65B-4983-830A-04A12B263DD7} - System32\Tasks\Opera scheduled Autoupdate 1667905397 => C:\Users\tbaro\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-25] (Opera Norway AS -> Opera Software)
Task: {9946EB79-4CC9-4673-9BE6-3056BE60EA5C} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\FFmpeg 1.07\SampleUsage.txt (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{03ac9879-8d55-4fa1-bd42-96ec1f21710a}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{895e891a-8b16-4355-b77f-8ce747d6b0d4}: [DhcpNameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpDomain] lan
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\6427565626F687D2436454144344: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [NameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-05]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-05-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-05-05]
Edge HomePage: Profile 1 -> hxxps://www.google.com/
Edge StartupUrls: Profile 1 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
Edge Session Restore: Profile 1 -> est activé.
Edge Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bjnclkhfflcbkflemkkdocopfelcbifo [2024-03-17]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-16]
Edge Extension: (Page Ruler) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\dbbmodidecniimhhohmohndfdhhfcdbo [2024-01-14]
Edge Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fcbmiimfkmkkkffjlopcpdlgclncnknm [2023-06-30]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-20]
Edge Extension: (HeadingsMap) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\flbjommegcjonpdmenkdiocclhjacmbi [2024-03-17]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
Edge Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2024-05-05]
Edge Extension: (ColorFish Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jlefpjinggjhccheobegboicdcacepfg [2022-11-20]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-11-11]
Edge Extension: (Smart Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ochgakkmfibnneodjiehdpgdimcondao [2023-10-10]
Edge Extension: (Custom New Tab URL) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\oeibmbobgpgnbnlbaffdgebpeepfbnhi [2023-12-19]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: qjeljq5r.default
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\qjeljq5r.default [2022-11-13]
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release [2024-05-05]
FF user.js: detected! => C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\user.js [2023-02-19]
FF Homepage: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> google.fr
FF Session Restore: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> est activé.
FF Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\clearcache@michel.de.almeida.xpi [2023-02-18]
FF Extension: (Custom Tab Title and Favicon) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\custom-tab-title-favicon@pakker.io.xpi [2023-02-18]
FF Extension: (To Google Translate) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-02-18]
FF Extension: (Material Design Color Palette - Click to Copy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\material-color@harnerdesigns.com.xpi [2023-02-18]
FF Extension: (Firefox Relay) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\private-relay@firefox.com.xpi [2023-08-19]
FF Extension: (Qwant VIPrivacy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\qwantcomforfirefox@jetpack.xpi [2023-02-18]
FF Extension: (TWP - Translate Web Pages) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-08-19]
FF Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2023-06-26]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-08-19]
FF Extension: (Download All Images) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2023-05-28]
FF Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{585280b0-ee78-428a-92c5-3fb3c0b85460}.xpi [2023-05-28]
FF Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2023-02-18]
FF Extension: (Measure-it) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{79b2e4de-8fb4-4ccc-b9f6-362ac2fb74b2}.xpi [2023-02-18]
FF Extension: (Video DownloadHelper) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-19]
FF Extension: (Web Developer) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2023-02-18]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2024-05-05]
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Traduction) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-05-11]
CHR Extension: (Web Developer) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2023-09-02]
CHR Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-09-16]
CHR Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2022-11-08]
CHR Extension: (Export History/Bookmarks to JSON/CSV*/XLS*) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcoegfodcnjofhjfbhegcgjgapeichlf [2022-11-08]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2023-09-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-23]
CHR Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2024-02-01]
CHR Extension: (NetBeans Connector) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa [2024-02-11]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2023-01-04]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-13]
CHR Extension: (Measure-it) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocbgkoackihphodedlefohapackjmna [2022-11-08]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplfenefaakjhjkklghidleljeocgdap [2024-03-17]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-07-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-08]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-05-05]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-05]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [84216 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S3 CyberGhostTunnel$CyberGhost-WireGuard-12; C:\Program Files\CyberGhost 8\Applications\VPN\WGHelper.exe [26872 2024-01-29] (CyberGhost S.R.L. -> WGHelper)
R2 D-Link DWA-171C_PBC_WPS; C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe [65536 2013-01-15] () [Fichier non signé]
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-10-25] (Mixbyte Inc -> Freemake)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 HasleoBackupSuiteService; C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe [3473920 2024-04-30] (Hasleo Software) [Fichier non signé]
R2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [15821032 2022-09-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [42456 2024-04-04] (Microsoft Corporation -> Microsoft)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142952 2024-02-29] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; D:\wamp64\bin\apache\apache2.4.54.2\bin\httpd.exe [30720 2022-11-02] (Apache Software Foundation) [Fichier non signé]
S3 wampmariadb64; D:\wamp64\bin\mariadb\mariadb10.10.2\bin\mysqld.exe [34696 2022-11-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; D:\wamp64\bin\mysql\mysql8.0.31\bin\mysqld.exe [54641264 2022-09-13] (Oracle America, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe [138176 2017-11-07] (Realtek Semiconductor Corp. -> Realtek)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-11-12] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-11-12] (AOMEI International Network Limited -> )
S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [38832 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [39312 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [45976 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R1 anodlwf; C:\Windows\system32\DRIVERS\anodlwfx.sys [15872 2010-05-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [544768 2023-08-05] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-08-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-11-07] (Microsoft Corporation) [Fichier non signé]
R0 fse; C:\Windows\System32\drivers\fse.sys [218496 2023-11-20] (Microsoft Windows -> Microsoft Corporation)
S1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [390144 2023-12-23] (Google LLC -> Google LLC)
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
S3 mlkumidi; C:\Windows\system32\drivers\mlkumidi.sys [55344 2015-12-21] (MusicLab, Inc. -> MusicLab, Inc.)
