Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-05-2023 Exécuté par Céline (administrateur) sur DESKTOP-280SDP4 (Micro-Star International Co., Ltd. MS-7B23) (12-05-2023 12:51:13) Exécuté depuis C:\Users\Céline\Desktop\FRST64.exe Profils chargés: Céline Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.2846 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler.exe (C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler64.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.9\ksde.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.9\ksdeui.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <2> (C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe ->) (Druide informatique inc. -> Druide informatique inc.) C:\Program Files\Druide\Antidote 11\Application\Bin64\Antidote.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Druide informatique inc. -> Druide informatique inc.) C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\74.0.3.0\crashpad_handler.exe <2> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <19> (explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe <7> (explorer.exe ->) (Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\ScanToPCActivationApp.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (OLYMPUS CORPORATION) [Fichier non signé] C:\Program Files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (NETGEAR TAIWAN CO., LTD -> NETGEAR) C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (AO Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 10.3\kpm_service.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation) [Fichier non signé] C:\Windows\System32\IPROSetMonitor.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.9\ksde.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (NETGEAR TAIWAN CO., LTD -> ) C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Program Files\Microvirt\MEmu\MemuService.exe (services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.2905_none_7dd39c4c7cb9dfa0\TiWorker.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9267656 2018-02-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [A6210] => C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE [6211776 2018-02-27] (NETGEAR TAIWAN CO., LTD -> NETGEAR) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-05-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Olympus DSS UpdateManager] => C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\UpdateManager.exe [200192 2018-06-13] (OLYMPUS CORPORATION) [Fichier non signé] HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1092576 2023-05-07] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-04-26] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-04-26] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [HP OfficeJet Pro 8720 (NET)] => C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\ScanToPCActivationApp.exe [3770504 2018-04-06] (Hewlett Packard -> HP Inc.) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5792720 2023-05-04] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5792720 2023-05-04] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 10.3\kpm.exe [522648 2023-01-17] (AO Kaspersky Lab -> AO Kaspersky Lab) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\74.0.3.0\GoogleDriveFS.exe [53339416 2023-04-26] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10929320 2021-12-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412984 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2218409065-412658654-1762571001-1001\...\Run: [MicrosoftEdgeAutoLaunch_D82297BE8CF7D85C967A7B009A0A6056] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152224 2023-05-05] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2021-12-24] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\113.0.5672.93\Installer\chrmstp.exe [2023-05-11] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Device Detector 4.lnk [2020-03-16] ShortcutTarget: Device Detector 4.lnk -> C:\Program Files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe (OLYMPUS CORPORATION) [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0464553C-DB50-4B85-882F-609EC179A96C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {235BA74B-8368-4657-BD16-E597F8720BCC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2A8FB106-12D5-4EF1-97B3-8F6DBFA039E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2F565934-B3C6-41A7-BCC4-991B4E9F6646} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23564280 2023-03-30] (Microsoft Corporation -> Microsoft Corporation) Task: {3B93B7EB-036C-4D23-9300-3327C2117ED9} - System32\Tasks\CCleanerSkipUAC - Céline => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {44E1D739-39B1-4DAC-A4EC-C7F4EE89C990} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 8720 => C:\Program Files\HP\HP OfficeJet Pro 8720\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.) Task: {5B8FA3F5-EFCD-4252-BE52-5FF36BFEB993} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {65ED5355-C546-4E8A-8342-C9FC4A84F52C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "65fc30f9-37ee-4935-8a0d-8566b6c11d88" --version "6.11.10455" --silent Task: {6B80AACA-EFC0-4E28-934B-1A9D52BE2FF3} - System32\Tasks\NCH Software\ScribeDowngrade => C:\Program Files (x86)\NCH Software\Scribe\scribe.exe [2118720 2021-08-02] (NCH Software, Inc. -> NCH Software) Task: {7C26F7DB-9F3E-4030-87AE-E1F03155C265} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8F89CDCB-AF35-44A9-A8C1-8D4FA744C6D0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208720 2023-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {9D1837F1-C02D-409E-A8B4-98CC7BF5A4A7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208720 2023-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {A0DD4540-57E2-4CCC-9394-1E6EEBA52BF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3513808 2023-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {A28EE4F0-8770-4756-86AC-E9913A8BD306} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {D43E62A3-C9DA-4B4F-BDD6-7B9C521C7370} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3513808 2023-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {E1C6580B-3FBD-4AD6-9F00-45DD64FF87ED} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {F8631386-1582-4CED-A2D2-8F57985B4159} - System32\Tasks\KpRm-quarantines\KpRm-quarantines-20230506171929 => C:\KPRM\tasks-quarantines\kprm-quarantines.exe [2363152 2023-05-06] (kernel-panik -> kernel-panik) [Fichier non signé] (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{bb58b710-c04d-402e-9ba7-827a20090621}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{df98c738-7353-4151-a170-6fdbbe2986fa}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-12] Edge Extension: (Edge relevant text changes) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-07] Edge Extension: (Connecteur Antidote) - C:\Users\Céline\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-05-09] Edge HKU\S-1-5-21-2218409065-412658654-1762571001-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo] FireFox: ======== FF DefaultProfile: 5l36zcr2.default FF ProfilePath: C:\Users\Céline\AppData\Roaming\Mozilla\Firefox\Profiles\5l36zcr2.default [2023-05-06] FF ProfilePath: C:\Users\Céline\AppData\Roaming\Mozilla\Firefox\Profiles\ktvj17he.default-release [2023-05-06] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-03-05] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-11-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-05-07] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-11-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-05-07] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default [2023-05-11] CHR Notifications: Default -> hxxps://www.youtube.com CHR HomePage: Default -> hxxp://news.google.fr/nwshp?hl=fr&tab=wn CHR StartupUrls: Default -> "hxxp://news.google.fr/nwshp?hl=fr&tab=wn" CHR Extension: (Authenticator) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2022-08-12] CHR Extension: (Kaspersky Password Manager) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2023-04-24] CHR Extension: (Skrapp.io - Email Finder) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\geplbbbmdpmdodfmohpikfacgkfpkhec [2023-04-26] CHR Extension: (Google Docs hors connexion) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-08] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-02] CHR Extension: (Connecteur Antidote) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-05-09] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-12] CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-11] CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-05-12] CHR HomePage: Profile 1 -> hxxp://astromenda.com/?f=1&a=ast_tele_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzz0ByD0DtC0D0AtGtDyDtAyEtG0B0B0E0DtGyEtBtB0EtGyEtDtAtDyBtA0FzztByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1897786782&ir= CHR StartupUrls: Profile 1 -> "hxxp://astromenda.com/?f=7&a=ast_tele_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzz0ByD0DtC0D0AtGtDyDtAyEtG0B0B0E0DtGyEtBtB0EtGyEtDtAtDyBtA0FzztByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1897786782&ir=","hxxp://astromenda.com/?f=7&a=ast_ggfc_14_40_ch&cd=2XzuyEtN2Y1L1Qzu0CzztD0A0AzytA0FyDyCyDtCyB0C0A0CtN0D0Tzu0StCtDtDzztN1L2XzutAtFyDtFtCtFtBtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyB0E0FtBtDtC0CyBtGtB0B0DtBtG0FtDtD0FtG0DyCyByDtGyEtB0F0F0E0E0C0DtByDyByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0DtDtD0FyDtB0FtAtG0A0F0FtBtGyEyB0CzztG0BtD0DyCtG0FyByB0C0ByCtAyBtByDyByC2Q&cr=1684160202&ir=" CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-05-09] CHR Extension: (Google Docs hors connexion) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-05] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-12] CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10 [2023-05-11] CHR Extension: (Kaspersky Protection) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2023-05-03] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-24] CHR Extension: (Google Docs hors connexion) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-03] CHR Extension: (Connecteur Antidote) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-04-01] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-01-25] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Céline\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-25] CHR Profile: C:\Users\Céline\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-11] CHR HKU\S-1-5-21-2218409065-412658654-1762571001-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] Opera: ======= OPR Profile: C:\Users\Céline\AppData\Roaming\Opera Software\Opera Stable [2023-05-11] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Céline\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-11-21] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Céline\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-09] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [928224 2023-05-07] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-07-28] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9491944 2023-03-30] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-15] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-05-02] (Dropbox, Inc -> Dropbox, Inc.) R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [4231408 2023-04-18] (Wondershare Technology Group Co.,Ltd -> wondershare) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-03] (HP Inc. -> HP Inc.) R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-01-22] (Intel Corporation) [Fichier non signé] S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 kpm_service_10.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 10.3\kpm_service.exe [520600 2023-01-17] (AO Kaspersky Lab -> AO Kaspersky Lab) R2 KSDE5.9; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.9\ksde.exe [32008 2023-01-12] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) R2 NetgearSwitchUSB; C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe [192232 2015-09-17] (NETGEAR TAIWAN CO., LTD -> ) S3 Olympus DVR Service; C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe [175104 2018-06-13] (OLYMPUS CORPORATION) [Fichier non signé] S2 SafeKids1.0.5; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe [598936 2023-01-26] (AO Kaspersky Lab -> AO Kaspersky Lab) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [285088 2023-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14814520 2022-10-12] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253520 2021-01-28] (Synology Inc. -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.5-0\NisSrv.exe [3191224 2022-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.5-0\MsMpEng.exe [133560 2022-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 AltruisticsService; C:\Program Files (x86)\Altruist\Altruistic.exe -s [X] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 A6210; C:\WINDOWS\system32\DRIVERS\A6210.sys [2259016 2019-07-17] (NETGEAR TAIWAN CO., LTD -> MediaTek Inc.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klfltks; C:\WINDOWS\system32\DRIVERS\klfltks.sys [552072 2023-01-26] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [713240 2023-03-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1779264 2023-03-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235720 2023-02-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klifks; C:\WINDOWS\System32\DRIVERS\klifks.sys [1083016 2023-01-26] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltun; C:\WINDOWS\system32\DRIVERS\kltun.sys [96616 2023-01-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [353896 2023-04-03] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [350352 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [179320 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [259488 2023-04-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtpks; C:\WINDOWS\system32\DRIVERS\klwtpks.sys [418200 2023-01-26] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R1 ReasonCamFilter; C:\WINDOWS\System32\DRIVERS\ReasonCamFilter.sys [49992 2023-05-03] (Reason CyberSecurity Inc. -> Reason Software Company) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49584 2022-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469248 2022-11-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95528 2022-11-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-12 12:51 - 2023-05-12 12:51 - 000040560 _____ C:\Users\Céline\Desktop\FRST.txt 2023-05-12 12:50 - 2023-05-12 12:50 - 000000000 ____D C:\Users\Céline\Desktop\FRST-OlderVersion 2023-05-11 20:55 - 2023-05-11 20:55 - 000000000 ___HD C:\$WinREAgent 2023-05-11 20:46 - 2023-05-11 20:46 - 003517128 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPSuite (1).exe 2023-05-10 20:12 - 2023-05-10 20:13 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2023-05-10 20:12 - 2023-05-10 20:12 - 000001828 _____ C:\Users\Céline\Desktop\CrystalDiskInfo.lnk 2023-05-10 20:12 - 2023-05-10 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2023-05-10 20:11 - 2023-05-10 20:11 - 005282024 _____ (Crystal Dew World ) C:\Users\Céline\Downloads\CrystalDiskInfo8_17_14.exe 2023-05-10 20:11 - 2023-05-10 20:11 - 005282024 _____ (Crystal Dew World ) C:\Users\Céline\Desktop\CrystalDiskInfo8_17_14.exe 2023-05-10 19:27 - 2023-05-10 19:27 - 000328231 _____ C:\Users\Céline\Desktop\Formulaire-ACED-aide-aux-cotisants-difficulté.pdf 2023-05-10 16:58 - 2023-05-11 22:40 - 000000000 ____D C:\Program Files\HWiNFO64 2023-05-10 16:56 - 2023-05-10 16:56 - 001541800 _____ (Driver Support) C:\Users\Céline\Downloads\DriverUpdate.exe 2023-05-10 16:54 - 2023-05-10 16:54 - 010709400 _____ (Martin Malik, REALiX s.r.o. ) C:\Users\Céline\Downloads\hwinfo_7-44_fr_306584.exe 2023-05-10 16:54 - 2023-05-10 16:54 - 010709400 _____ (Martin Malik, REALiX