R3 MpKsl80cdc6b0; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3A375E5E-589D-4AB3-8811-F2A4BF123586}\MpKslDrv.sys [301336 2024-05-05] (Microsoft Windows -> Microsoft Corporation)
R3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 SoundGridMIDI; C:\Windows\system32\drivers\SoundGridMidi.sys [46104 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [23552 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
R2 SoundGridProtocol; C:\Windows\system32\DRIVERS\SoundGridProtocol.sys [132136 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [64000 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
R3 synusb64; C:\Windows\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-01] (Microsoft Windows -> )
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2023-01-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 ysusb_w10_64; C:\Windows\system32\drivers\ysusb_w10_64.sys [179760 2022-07-08] (Microsoft Windows Hardware Compatibility Publisher -> Yamaha Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-05 18:18 - 2024-05-05 18:24 - 000000000 ____D C:\FRST
2024-05-05 17:40 - 2024-05-05 17:40 - 000808228 _____ C:\Windows\system32\perfh00C.dat
2024-05-05 17:40 - 2024-05-05 17:40 - 000156716 _____ C:\Windows\system32\perfc00C.dat
2024-05-05 16:50 - 2024-05-05 17:33 - 000000000 ____D C:\Windows\system32\config\regsave
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo Backup Suite
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\Program Files\Hasleo
2024-05-05 16:38 - 2024-05-05 16:38 - 029382926 _____ (Hasleo Software. ) C:\Users\tbaro\Downloads\Hasleo_Backup_Suite_Free.exe
2024-05-05 16:04 - 2024-05-05 16:04 - 000000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2024-05-05 15:15 - 2024-05-05 15:15 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-20 19:20 - 2024-04-20 19:21 - 000000000 ___HD C:\$SysReset
2024-04-20 18:30 - 2024-04-20 18:30 - 000008192 _____ C:\Windows\system32\config\userdiff
2024-04-20 17:52 - 2024-04-20 17:52 - 000001994 __RSH C:\ProgramData\ntuser.pol
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagwrn.xml
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagerr.xml
2024-04-20 16:10 - 2024-04-20 16:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\HTML Help
2024-04-20 09:50 - 2024-04-20 09:50 - 000107862 _____ C:\Users\tbaro\Downloads\Edge_Zero_II-7.webp
2024-04-19 21:36 - 2024-04-19 21:37 - 000000000 ___HD C:\$WinREAgent
2024-04-16 18:41 - 2024-04-16 20:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-16 17:59 - 2024-04-16 17:59 - 000000000 ____D C:\Users\tbaro\AppData\Local\github-copilot
2024-04-16 11:37 - 2024-04-16 11:37 - 000407990 _____ C:\Users\tbaro\Downloads\DWA-171_ds_revc_Datasheet_en.pdf
2024-04-15 09:32 - 2024-04-15 09:32 - 000001373 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-14 21:54 - 2024-04-14 21:54 - 000029461 _____ C:\Users\tbaro\AppData\Local\recently-used.xbel
2024-04-14 21:07 - 2024-04-14 21:07 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\HTML Help
2024-04-11 11:14 - 2024-04-11 11:14 - 000000000 ____D C:\Users\tbaro\AppData\Local\PackageManagement
2024-04-11 10:43 - 2024-04-11 10:43 - 000000000 ____D C:\Users\tbaro\.nuget
2024-04-09 20:48 - 2024-04-09 20:48 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Visual Studio Setup
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\source
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ServiceHub
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\IdentityNexusIntegration
2024-04-07 12:05 - 2024-04-07 12:05 - 000001168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\2BrightSparks
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Program Files\2BrightSparks
2024-04-07 12:05 - 2021-05-25 14:41 - 000044032 _____ C:\Windows\SysWOW64\SyncBackPro.dll
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-06 15:42 - 2024-04-06 15:42 - 000000000 ____D C:\ProgramData\Piriform
2024-04-06 15:41 - 2024-05-05 16:32 - 000000000 ____D C:\Program Files\CCleaner
2024-04-06 15:41 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-06 15:41 - 2024-04-15 18:49 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-04-06 15:41 - 2024-04-06 17:38 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-04-06 15:41 - 2024-04-06 15:41 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-04-06 15:41 - 2024-04-06 15:41 - 000002932 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Administrateur
2024-04-06 15:41 - 2024-04-06 15:41 - 000000000 ____D C:\ProgramData\Norton
2024-04-06 09:30 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent SE 5
2024-04-06 09:27 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic
2024-04-06 09:24 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 13
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-05 18:19 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-05 18:09 - 2023-03-31 08:55 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\KeePass
2024-05-05 17:45 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-05-05 17:44 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-05-05 17:40 - 2022-11-07 12:59 - 001803994 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-05 17:40 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-05-05 17:35 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-05 17:34 - 2023-09-04 17:48 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-05-05 17:34 - 2023-09-04 17:48 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-05-05 17:34 - 2022-11-07 12:58 - 000000000 ____D C:\Intel
2024-05-05 17:34 - 2022-11-07 12:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-05 17:34 - 2022-11-07 12:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-05 17:33 - 2023-08-12 16:53 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2024-05-05 17:33 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2024-05-05 17:02 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Local\CyberGhost
2024-05-05 16:36 - 2024-02-05 12:25 - 000002421 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-05 16:36 - 2024-02-05 12:01 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2024-02-05 12:01 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-05 16:29 - 2023-06-30 18:07 - 000000000 ____D C:\Windows\system32\appmgmt
2024-05-05 16:29 - 2023-06-30 17:54 - 000000000 ____D C:\Program Files\Blackmagic Design
2024-05-05 16:28 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CyberGhost
2024-05-05 16:26 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2024-05-05 16:09 - 2022-11-07 19:14 - 000000000 ____D C:\Program Files\Common Files\VST3
2024-05-05 16:09 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Steinberg
2024-05-05 16:08 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\CyberGhost
2024-05-05 16:08 - 2022-11-07 16:10 - 000000000 ____D C:\ProgramData\Package Cache
2024-05-05 16:07 - 2022-11-12 12:53 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2024-05-05 16:06 - 2022-12-11 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2024-05-05 16:05 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2024-05-05 16:04 - 2024-03-16 15:27 - 000000000 ___HD C:\$WINDOWS.~BT
2024-05-05 16:04 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro
2024-05-05 16:04 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\Panther
2024-05-05 16:01 - 2023-02-17 16:45 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-05-05 16:01 - 2022-12-13 17:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\luminati
2024-05-05 16:01 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\NDF
2024-05-05 16:00 - 2023-09-27 10:56 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Google
2024-05-05 15:59 - 2022-11-07 16:00 - 000000000 ____D C:\Users\tbaro\AppData\Local\Google
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Users\tbaro\.android
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Program Files\Android
2024-05-05 15:54 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur
2024-05-05 15:48 - 2022-11-08 13:03 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1667905397
2024-05-05 15:48 - 2022-11-08 13:03 - 000001390 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-05-05 15:15 - 2022-11-07 16:00 - 000000000 ____D C:\Program Files (x86)\Google
2024-05-05 15:15 - 2022-11-07 12:52 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-05 15:08 - 2022-11-07 12:54 - 000001575 _____ C:\Windows\system32\config\VSMIDK
2024-04-22 22:14 - 2023-09-04 17:48 - 000000000 ____D C:\ProgramData\AomeiBR
2024-04-22 22:13 - 2023-09-04 17:49 - 000001024 ____H C:\SYSTAG.BIN
2024-04-22 20:52 - 2024-02-01 17:29 - 000000000 ____D C:\Users\tbaro\AppData\Local\.IdentityService
2024-04-22 18:52 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\GitKraken
2024-04-22 12:04 - 2024-04-04 11:53 - 000000000 ____D C:\Users\tbaro\AppData\Local\SourceServer
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\Packages
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\D3DSCache
2024-04-22 09:26 - 2022-11-07 12:54 - 000000000 ____D C:\ProgramData\Packages
2024-04-20 19:23 - 2024-03-27 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-04-20 19:23 - 2024-02-11 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2024-04-20 19:23 - 2024-02-04 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2024-04-20 19:23 - 2023-11-28 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2024-04-20 19:23 - 2023-11-25 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Library Manager
2024-04-20 19:23 - 2023-11-12 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoyoteWT
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Band-in-a-Box
2024-04-20 19:23 - 2023-11-07 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comptes et Budget - AlauxSoft
2024-04-20 19:23 - 2023-09-27 11:03 - 000000000 ____D C:\Program Files\Intel
2024-04-20 19:23 - 2023-09-27 10:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2024-04-20 19:23 - 2023-08-19 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Underwater
2024-04-20 19:23 - 2023-07-08 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-04-20 19:23 - 2023-07-08 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2024-04-20 19:23 - 2023-07-05 09:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2024-04-20 19:23 - 2023-07-01 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HandBrake
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent 5
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg
2024-04-20 19:23 - 2023-04-03 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnConvert
2024-04-20 19:23 - 2023-03-14 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2024-04-20 19:23 - 2023-02-11 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Slate Digital
2024-04-20 19:23 - 2023-02-06 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2024-04-20 19:23 - 2023-01-25 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spitfire Audio
2024-04-20 19:23 - 2023-01-24 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8
2024-04-20 19:23 - 2023-01-04 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SoundToys
2024-04-20 19:23 - 2022-12-18 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer
2024-04-20 19:23 - 2022-12-15 09:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2024-04-20 19:23 - 2022-12-13 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-04-20 19:23 - 2022-12-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kontakt Lister
2024-04-20 19:23 - 2022-11-27 12:20 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-04-20 19:23 - 2022-11-14 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery Bundle
2024-04-20 19:23 - 2022-11-13 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DMGAudio
2024-04-20 19:23 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valhalla DSP
2024-04-20 19:23 - 2022-11-12 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IK Multimedia
2024-04-20 19:23 - 2022-11-12 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FabFilter
2024-04-20 19:23 - 2022-11-12 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2024-04-20 19:23 - 2022-11-12 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:23 - 2022-11-11 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ORPALIS PDF Reducer 3 Professional Edition
2024-04-20 19:23 - 2022-11-11 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-04-20 19:23 - 2022-11-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2024-04-20 19:23 - 2022-11-08 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2024-04-20 19:23 - 2022-11-08 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EastWest
2024-04-20 19:23 - 2022-11-07 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic SE
2024-04-20 19:23 - 2022-11-07 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2024-04-20 19:23 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Download Assistant
2024-04-20 19:23 - 2022-11-07 19:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2024-04-20 19:23 - 2022-11-07 13:01 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-04-20 19:23 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\InboxApps
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\MsDtc
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\AppLocker
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1029
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1029
2024-04-20 19:22 - 2024-04-03 11:12 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.9
2024-04-20 19:22 - 2024-03-30 17:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.10
2024-04-20 19:22 - 2024-03-21 19:32 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-04-20 19:22 - 2024-02-08 22:37 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2024-04-20 19:22 - 2024-02-02 23:33 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2024-04-20 19:22 - 2023-11-15 12:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2024-04-20 19:22 - 2023-10-18 10:57 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2024-04-20 19:22 - 2023-10-02 10:29 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-20 19:22 - 2023-08-19 16:43 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2024-04-20 19:22 - 2023-08-12 16:53 - 000000000 ____D C:\Windows\system32\AMD
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ___SD C:\Users\defaultuser1\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1
2024-04-20 19:22 - 2023-07-22 16:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2024-04-20 19:22 - 2023-07-21 18:54 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2024-04-20 19:22 - 2023-06-30 16:54 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moo0
2024-04-20 19:22 - 2023-02-24 17:43 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDFtoMusic Pro
2024-04-20 19:22 - 2023-02-16 12:22 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Email Extractor
2024-04-20 19:22 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitKraken
2024-04-20 19:22 - 2022-11-14 18:03 - 000000000 ___RD C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.8
2024-04-20 19:22 - 2022-11-13 16:21 - 000000000 ____D C:\Windows\system32\gf2engine
2024-04-20 19:22 - 2022-11-12 12:20 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:22 - 2022-11-07 17:23 - 000000000 ____D C:\Windows\system32\MRT
2024-04-20 19:22 - 2022-11-07 17:15 - 000000000 ___SD C:\Users\Administrateur\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-11-07 13:01 - 000000000 ___SD C:\Users\tbaro\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\system32\Hydrogen
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\lxss
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WebThreatDefSvc
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\spool
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\System
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\registration
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-04-20 16:24 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-04-20 16:16 - 2022-11-13 09:48 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
2024-04-20 15:14 - 2023-12-24 11:50 - 000001923 _____ C:\Users\Administrateur\Desktop\ReIcon_x64.lnk
2024-04-20 12:23 - 2023-01-11 19:50 - 000000000 ____D C:\Program Files\dotnet
2024-04-19 22:15 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\lxss
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-16 22:07 - 2023-09-26 09:05 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Code
2024-04-16 20:56 - 2022-11-07 15:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-16 19:33 - 2022-11-07 15:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-16 18:57 - 2022-11-11 19:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\qBittorrent
2024-04-16 18:47 - 2022-12-13 11:31 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\vlc