s.r.o. ) C:\Users\Céline\Desktop\hwinfo_7-44_fr_306584.exe 2023-05-09 14:47 - 2023-05-09 14:47 - 000050017 _____ C:\Users\Céline\Downloads\urssaf-attestation-fiscale-20230509-14h47.pdf 2023-05-09 14:45 - 2023-05-09 14:45 - 000458825 _____ C:\Users\Céline\Downloads\document (6).pdf 2023-05-09 14:45 - 2023-05-09 14:45 - 000458825 _____ C:\Users\Céline\Downloads\document (5).pdf 2023-05-09 13:41 - 2023-05-09 13:42 - 000000000 ____D C:\Users\Céline\Desktop\nettoyage pc 2023-05-07 16:01 - 2023-05-12 12:50 - 002382848 _____ (Farbar) C:\Users\Céline\Desktop\FRST64.exe 2023-05-07 16:01 - 2023-05-07 16:01 - 002382848 _____ (Farbar) C:\Users\Céline\Downloads\FRST64.exe 2023-05-07 16:00 - 2023-05-07 16:00 - 003516104 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPSuite.exe 2023-05-07 16:00 - 2023-05-07 16:00 - 003516104 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPSuite.exe 2023-05-07 14:46 - 2023-05-07 16:17 - 000000000 ____D C:\Users\Céline\AppData\Local\ZHP 2023-05-07 14:46 - 2023-05-07 14:46 - 003309256 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPCleaner.exe 2023-05-07 14:46 - 2023-05-07 14:46 - 003309256 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPCleaner.exe 2023-05-07 12:43 - 2023-05-07 12:43 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2023-05-06 17:21 - 2023-05-06 17:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\KpRm-quarantines 2023-05-06 17:18 - 2023-05-06 17:18 - 002363152 _____ (kernel-panik) C:\Users\Céline\Downloads\kprm_2.13.exe 2023-05-06 17:12 - 2023-05-06 17:24 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-05-06 17:12 - 2023-05-06 17:12 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-05-06 17:12 - 2023-05-06 17:12 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Céline 2023-05-06 15:51 - 2023-05-06 15:53 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - Aux Portes de la Mort Edition Collector 2023-05-06 15:51 - 2023-05-06 15:51 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Aux Portes de la Mort Edition Collector 2023-05-06 15:51 - 2023-05-06 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Aux Portes de la Mort Edition Collector 2023-05-06 09:29 - 2023-05-11 22:42 - 000000000 ____D C:\Users\Céline\AppData\Local\AltruisticApp 2023-05-05 23:45 - 2023-05-05 23:45 - 002635568 _____ (Malwarebytes) C:\Users\Céline\Downloads\MBSetup.exe 2023-05-05 18:18 - 2023-05-06 17:19 - 000000000 ____D C:\Users\Céline\Desktop\Rapport 2023-05-05 17:46 - 2023-05-05 17:46 - 002687198 _____ C:\Users\Céline\Desktop\scan.pdf 2023-05-05 17:30 - 2023-05-05 17:30 - 000070863 _____ C:\Users\Céline\Downloads\2-billets_tribute to johnny & rock party - music'all studio_05-05-20h_celine_schuhmann (1).pdf 2023-05-05 17:29 - 2023-05-05 17:29 - 000320760 _____ C:\Users\Céline\Downloads\document (4).pdf 2023-05-05 15:48 - 2023-05-05 15:48 - 000000085 _____ C:\WINDOWS\wininit.ini 2023-05-05 15:41 - 2023-05-05 15:44 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2023-05-04 22:58 - 2023-05-04 22:58 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit 2023-05-04 16:17 - 2023-05-04 16:17 - 000171621 _____ C:\Users\Céline\Downloads\PaiementTiers28042023 (3).pdf 2023-05-03 22:18 - 2023-05-03 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-05-03 21:03 - 2023-05-03 21:03 - 000131240 _____ C:\Users\Céline\Downloads\2022F09-136.pdf 2023-05-03 21:00 - 2023-05-03 21:00 - 000132307 _____ C:\Users\Céline\Downloads\2022F02-114.pdf 2023-05-03 21:00 - 2023-05-03 21:00 - 000131290 _____ C:\Users\Céline\Downloads\2022F04-117.pdf 2023-05-03 10:54 - 2023-05-03 10:54 - 000000000 ____D C:\Users\Céline\AppData\Roaming\ReasonLabs 2023-05-02 15:59 - 2023-05-02 15:59 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2023-05-01 18:34 - 2023-05-01 18:34 - 000093377 _____ C:\Users\Céline\Downloads\cycle_8_glissees_2.pdf 2023-05-01 18:34 - 2023-05-01 18:34 - 000093377 _____ C:\Users\Céline\Downloads\cycle_8_glissees_2 (1).pdf 2023-05-01 12:27 - 2023-05-01 12:27 - 000171659 _____ C:\Users\Céline\Downloads\PaiementTiers28042023 (2).pdf 2023-05-01 12:26 - 2023-05-01 12:26 - 000171509 _____ C:\Users\Céline\Downloads\PaiementTiers28042023 (1).pdf 2023-05-01 12:24 - 2023-05-01 12:24 - 000171621 _____ C:\Users\Céline\Downloads\PaiementTiers28042023.pdf 2023-05-01 11:55 - 2023-05-01 11:56 - 000000000 ____D C:\Program Files (x86)\Echoes of the Past - Le Guerisseur-Loup Edition Collector 2023-05-01 11:55 - 2023-05-01 11:55 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Le Guerisseur-Loup Edition Collector 2023-05-01 11:55 - 2023-05-01 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Le Guerisseur-Loup Edition Collector 2023-05-01 11:14 - 2023-05-01 11:15 - 000000000 ____D C:\Program Files (x86)\Echoes of the Past - Le Royaume du Desespoir Edition Collector 2023-05-01 11:14 - 2023-05-01 11:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Le Royaume du Desespoir Edition Collector 2023-05-01 11:14 - 2023-05-01 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Le Royaume du Desespoir Edition Collector 2023-04-28 17:25 - 2023-04-28 17:25 - 000000000 ____D C:\Users\Céline\AppData\Roaming\AdbAppControl 2023-04-28 14:57 - 2023-04-28 14:57 - 001735882 _____ C:\Users\Céline\Downloads\Votre devis (2).pdf 2023-04-28 14:56 - 2023-04-28 14:56 - 001735880 _____ C:\Users\Céline\Downloads\Votre devis (1).pdf 2023-04-28 14:50 - 2023-04-28 14:50 - 001735880 _____ C:\Users\Céline\Downloads\Votre devis.pdf 2023-04-28 14:12 - 2023-04-28 14:12 - 000214252 _____ C:\Users\Céline\Downloads\document (3).pdf 2023-04-28 12:09 - 2023-04-28 12:09 - 000070863 _____ C:\Users\Céline\Downloads\2-billets_tribute to johnny & rock party - music'all studio_05-05-20h_celine_schuhmann.pdf 2023-04-26 10:31 - 2023-04-26 10:31 - 000016952 _____ C:\Users\Céline\Downloads\PROFORMA030037.pdf 2023-04-26 10:28 - 2023-04-26 10:28 - 000064624 _____ C:\Users\Céline\Downloads\ticket.pdf 2023-04-26 10:15 - 2023-04-26 10:15 - 001885609 _____ C:\Users\Céline\Downloads\FR9006770B_NEO_explosed-view-1.pdf 2023-04-26 10:15 - 2023-04-26 10:15 - 001885609 _____ C:\Users\Céline\Downloads\FR9006770B_NEO_explosed-view-1 (1).pdf 2023-04-26 10:02 - 2023-04-26 10:02 - 000583341 _____ C:\Users\Céline\Downloads\Supra-Neo67-vue-eclatee.pdf 2023-04-24 13:32 - 2023-04-24 13:32 - 000491148 _____ C:\Users\Céline\Downloads\paiement_TVA_20230424_133205.pdf 2023-04-24 13:32 - 2023-04-24 13:32 - 000491148 _____ C:\Users\Céline\Downloads\paiement_TVA_20230424_133205 (1).pdf 2023-04-24 13:04 - 2023-04-24 13:04 - 001041454 _____ C:\Users\Céline\Downloads\productTechnicalSheet.pdf 2023-04-24 10:02 - 2023-04-24 10:02 - 000159247 _____ C:\Users\Céline\Downloads\urssaf-justificatif-declaration-2023-03-20230424-10h02.pdf 2023-04-24 09:59 - 2023-04-24 09:59 - 000214877 _____ C:\Users\Céline\Downloads\document (2).pdf 2023-04-23 23:29 - 2023-05-05 16:20 - 000000000 ____D C:\Program Files\Wondershare 2023-04-23 23:26 - 2023-04-23 23:26 - 001389488 _____ C:\Users\Céline\Downloads\recoverit_setup_full4286.exe 2023-04-21 15:26 - 2023-05-06 16:49 - 000000000 ____D C:\Users\Céline\Desktop\gh_rotk 2023-04-21 13:53 - 2023-04-21 14:05 - 000000000 ____D C:\Users\Céline\AppData\Roaming\RAV Endpoint Protection 2023-04-21 12:49 - 2023-04-21 12:49 - 000000000 ____D C:\Users\Céline\AppData\Local\Gh 2023-04-21 12:46 - 2023-04-21 14:07 - 000000000 ____D C:\Users\Céline\AppData\Roaming\rav-antivirus-client 2023-04-21 12:45 - 2023-05-03 10:53 - 000049992 _____ (Reason Software Company) C:\WINDOWS\system32\Drivers\ReasonCamFilter.sys 2023-04-21 12:44 - 2023-05-12 12:48 - 000000000 ____D C:\Program Files\CCleaner 2023-04-21 12:44 - 2023-05-11 22:43 - 000000000 ____D C:\Program Files (x86)\Altruist 2023-04-21 12:44 - 2023-05-11 22:42 - 000000000 ____D C:\Users\Céline\AppData\Local\Altruist 2023-04-21 12:44 - 2023-05-11 22:42 - 000000000 ____D C:\ProgramData\Altruist 2023-04-21 12:44 - 2023-04-21 12:44 - 000367096 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys 2023-04-21 12:44 - 2023-04-21 12:44 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2023-04-21 12:44 - 2023-04-21 12:44 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\CLR Security Config 2023-04-21 12:44 - 2023-04-21 12:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2023-04-21 12:43 - 2023-05-06 16:49 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Taskbarify 2023-04-21 12:42 - 2023-05-06 10:00 - 000000000 ____D C:\Program Files (x86)\NailsBronteDS 2023-04-21 12:42 - 2023-04-21 12:42 - 000000000 _____ C:\WINDOWS\ResistancReach.INI 2023-04-21 12:41 - 2023-04-21 12:41 - 000000000 ____D C:\Users\Céline\AppData\Roaming\7zip 2023-04-21 12:33 - 2023-04-21 12:33 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Elephant Games 2023-04-21 12:33 - 2023-04-21 12:33 - 000000000 ____D C:\ProgramData\Elephant Games 2023-04-21 12:31 - 2023-04-21 12:32 - 000000000 ____D C:\Program Files (x86)\Mystery Trackers - Raincliff Edition Collector 2023-04-21 12:31 - 2023-04-21 12:31 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mystery Trackers - Raincliff Edition Collector 2023-04-21 12:31 - 2023-04-21 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mystery Trackers - Raincliff Edition Collector 2023-04-20 20:21 - 2023-04-20 20:21 - 002299896 _____ C:\Users\Céline\Downloads\drfone_repair_setup_full3371.exe 2023-04-20 17:09 - 2023-04-20 17:09 - 000000000 ____D C:\ProgramData\Particles 2023-04-20 11:53 - 2023-04-20 11:53 - 000124608 _____ C:\Users\Céline\Downloads\Releve_n_003_du_31_03_2023_372665765_hGiI2V7Z.pdf 2023-04-20 11:53 - 2023-04-20 11:53 - 000121171 _____ C:\Users\Céline\Downloads\Releve_n_002_du_28_02_2023_370757437_2Qr7FEvg.pdf 2023-04-20 11:52 - 2023-04-20 11:52 - 000104412 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_372799292_RKP7B867.pdf 2023-04-20 11:51 - 2023-04-20 11:51 - 000104412 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_372799292_mdluRRKp.pdf 2023-04-20 11:50 - 2023-04-20 11:50 - 000103616 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_370883395_BqirFXNv.pdf 2023-04-20 11:50 - 2023-04-20 11:50 - 000102977 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_369087723_GmpcgDsF.pdf 2023-04-20 11:47 - 2023-04-20 11:47 - 000102977 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_369087723_k5JuCuzq.pdf 2023-04-20 11:46 - 2023-04-20 11:46 - 000103616 _____ C:\Users\Céline\Downloads\E_Releve_Business_Differe_PORTEUR_370883395_jibkKzFc.pdf 2023-04-20 11:45 - 2023-04-20 11:45 - 000116065 _____ C:\Users\Céline\Downloads\Releve_de_Facturation_2022(05_01_2023)_366769601_sHXWA5Uw.pdf 2023-04-20 11:11 - 2023-04-20 11:11 - 000000000 ____D C:\Program Files\Common Files\Apple 2023-04-20 11:04 - 2023-04-20 11:04 - 002300408 _____ C:\Users\Céline\Downloads\drfone_repair_setup_full3450 (2).exe 2023-04-19 19:07 - 2023-04-19 19:07 - 002300408 _____ C:\Users\Céline\Downloads\drfone_repair_setup_full3450 (1).exe 2023-04-19 18:24 - 2023-04-19 18:25 - 002300408 _____ C:\Users\Céline\Downloads\drfone_repair_setup_full3450.exe 2023-04-19 15:50 - 2023-04-19 15:50 - 000000000 ____D C:\Users\Céline\AppData\Roaming\DominiGames 2023-04-19 15:48 - 2023-04-19 15:49 - 000000000 ____D C:\Program Files (x86)\Secret City - La Menace Humaine Edition Collector 2023-04-19 15:48 - 2023-04-19 15:48 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Secret City - La Menace Humaine Edition Collector 2023-04-19 15:48 - 2023-04-19 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secret City - La Menace Humaine Edition Collector 2023-04-19 14:05 - 2023-04-24 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie 2023-04-19 14:05 - 2023-04-19 14:05 - 000000000 ____D C:\Users\Céline\AppData\Roaming\iMobie 2023-04-19 14:05 - 2023-04-19 14:05 - 000000000 ____D C:\Users\Céline\AppData\Local\iMobie_Inc 2023-04-19 14:03 - 2023-04-24 09:12 - 000000000 ____D C:\Program Files (x86)\iMobie 2023-04-19 14:02 - 2023-05-06 16:49 - 000000000 ____D C:\Users\Céline\Desktop\Droidkit 2023-04-18 20:13 - 2023-04-18 20:13 - 000000000 ____D C:\Users\Céline\AppData\Roaming\SevenSails 2023-04-18 20:12 - 2023-04-18 20:12 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Sultan's Labyrinth - Le Sacrifice de Bahar 2023-04-18 20:12 - 2023-04-18 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sultan's Labyrinth - Le Sacrifice de Bahar 2023-04-18 20:12 - 2023-04-18 20:12 - 000000000 ____D C:\Program Files (x86)\The Sultan's Labyrinth - Le Sacrifice de Bahar 2023-04-18 20:04 - 2023-04-18 20:04 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde 2023-04-16 22:54 - 2023-04-16 22:54 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-04-14 12:48 - 2023-04-14 12:48 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Frogwares 2023-04-14 12:47 - 2023-04-14 12:47 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dracula - L'Alliance Maudite Edition Collector 2023-04-14 12:47 - 2023-04-14 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dracula - L'Alliance Maudite Edition Collector 2023-04-14 12:47 - 2023-04-14 12:47 - 000000000 ____D C:\Program Files (x86)\Dracula - L'Alliance Maudite Edition Collector 2023-04-14 11:04 - 2023-04-14 11:06 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - Le Parc de la Mort Edition Collector 2023-04-14 11:04 - 2023-04-14 11:04 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Le Parc de la Mort Edition Collector 2023-04-14 11:04 - 2023-04-14 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Le Parc de la Mort Edition Collector 2023-04-14 07:43 - 2023-04-14 07:43 - 000026280 _____ C:\Users\Céline\Documents\pds lUBIN 13.04.2023.pdf 2023-04-13 19:26 - 2023-04-28 17:25 - 000000000 ____D C:\Users\Céline\Desktop\Tor Browser 2023-04-13 19:25 - 2023-04-13 19:25 - 000000000 ____D C:\Users\Céline\AppData\Roaming\tor 2023-04-13 18:21 - 2023-04-13 18:21 - 000026369 _____ C:\Users\Céline\Desktop\Z230413087.pdf 2023-04-13 18:20 - 2023-04-13 18:20 - 000026369 _____ C:\Users\Céline\Downloads\Z230413087.pdf 2023-04-12 17:06 - 2023-04-12 17:07 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - La Delivrance Edition Collector 2023-04-12 17:06 - 2023-04-12 17:06 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Delivrance Edition Collector 2023-04-12 17:06 - 2023-04-12 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Delivrance Edition Collector 2023-04-11 16:56 - 2023-04-11 16:57 - 000000000 ____D C:\Program Files (x86)\Echoes of the Past - Les Citadelles du Temps Edition Collector 2023-04-11 16:56 - 2023-04-11 16:56 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Les Citadelles du Temps Edition Collector 2023-04-11 16:56 - 2023-04-11 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - Les Citadelles du Temps Edition Collector 2023-04-08 14:59 - 2023-04-08 15:00 - 000000000 ____D C:\Program Files (x86)\Echoes of the Past - La Vengeance de la Sorciere Edition Collector 2023-04-08 14:59 - 2023-04-08 14:59 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - La Vengeance de la Sorciere Edition Collector 2023-04-08 14:59 - 2023-04-08 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - La Vengeance de la Sorciere Edition Collector 2023-04-07 19:58 - 2023-04-14 11:06 - 000000000 ____D C:\Users\Céline\AppData\Roaming\AMAX Interactive 2023-04-07 18:33 - 2023-04-07 18:34 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - L Incarnation du Mal Edition Collector 2023-04-07 18:33 - 2023-04-07 18:33 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - L Incarnation du Mal Edition Collector 2023-04-07 18:33 - 2023-04-07 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - L Incarnation du Mal Edition Collector 2023-04-07 16:09 - 2023-04-07 16:09 - 000000000 ____D C:\Users\Céline\AppData\Roaming\GrandMA Studios 2023-04-07 16:08 - 2023-04-07 16:09 - 000000000 ____D C:\Program Files (x86)\Whispered Secrets - Le Chant de Tristesse Edition Collector 2023-04-07 16:08 - 2023-04-07 16:08 