2024-04-16 18:43 - 2022-11-07 15:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-16 16:21 - 2022-11-10 11:24 - 000000000 ____D C:\Users\tbaro\AppData\Local\CrashDumps
2024-04-16 15:54 - 2022-11-07 16:23 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 20:54 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\CyberGhost
2024-04-15 10:18 - 2022-11-16 12:06 - 000000000 ____D C:\Users\tbaro\AppData\Local\babl-0.1
2024-04-14 21:54 - 2022-11-16 12:11 - 000000000 ____D C:\Users\tbaro\AppData\Local\gtk-2.0
2024-04-14 21:13 - 2022-11-11 19:51 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Emjysoft
2024-04-14 18:31 - 2024-03-26 12:13 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Figma
2024-04-13 09:25 - 2022-11-09 16:41 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-04-13 09:24 - 2022-11-09 16:41 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-13 09:18 - 2022-11-12 17:58 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2024-04-13 09:11 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\ValhallaDelay
2024-04-13 09:11 - 2022-11-12 11:52 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Celemony Software GmbH
2024-04-12 22:17 - 2022-11-07 12:52 - 000494928 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 21:22 - 2022-11-07 12:55 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-10 09:00 - 2022-11-07 17:23 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 08:55 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-09 18:29 - 2023-11-17 10:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\NuGet
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\Documents\Visual Studio 2022
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\AppData\Local\.IdentityService
2024-04-09 16:02 - 2022-11-08 09:19 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Word
2024-04-08 10:02 - 2023-04-03 15:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\XnConvert
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\2BrightSparks
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\Users\Administrateur\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\ProgramData\2BrightSparks
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-07 11:07 - 2023-12-22 11:34 - 000000000 ____D C:\Users\Administrateur\Desktop\myMP3-2
2024-04-07 09:37 - 2022-05-07 12:35 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2024-04-07 09:37 - 2022-05-07 12:35 - 000024383 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2024-04-07 09:29 - 2022-11-07 16:40 - 000000000 ____D C:\Windows\system32\Tasks\2BrightSparks
2024-04-07 09:24 - 2022-11-13 10:57 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-04-06 15:43 - 2023-01-05 18:42 - 000000000 ____D C:\Windows\Minidump
2024-04-06 15:41 - 2023-11-23 12:43 - 000000000 ___HD C:\temp
2024-04-06 10:17 - 2022-11-07 19:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Steinberg
2024-04-06 10:15 - 2023-05-18 09:17 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\KeePass
2024-04-06 09:30 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Steinberg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files\eLicenser
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files (x86)\eLicenser
2024-04-06 09:20 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Common Files\Steinberg
==================== Fichiers à la racine de certains dossiers ========
2023-02-16 12:22 - 2023-02-16 12:22 - 000000441 _____ () C:\Users\Administrateur\AppData\Roaming\apps.txt
2023-07-15 09:41 - 2023-07-15 09:42 - 000000016 _____ () C:\Users\Administrateur\AppData\Roaming\msregsvv.dll
2022-11-30 17:45 - 2023-11-23 12:42 - 000000615 _____ () C:\Users\Administrateur\AppData\Local\oobelibMkey.log
2022-11-13 12:20 - 2024-04-13 10:33 - 000772390 _____ () C:\Users\Administrateur\AppData\Local\wle.log
2022-11-13 12:20 - 2024-01-21 11:43 - 001074003 _____ () C:\Users\Administrateur\AppData\Local\wle.log.1
==================== FLock ==============================
2022-11-07 12:52 C:\Windows\system32\config\BFS
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Administrateur (administrateur) sur PCWIN1122H2 (Gigabyte Technology Co., Ltd. B365M DS3H) (05-05-2024 18:24:36)
Exécuté depuis D:\_1_OneDrive\OneDrive\Bureau\FRST64.exe
Profils chargés: tbaro & Administrateur
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22635.3500 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe ->) (Hasleo Software) [Fichier non signé] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupSystemTray.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Waves Audio Ltd.) [Fichier non signé] C:\Windows\SysWOW64\SGDawNodeService.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) () [Fichier non signé] C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Hasleo Software) [Fichier non signé] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_518f2921ba495409\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\tbaro\AppData\Local\Microsoft\OneDrive\24.081.0421.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
Impossible d'accéder au processus -> vmmemCmZygote
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SGDawNodeService] => C:\Windows\SysWOW64\SGDawNodeService.exe [6014464 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3302288 2024-02-04] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Opera Browser Assistant] => C:\Users\tbaro\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Emjysoft Sauvegarde Facile] => C:\Program Files\Emjysoft\Sauvegarde-Facile\Sauvegarde.exe start (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [MicrosoftEdgeAutoLaunch_BB202E6882A355C809BC75A4FF5B13CF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\MountPoints2: {eff12438-6267-11ed-baf0-de28b994db10} - "H:\vs90sp1\SPInstaller.exe"
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417976 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-05] (Google LLC -> Google LLC)
Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SoundGridStudioSilent.lnk [2022-11-13]
ShortcutTarget: SoundGridStudioSilent.lnk -> C:\Program Files (x86)\Waves\SoundGrid Studio\SoundGrid Studio.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WavesLocalServer.lnk [2022-11-13]
ShortcutTarget: WavesLocalServer.lnk -> C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe (Waves Inc -> Waves Audio Ltd.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {7BBC684E-1436-4623-9171-BA87CC531729} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {B1448F41-E3B5-4984-9F9A-C207520243B8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {59DA7391-3458-439B-8DE6-8DD846DB3EFC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "51c25333-6d35-4121-bdef-09c8d44f2189" --version "6.22.10977" --silent
Task: {B5FE2CAE-63A2-4D0C-9BF3-EB3162876C95} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {493AB6AE-14C6-4CEA-900D-E870637D4147} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{E337D36E-8676-4BF7-9419-849362A50E30} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {1E8F4D12-51CE-4BB5-B248-3065C6AA8987} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {673ED929-C6AD-4235-BDF9-DF3E2C6DE79B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A19F5A08-BA3D-4205-AC0A-79F469CFA193} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9AF88C-103F-4337-8996-F00DA53D161B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1939C591-E8B1-4043-A736-5C2A49DB136E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F2B355E7-3B9E-4270-8059-53C84AE49920} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [255040 2024-04-04] (Microsoft Corporation -> Microsoft)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier)
Task: {1D3EE0BD-DA71-4AC0-9510-9128F9A833CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C243C9D7-8DE0-48FD-95BE-5522D22A6F75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9FFC8228-47FD-4A09-8E8F-EE3C82B37869} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A61DB47B-9DE5-4145-92BC-05F56BBFD315} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EE71ACE2-4394-4807-88C1-C35BFF262292} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {FC612F5F-C848-488A-ADDD-0308D3E49370} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2449686422-2661205932-1969823142-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'élément de données a 6 caractères en plus).
Task: {8621A235-54B5-415B-B00D-902004EA9834} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {983116E0-082B-461F-B9CE-9292F1255517} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {161CC31F-EE16-4DBE-831A-CCCDA5CBDEE2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {B4BE6110-2096-4D73-8DF0-08E67C00BF21} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {A470EE5C-4F33-46C6-805F-8B3609D2983A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {26EBB521-4E92-44C5-B8CC-0BDA26FA49E3} - System32\Tasks\Opera scheduled assistant Autoupdate 1667905404 => C:\Users\tbaro\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-05-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\tbaro\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {B2499FFA-D65B-4983-830A-04A12B263DD7} - System32\Tasks\Opera scheduled Autoupdate 1667905397 => C:\Users\tbaro\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-25] (Opera Norway AS -> Opera Software)
Task: {9946EB79-4CC9-4673-9BE6-3056BE60EA5C} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\FFmpeg 1.07\SampleUsage.txt (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{03ac9879-8d55-4fa1-bd42-96ec1f21710a}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{895e891a-8b16-4355-b77f-8ce747d6b0d4}: [DhcpNameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpDomain] lan
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\6427565626F687D2436454144344: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [NameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-05]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-30]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-05-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-05-05]
Edge HomePage: Profile 1 -> hxxps://www.google.com/
Edge StartupUrls: Profile 1 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
Edge Session Restore: Profile 1 -> est activé.
Edge Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bjnclkhfflcbkflemkkdocopfelcbifo [2024-03-17]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-16]
Edge Extension: (Page Ruler) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\dbbmodidecniimhhohmohndfdhhfcdbo [2024-01-14]
Edge Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fcbmiimfkmkkkffjlopcpdlgclncnknm [2023-06-30]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-20]
Edge Extension: (HeadingsMap) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\flbjommegcjonpdmenkdiocclhjacmbi [2024-03-17]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
Edge Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2024-05-05]
Edge Extension: (ColorFish Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jlefpjinggjhccheobegboicdcacepfg [2022-11-20]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-11-11]
Edge Extension: (Smart Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ochgakkmfibnneodjiehdpgdimcondao [2023-10-10]
Edge Extension: (Custom New Tab URL) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\oeibmbobgpgnbnlbaffdgebpeepfbnhi [2023-12-19]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: qjeljq5r.default
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\qjeljq5r.default [2022-11-13]
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release [2024-05-05]
FF user.js: detected! => C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\user.js [2023-02-19]
FF Homepage: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> google.fr
FF Session Restore: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> est activé.
FF Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\clearcache@michel.de.almeida.xpi [2023-02-18]
FF Extension: (Custom Tab Title and Favicon) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\custom-tab-title-favicon@pakker.io.xpi [2023-02-18]
FF Extension: (To Google Translate) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-02-18]
FF Extension: (Material Design Color Palette - Click to Copy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\material-color@harnerdesigns.com.xpi [2023-02-18]
FF Extension: (Firefox Relay) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\private-relay@firefox.com.xpi [2023-08-19]
FF Extension: (Qwant VIPrivacy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\qwantcomforfirefox@jetpack.xpi [2023-02-18]
FF Extension: (TWP - Translate Web Pages) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-08-19]
FF Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2023-06-26]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-08-19]
FF Extension: (Download All Images) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2023-05-28]
FF Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{585280b0-ee78-428a-92c5-3fb3c0b85460}.xpi [2023-05-28]
FF Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2023-02-18]
FF Extension: (Measure-it) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{79b2e4de-8fb4-4ccc-b9f6-362ac2fb74b2}.xpi [2023-02-18]
FF Extension: (Video DownloadHelper) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-19]
FF Extension: (Web Developer) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2023-02-18]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2024-05-05]
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Session Restore: Default -> est activé.
CHR Extension: (Google Traduction) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-05-11]
CHR Extension: (Web Developer) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2023-09-02]
CHR Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-09-16]
CHR Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2022-11-08]
CHR Extension: (Export History/Bookmarks to JSON/CSV*/XLS*) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcoegfodcnjofhjfbhegcgjgapeichlf [2022-11-08]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2023-09-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-23]
CHR Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2024-02-01]
CHR Extension: (NetBeans Connector) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa [2024-02-11]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2023-01-04]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-13]
CHR Extension: (Measure-it) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocbgkoackihphodedlefohapackjmna [2022-11-08]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplfenefaakjhjkklghidleljeocgdap [2024-03-17]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-07-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-08]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-05-05]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-05]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [84216 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S3 CyberGhostTunnel$CyberGhost-WireGuard-12; C:\Program Files\CyberGhost 8\Applications\VPN\WGHelper.exe [26872 2024-01-29] (CyberGhost S.R.L. -> WGHelper)
R2 D-Link DWA-171C_PBC_WPS; C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe [65536 2013-01-15] () [Fichier non signé]
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-10-25] (Mixbyte Inc -> Freemake)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 HasleoBackupSuiteService; C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe [3473920 2024-04-30] (Hasleo Software) [Fichier non signé]
R2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [15821032 2022-09-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [42456 2024-04-04] (Microsoft Corporation -> Microsoft)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142952 2024-02-29] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; D:\wamp64\bin\apache\apache2.4.54.2\bin\httpd.exe [30720 2022-11-02] (Apache Software Foundation) [Fichier non signé]
S3 wampmariadb64; D:\wamp64\bin\mariadb\mariadb10.10.2\bin\mysqld.exe [34696 2022-11-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; D:\wamp64\bin\mysql\mysql8.0.31\bin\mysqld.exe [54641264 2022-09-13] (Oracle America, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe [138176 2017-11-07] (Realtek Semiconductor Corp. -> Realtek)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-11-12] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-11-12] (AOMEI International Network Limited -> )
S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [38832 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [39312 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [45976 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R1 anodlwf; C:\Windows\system32\DRIVERS\anodlwfx.sys [15872 2010-05-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [544768 2023-08-05] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-08-05] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-11-07] (Microsoft Corporation) [Fichier non signé]
R0 fse; C:\Windows\System32\drivers\fse.sys [218496 2023-11-20] (Microsoft Windows -> Microsoft Corporation)
S1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [390144 2023-12-23] (Google LLC -> Google LLC)
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
S3 mlkumidi; C:\Windows\system32\drivers\mlkumidi.sys [55344 2015-12-21] (MusicLab, Inc. -> MusicLab, Inc.)
R3 MpKsl80cdc6b0; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3A375E5E-589D-4AB3-8811-F2A4BF123586}\MpKslDrv.sys [301336 2024-05-05] (Microsoft Windows -> Microsoft Corporation)
R3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 SoundGridMIDI; C:\Windows\system32\drivers\SoundGridMidi.sys [46104 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [23552 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
R2 SoundGridProtocol; C:\Windows\system32\DRIVERS\SoundGridProtocol.sys [132136 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [64000 2022-10-06] (Waves Audio Ltd.) [Fichier non signé]
R3 synusb64; C:\Windows\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-01] (Microsoft Windows -> )
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2023-01-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 ysusb_w10_64; C:\Windows\system32\drivers\ysusb_w10_64.sys [179760 2022-07-08] (Microsoft Windows Hardware Compatibility Publisher -> Yamaha Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-05 18:18 - 2024-05-05 18:24 - 000000000 ____D C:\FRST
2024-05-05 17:40 - 2024-05-05 17:40 - 000808228 _____ C:\Windows\system32\perfh00C.dat
2024-05-05 17:40 - 2024-05-05 17:40 - 000156716 _____ C:\Windows\system32\perfc00C.dat
2024-05-05 16:50 - 2024-05-05 17:33 - 000000000 ____D C:\Windows\system32\config\regsave
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo Backup Suite
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\Program Files\Hasleo
2024-05-05 16:38 - 2024-05-05 16:38 - 029382926 _____ (Hasleo Software. ) C:\Users\tbaro\Downloads\Hasleo_Backup_Suite_Free.exe
2024-05-05 16:04 - 2024-05-05 16:04 - 000000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2024-05-05 15:15 - 2024-05-05 15:15 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-20 19:20 - 2024-04-20 19:21 - 000000000 ___HD C:\$SysReset
2024-04-20 18:30 - 2024-04-20 18:30 - 000008192 _____ C:\Windows\system32\config\userdiff
2024-04-20 17:52 - 2024-04-20 17:52 - 000001994 __RSH C:\ProgramData\ntuser.pol
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagwrn.xml
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagerr.xml
2024-04-20 16:10 - 2024-04-20 16:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\HTML Help
2024-04-20 09:50 - 2024-04-20 09:50 - 000107862 _____ C:\Users\tbaro\Downloads\Edge_Zero_II-7.webp
2024-04-19 21:36 - 2024-04-19 21:37 - 000000000 ___HD C:\$WinREAgent
2024-04-16 18:41 - 2024-04-16 20:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-16 17:59 - 2024-04-16 17:59 - 000000000 ____D C:\Users\tbaro\AppData\Local\github-copilot
2024-04-16 11:37 - 2024-04-16 11:37 - 000407990 _____ C:\Users\tbaro\Downloads\DWA-171_ds_revc_Datasheet_en.pdf
2024-04-15 09:32 - 2024-04-15 09:32 - 000001373 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-14 21:54 - 2024-04-14 21:54 - 000029461 _____ C:\Users\tbaro\AppData\Local\recently-used.xbel
2024-04-14 21:07 - 2024-04-14 21:07 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\HTML Help
2024-04-11 11:14 - 2024-04-11 11:14 - 000000000 ____D C:\Users\tbaro\AppData\Local\PackageManagement
2024-04-11 10:43 - 2024-04-11 10:43 - 000000000 ____D C:\Users\tbaro\.nuget
2024-04-09 20:48 - 2024-04-09 20:48 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Visual Studio Setup
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\source
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ServiceHub
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\IdentityNexusIntegration
2024-04-07 12:05 - 2024-04-07 12:05 - 000001168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\2BrightSparks
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Program Files\2BrightSparks
2024-04-07 12:05 - 2021-05-25 14:41 - 000044032 _____ C:\Windows\SysWOW64\SyncBackPro.dll
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-06 15:42 - 2024-04-06 15:42 - 000000000 ____D C:\ProgramData\Piriform
2024-04-06 15:41 - 2024-05-05 16:32 - 000000000 ____D C:\Program Files\CCleaner
2024-04-06 15:41 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-06 15:41 - 2024-04-15 18:49 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-04-06 15:41 - 2024-04-06 17:38 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-04-06 15:41 - 2024-04-06 15:41 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-04-06 15:41 - 2024-04-06 15:41 - 000002932 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Administrateur
2024-04-06 15:41 - 2024-04-06 15:41 - 000000000 ____D C:\ProgramData\Norton
2024-04-06 09:30 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent SE 5
2024-04-06 09:27 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic
2024-04-06 09:24 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 13
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-05-05 18:19 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-05 18:09 - 2023-03-31 08:55 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\KeePass
2024-05-05 17:45 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-05-05 17:44 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-05-05 17:40 - 2022-11-07 12:59 - 001803994 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-05 17:40 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-05-05 17:35 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-05 17:34 - 2023-09-04 17:48 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-05-05 17:34 - 2023-09-04 17:48 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-05-05 17:34 - 2022-11-07 12:58 - 000000000 ____D C:\Intel
2024-05-05 17:34 - 2022-11-07 12:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-05 17:34 - 2022-11-07 12:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-05 17:33 - 2023-08-12 16:53 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2024-05-05 17:33 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2024-05-05 17:02 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Local\CyberGhost
2024-05-05 16:36 - 2024-02-05 12:25 - 000002421 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-05 16:36 - 2024-02-05 12:01 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2024-02-05 12:01 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-05 16:29 - 2023-06-30 18:07 - 000000000 ____D C:\Windows\system32\appmgmt
2024-05-05 16:29 - 2023-06-30 17:54 - 000000000 ____D C:\Program Files\Blackmagic Design
2024-05-05 16:28 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CyberGhost
2024-05-05 16:26 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2024-05-05 16:09 - 2022-11-07 19:14 - 000000000 ____D C:\Program Files\Common Files\VST3
2024-05-05 16:09 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Steinberg
2024-05-05 16:08 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\CyberGhost
2024-05-05 16:08 - 2022-11-07 16:10 - 000000000 ____D C:\ProgramData\Package Cache
2024-05-05 16:07 - 2022-11-12 12:53 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2024-05-05 16:06 - 2022-12-11 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2024-05-05 16:05 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2024-05-05 16:04 - 2024-03-16 15:27 - 000000000 ___HD C:\$WINDOWS.~BT
2024-05-05 16:04 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro
2024-05-05 16:04 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\Panther
2024-05-05 16:01 - 2023-02-17 16:45 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-05-05 16:01 - 2022-12-13 17:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\luminati
2024-05-05 16:01 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\NDF
2024-05-05 16:00 - 2023-09-27 10:56 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Google
2024-05-05 15:59 - 2022-11-07 16:00 - 000000000 ____D C:\Users\tbaro\AppData\Local\Google
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Users\tbaro\.android
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Program Files\Android
2024-05-05 15:54 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur
2024-05-05 15:48 - 2022-11-08 13:03 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1667905397
2024-05-05 15:48 - 2022-11-08 13:03 - 000001390 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-05-05 15:15 - 2022-11-07 16:00 - 000000000 ____D C:\Program Files (x86)\Google
2024-05-05 15:15 - 2022-11-07 12:52 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-05 15:08 - 2022-11-07 12:54 - 000001575 _____ C:\Windows\system32\config\VSMIDK
2024-04-22 22:14 - 2023-09-04 17:48 - 000000000 ____D C:\ProgramData\AomeiBR
2024-04-22 22:13 - 2023-09-04 17:49 - 000001024 ____H C:\SYSTAG.BIN
2024-04-22 20:52 - 2024-02-01 17:29 - 000000000 ____D C:\Users\tbaro\AppData\Local\.IdentityService
2024-04-22 18:52 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\GitKraken
2024-04-22 12:04 - 2024-04-04 11:53 - 000000000 ____D C:\Users\tbaro\AppData\Local\SourceServer
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\Packages
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\D3DSCache
2024-04-22 09:26 - 2022-11-07 12:54 - 000000000 ____D C:\ProgramData\Packages
2024-04-20 19:23 - 2024-03-27 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-04-20 19:23 - 2024-02-11 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2024-04-20 19:23 - 2024-02-04 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2024-04-20 19:23 - 2023-11-28 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2024-04-20 19:23 - 2023-11-25 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Library Manager
2024-04-20 19:23 - 2023-11-12 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoyoteWT
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Band-in-a-Box
2024-04-20 19:23 - 2023-11-07 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comptes et Budget - AlauxSoft
2024-04-20 19:23 - 2023-09-27 11:03 - 000000000 ____D C:\Program Files\Intel
2024-04-20 19:23 - 2023-09-27 10:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2024-04-20 19:23 - 2023-08-19 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Underwater
2024-04-20 19:23 - 2023-07-08 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-04-20 19:23 - 2023-07-08 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2024-04-20 19:23 - 2023-07-05 09:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2024-04-20 19:23 - 2023-07-01 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HandBrake
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent 5
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg
2024-04-20 19:23 - 2023-04-03 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnConvert
2024-04-20 19:23 - 2023-03-14 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2024-04-20 19:23 - 2023-02-11 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Slate Digital
2024-04-20 19:23 - 2023-02-06 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2024-04-20 19:23 - 2023-01-25 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spitfire Audio
2024-04-20 19:23 - 2023-01-24 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8
2024-04-20 19:23 - 2023-01-04 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SoundToys
2024-04-20 19:23 - 2022-12-18 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer
2024-04-20 19:23 - 2022-12-15 09:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2024-04-20 19:23 - 2022-12-13 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-04-20 19:23 - 2022-12-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kontakt Lister
2024-04-20 19:23 - 2022-11-27 12:20 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-04-20 19:23 - 2022-11-14 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery Bundle
2024-04-20 19:23 - 2022-11-13 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DMGAudio
2024-04-20 19:23 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valhalla DSP
2024-04-20 19:23 - 2022-11-12 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IK Multimedia
2024-04-20 19:23 - 2022-11-12 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FabFilter
2024-04-20 19:23 - 2022-11-12 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2024-04-20 19:23 - 2022-11-12 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:23 - 2022-11-11 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ORPALIS PDF Reducer 3 Professional Edition
2024-04-20 19:23 - 2022-11-11 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-04-20 19:23 - 2022-11-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2024-04-20 19:23 - 2022-11-08 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2024-04-20 19:23 - 2022-11-08 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EastWest
2024-04-20 19:23 - 2022-11-07 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic SE
2024-04-20 19:23 - 2022-11-07 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2024-04-20 19:23 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Download Assistant
2024-04-20 19:23 - 2022-11-07 19:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2024-04-20 19:23 - 2022-11-07 13:01 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-04-20 19:23 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\InboxApps
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\MsDtc
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\AppLocker
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1029
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1029
2024-04-20 19:22 - 2024-04-03 11:12 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.9
2024-04-20 19:22 - 2024-03-30 17:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.10
2024-04-20 19:22 - 2024-03-21 19:32 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-04-20 19:22 - 2024-02-08 22:37 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2024-04-20 19:22 - 2024-02-02 23:33 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2024-04-20 19:22 - 2023-11-15 12:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2024-04-20 19:22 - 2023-10-18 10:57 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2024-04-20 19:22 - 2023-10-02 10:29 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-20 19:22 - 2023-08-19 16:43 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2024-04-20 19:22 - 2023-08-12 16:53 - 000000000 ____D C:\Windows\system32\AMD
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ___SD C:\Users\defaultuser1\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1
2024-04-20 19:22 - 2023-07-22 16:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2024-04-20 19:22 - 2023-07-21 18:54 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2024-04-20 19:22 - 2023-06-30 16:54 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moo0
2024-04-20 19:22 - 2023-02-24 17:43 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDFtoMusic Pro
2024-04-20 19:22 - 2023-02-16 12:22 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Email Extractor
2024-04-20 19:22 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitKraken
2024-04-20 19:22 - 2022-11-14 18:03 - 000000000 ___RD C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.8
2024-04-20 19:22 - 2022-11-13 16:21 - 000000000 ____D C:\Windows\system32\gf2engine
2024-04-20 19:22 - 2022-11-12 12:20 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:22 - 2022-11-07 17:23 - 000000000 ____D C:\Windows\system32\MRT
2024-04-20 19:22 - 2022-11-07 17:15 - 000000000 ___SD C:\Users\Administrateur\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-11-07 13:01 - 000000000 ___SD C:\Users\tbaro\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\system32\Hydrogen
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\lxss
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WebThreatDefSvc
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\spool
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\System
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\registration
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-04-20 16:24 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-04-20 16:16 - 2022-11-13 09:48 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
2024-04-20 15:14 - 2023-12-24 11:50 - 000001923 _____ C:\Users\Administrateur\Desktop\ReIcon_x64.lnk
2024-04-20 12:23 - 2023-01-11 19:50 - 000000000 ____D C:\Program Files\dotnet
2024-04-19 22:15 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\lxss
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-16 22:07 - 2023-09-26 09:05 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Code
2024-04-16 20:56 - 2022-11-07 15:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-16 19:33 - 2022-11-07 15:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-16 18:57 - 2022-11-11 19:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\qBittorrent
2024-04-16 18:47 - 2022-12-13 11:31 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\vlc
2024-04-16 18:43 - 2022-11-07 15:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-16 16:21 - 2022-11-10 11:24 - 000000000 ____D C:\Users\tbaro\AppData\Local\CrashDumps
2024-04-16 15:54 - 2022-11-07 16:23 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 20:54 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\CyberGhost
2024-04-15 10:18 - 2022-11-16 12:06 - 000000000 ____D C:\Users\tbaro\AppData\Local\babl-0.1
2024-04-14 21:54 - 2022-11-16 12:11 - 000000000 ____D C:\Users\tbaro\AppData\Local\gtk-2.0
2024-04-14 21:13 - 2022-11-11 19:51 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Emjysoft
2024-04-14 18:31 - 2024-03-26 12:13 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Figma
2024-04-13 09:25 - 2022-11-09 16:41 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-04-13 09:24 - 2022-11-09 16:41 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-13 09:18 - 2022-11-12 17:58 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2024-04-13 09:11 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\ValhallaDelay
2024-04-13 09:11 - 2022-11-12 11:52 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Celemony Software GmbH
2024-04-12 22:17 - 2022-11-07 12:52 - 000494928 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 21:22 - 2022-11-07 12:55 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-10 09:00 - 2022-11-07 17:23 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 08:55 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-09 18:29 - 2023-11-17 10:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\NuGet
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\Documents\Visual Studio 2022
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\AppData\Local\.IdentityService
2024-04-09 16:02 - 2022-11-08 09:19 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Word
2024-04-08 10:02 - 2023-04-03 15:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\XnConvert
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\2BrightSparks
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\Users\Administrateur\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\ProgramData\2BrightSparks
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-07 11:07 - 2023-12-22 11:34 - 000000000 ____D C:\Users\Administrateur\Desktop\myMP3-2
2024-04-07 09:37 - 2022-05-07 12:35 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2024-04-07 09:37 - 2022-05-07 12:35 - 000024383 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2024-04-07 09:29 - 2022-11-07 16:40 - 000000000 ____D C:\Windows\system32\Tasks\2BrightSparks
2024-04-07 09:24 - 2022-11-13 10:57 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-04-06 15:43 - 2023-01-05 18:42 - 000000000 ____D C:\Windows\Minidump
2024-04-06 15:41 - 2023-11-23 12:43 - 000000000 ___HD C:\temp
2024-04-06 10:17 - 2022-11-07 19:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Steinberg
2024-04-06 10:15 - 2023-05-18 09:17 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\KeePass
2024-04-06 09:30 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Steinberg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files\eLicenser
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files (x86)\eLicenser
2024-04-06 09:20 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Common Files\Steinberg
==================== Fichiers à la racine de certains dossiers ========
2023-02-16 12:22 - 2023-02-16 12:22 - 000000441 _____ () C:\Users\Administrateur\AppData\Roaming\apps.txt
2023-07-15 09:41 - 2023-07-15 09:42 - 000000016 _____ () C:\Users\Administrateur\AppData\Roaming\msregsvv.dll
2022-11-30 17:45 - 2023-11-23 12:42 - 000000615 _____ () C:\Users\Administrateur\AppData\Local\oobelibMkey.log
2022-11-13 12:20 - 2024-04-13 10:33 - 000772390 _____ () C:\Users\Administrateur\AppData\Local\wle.log
2022-11-13 12:20 - 2024-01-21 11:43 - 001074003 _____ () C:\Users\Administrateur\AppData\Local\wle.log.1
==================== FLock ==============================
2022-11-07 12:52 C:\Windows\system32\config\BFS
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================