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Whispered Secrets - Le Chant de Tristesse Edition Collector 2023-04-07 16:08 - 2023-04-07 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Whispered Secrets - Le Chant de Tristesse Edition Collector 2023-04-06 21:15 - 2023-05-01 11:28 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Orneon 2023-04-06 21:15 - 2023-04-06 21:15 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Macromedia 2023-04-06 21:13 - 2023-04-06 21:13 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - La Malediction d'Orion 2023-04-06 21:13 - 2023-04-06 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echoes of the Past - La Malediction d'Orion 2023-04-06 21:13 - 2023-04-06 21:13 - 000000000 ____D C:\Program Files (x86)\Echoes of the Past - La Malediction d'Orion 2023-04-06 17:22 - 2023-04-21 14:15 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Malediction du Corbeau Edition Collector 2023-04-06 17:22 - 2023-04-21 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - La Malediction du Corbeau Edition Collector 2023-04-06 17:22 - 2023-04-21 14:15 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - La Malediction du Corbeau Edition Collector 2023-04-06 17:11 - 2023-05-06 15:55 - 000000000 ____D C:\Users\Céline\AppData\Roaming\ERS Game Studios 2023-04-06 17:06 - 2023-05-06 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2023-04-06 17:06 - 2023-04-06 17:07 - 000000000 ____D C:\Program Files (x86)\Redemption Cemetery - Temoignage d'Outre-Tombe Edition Collector 2023-04-06 17:06 - 2023-04-06 17:06 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Temoignage d'Outre-Tombe Edition Collector 2023-04-06 17:06 - 2023-04-06 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Redemption Cemetery - Temoignage d'Outre-Tombe Edition Collector 2023-04-06 16:55 - 2023-05-06 15:54 - 000000000 ____D C:\Users\Céline\Desktop\Bigfish game 2023-04-06 16:51 - 2023-04-06 16:51 - 000001996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Manager.lnk 2023-04-06 16:51 - 2023-04-06 16:51 - 000001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\More Great Games.lnk 2023-04-06 16:50 - 2023-04-06 16:51 - 000000000 ____D C:\Program Files (x86)\bfgclient 2023-04-05 21:45 - 2023-04-05 21:45 - 000041887 _____ C:\Users\Céline\Downloads\consulterBien (2).pdf 2023-04-05 21:44 - 2023-04-05 21:44 - 000041996 _____ C:\Users\Céline\Downloads\consulterBien (1).pdf 2023-04-05 21:36 - 2023-04-05 21:36 - 001546495 _____ C:\Users\Céline\Documents\Scan_0005.pdf 2023-04-05 21:34 - 2023-04-05 21:34 - 000132055 _____ C:\Users\Céline\Downloads\2023F04-173.pdf 2023-04-02 21:27 - 2023-04-02 21:27 - 000131703 _____ C:\Users\Céline\Downloads\2023F04-170.pdf 2023-04-01 19:06 - 2023-05-04 22:56 - 000000000 ____D C:\Users\Céline\Desktop\Capture bigfish game 2023-03-31 21:57 - 2023-03-31 21:57 - 001088177 _____ C:\Users\Céline\Downloads\Texting1.mp4 2023-03-31 21:30 - 2023-03-31 21:30 - 000034427 _____ C:\Users\Céline\Desktop\recu-fiscal_26-03-2023-ha-asso-2984908_celineschuhmann.pdf 2023-03-31 12:52 - 2023-03-31 12:52 - 000905154 _____ C:\Users\Céline\Downloads\QUESTIONNAIRE A REMPLIR AVANT VOTRE CONSULTATION.pdf 2023-03-31 12:52 - 2023-03-31 12:52 - 000646984 _____ C:\Users\Céline\Downloads\INFORMATION SUR L'ANESTHESIE.pdf 2023-03-31 12:52 - 2023-03-31 12:52 - 000646984 _____ C:\Users\Céline\Downloads\INFORMATION SUR L'ANESTHESIE (1).pdf 2023-03-31 12:52 - 2023-03-31 12:52 - 000461011 _____ C:\Users\Céline\Downloads\INFORMATION SUR LA TRANSFUSION_.pdf 2023-03-30 21:21 - 2023-03-30 21:21 - 000100043 _____ C:\Users\Céline\Downloads\Personne de confiance - Signature manuelle.pdf 2023-03-25 15:19 - 2023-04-06 17:12 - 000000000 ____D C:\BigFishCache 2023-03-25 15:19 - 2023-04-06 16:50 - 000000000 ____D C:\ProgramData\Big Fish 2023-03-25 15:17 - 2023-03-25 15:17 - 000253856 _____ C:\Users\Céline\Downloads\Big_Fish_Removal_Tool (1).exe 2023-03-24 23:01 - 2023-03-24 23:01 - 000000000 ____D C:\Users\Céline\Documents\Nouveau dossier 2023-03-24 22:49 - 2023-03-24 22:49 - 000045463 _____ C:\Users\Céline\Downloads\20230324214938-U6j6N4.pdf 2023-03-24 22:26 - 2023-03-24 22:26 - 000159065 _____ C:\Users\Céline\Downloads\20230324212649-l1g6t2.pdf 2023-03-24 22:25 - 2023-03-24 22:25 - 000161562 _____ C:\Users\Céline\Downloads\20230324212527-K8x3v4.pdf 2023-03-24 22:25 - 2023-03-24 22:25 - 000161562 _____ C:\Users\Céline\Downloads\20230324212519-E6c8j4.pdf 2023-03-23 20:59 - 2023-03-23 20:59 - 002747390 _____ C:\Users\Céline\Downloads\CARTES_MUTUALISTES.pdf 2023-03-20 21:03 - 2023-03-20 21:43 - 2683904825 _____ C:\Users\Céline\Downloads\Les.Démons.De.Jésus.1997.FRENCH.1080p.HDLight.AC3.x264-k7.Wawacity.tech.mkv 2023-03-19 13:08 - 2023-05-11 19:05 - 000000000 ____D C:\ProgramData\TEMP 2023-03-19 13:05 - 2023-03-19 13:08 - 000000000 ____D C:\Users\Céline\AppData\Local\Big Fish 2023-03-18 15:01 - 2023-03-18 15:01 - 000199570 _____ C:\Users\Céline\Downloads\EVIDEMMENT_LA_ZARRA__represente_la_France_a_lEurovision_2023__FINAL_DECOUPAGE.pdf 2023-03-17 17:07 - 2023-03-17 17:07 - 000035189 _____ C:\Users\Céline\Downloads\Samedi_25_mars_2023.pdf 2023-03-17 17:03 - 2023-03-17 17:04 - 000042386 _____ C:\Users\Céline\Downloads\Dimanche_26_mars_2023.pdf 2023-03-16 10:37 - 2023-03-16 10:37 - 000491147 _____ C:\Users\Céline\Downloads\paiement_TVA_20230316_093702.pdf 2023-03-16 10:37 - 2023-03-16 10:37 - 000491147 _____ C:\Users\Céline\Downloads\paiement_TVA_20230316_093702 (1).pdf 2023-03-14 22:20 - 2023-03-14 22:20 - 000274227 _____ C:\Users\Céline\Downloads\CourrierDeVotreCaisse.pdf 2023-03-14 20:42 - 2023-03-14 20:42 - 000005351 _____ C:\Users\Céline\Downloads\CA20230314_194217.xlsx 2023-03-14 20:31 - 2023-03-14 20:31 - 000159118 _____ C:\Users\Céline\Downloads\urssaf-justificatif-declaration-2023-02-20230314-19h31.pdf 2023-03-10 15:55 - 2023-03-10 15:55 - 000183787 _____ C:\Users\Céline\Downloads\FICHE-TECHNIQUE-eurovision_230305_192332.pdf 2023-03-10 15:55 - 2023-03-10 15:55 - 000138234 _____ C:\Users\Céline\Downloads\PLANNING-ELEVES-EUROVISION_230305_192346.pdf 2023-03-06 23:39 - 2023-03-06 23:39 - 000533514 _____ C:\Users\Céline\Downloads\Les_fleurs_-_Clara_Luciani_230228_202101 (1).pdf 2023-03-06 20:51 - 2023-03-06 20:51 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN.lnk 2023-03-06 20:51 - 2023-03-06 20:51 - 000001155 _____ C:\Users\Public\Desktop\Kaspersky VPN.lnk 2023-03-02 18:58 - 2023-03-02 18:58 - 000000000 ____D C:\Users\Céline\AppData\Roaming\lddownloader 2023-03-02 18:58 - 2023-03-02 18:58 - 000000000 ____D C:\Users\Céline\AppData\Roaming\ChangZhi2 2023-03-02 18:58 - 2023-03-02 18:58 - 000000000 ____D C:\LDPlayer 2023-03-01 20:59 - 2023-03-01 20:59 - 000000000 __SHD C:\Users\Céline\.dropbox_bi 2023-03-01 15:11 - 2023-03-01 15:11 - 000533514 _____ C:\Users\Céline\Downloads\Les_fleurs_-_Clara_Luciani_230228_202101.pdf 2023-03-01 15:09 - 2023-03-01 15:09 - 000199720 _____ C:\Users\Céline\Downloads\document (1).pdf 2023-02-28 23:10 - 2023-02-28 23:11 - 000132126 _____ C:\Users\Céline\Downloads\2023F03-167.pdf 2023-02-28 23:08 - 2023-02-28 23:08 - 000133187 _____ C:\Users\Céline\Downloads\2023F03-166.pdf 2023-02-28 22:57 - 2023-02-28 22:57 - 000132006 _____ C:\Users\Céline\Downloads\2023F03-165.pdf 2023-02-28 22:48 - 2023-02-28 22:48 - 000131539 _____ C:\Users\Céline\Downloads\2023F03-164.pdf 2023-02-28 22:46 - 2023-02-28 22:46 - 000127583 _____ C:\Users\Céline\Downloads\2023F03-163.pdf 2023-02-28 22:45 - 2023-02-28 22:45 - 000132196 _____ C:\Users\Céline\Downloads\2023F03-162.pdf 2023-02-28 00:06 - 2023-02-28 00:06 - 000272982 _____ C:\Users\Céline\Downloads\document.pdf 2023-02-28 00:05 - 2023-02-28 00:05 - 000050017 _____ C:\Users\Céline\Downloads\urssaf-attestation-fiscale-20230227-23h05.pdf 2023-02-28 00:05 - 2023-02-28 00:05 - 000045747 _____ C:\Users\Céline\Downloads\urssaf-attestation-vigilance-20230227-23h05.pdf 2023-02-26 20:09 - 2023-02-26 20:09 - 000080041 _____ C:\Users\Céline\Downloads\1533_001.pdf 2023-02-25 18:45 - 2023-02-25 18:45 - 000000000 ____D C:\WINDOWS\Panther 2023-02-23 22:01 - 2023-02-23 22:01 - 000041732 _____ C:\Users\Céline\Downloads\consulterBien.pdf 2023-02-23 20:44 - 2023-02-23 20:44 - 000045123 _____ C:\Users\Céline\Downloads\Déclaration_Occupation_Loyer_230223194453.pdf 2023-02-23 20:25 - 2023-02-23 20:25 - 000131583 _____ C:\Users\Céline\Downloads\2023F02-161.pdf 2023-02-21 23:48 - 2023-02-21 23:48 - 000159065 _____ C:\Users\Céline\Downloads\20230221224818-X4C8k3.pdf 2023-02-21 23:48 - 2023-02-21 23:48 - 000159065 _____ C:\Users\Céline\Downloads\20230221224809-u7Z4v4.pdf 2023-02-21 19:36 - 2023-02-28 18:45 - 000001090 _____ C:\Users\Public\Desktop\WinRAR.lnk 2023-02-19 21:56 - 2023-02-19 21:57 - 000000000 ____D C:\Users\Céline\Downloads\MEmu Download 2023-02-19 19:50 - 2023-02-19 19:51 - 037962360 _____ C:\Users\Céline\Downloads\server.jar 2023-02-19 14:44 - 2023-02-19 14:44 - 000046096 _____ C:\Users\Céline\Downloads\RESULTATS_CHALLENGE_MIX_LIVE_CYCLE_1_2.pdf 2023-02-19 14:43 - 2023-02-19 14:44 - 000112536 _____ C:\Users\Céline\Downloads\INTERPRETATION_-_Cycle_5_semaine_du_20_au_27_fevrier_2023.pdf 2023-02-18 12:12 - 2022-04-20 23:37 - 000000146 _____ C:\Users\Céline\Downloads\pack.mcmeta 2023-02-18 12:12 - 2021-10-27 01:36 - 000000000 ____D C:\Users\Céline\Downloads\assets 2023-02-18 12:11 - 2023-02-18 12:11 - 001016648 _____ (WinZip Computing) C:\Users\Céline\Downloads\winzip26-mf.exe 2023-02-17 18:31 - 2023-02-17 18:31 - 007410854 _____ C:\Users\Céline\Downloads\forge-1.16.5-36.2.39-installer.jar 2023-02-17 18:28 - 2023-02-17 18:28 - 007947907 _____ C:\Users\Céline\Downloads\forge-1.16.5-36.2.34-installer (1).jar 2023-02-17 18:28 - 2023-02-17 18:28 - 006911535 _____ C:\Users\Céline\Downloads\forge-1.19.3-44.1.16-installer.jar 2023-02-17 18:27 - 2023-02-17 18:27 - 007947907 _____ C:\Users\Céline\Downloads\forge-1.16.5-36.2.34-installer.jar 2023-02-17 15:37 - 2023-03-05 15:12 - 000000000 ____D C:\Users\Céline\AppData\Roaming\.minecraft 2023-02-17 15:36 - 2023-02-17 19:35 - 000000000 ____D C:\Users\Céline\AppData\Roaming\paladium-group 2023-02-17 15:36 - 2023-02-17 15:36 - 000002422 _____ C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paladium.lnk 2023-02-17 15:36 - 2023-02-17 15:36 - 000000000 ____D C:\Users\Céline\AppData\Local\paladium-group-updater 2023-02-16 19:06 - 2023-03-25 12:02 - 000001516 _____ C:\Users\Céline\.lmmsrc.xml 2023-02-16 19:05 - 2023-03-25 12:02 - 000000000 ____D C:\Users\Céline\Documents\lmms 2023-02-15 18:18 - 2023-03-26 17:42 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-02-15 18:16 - 2023-03-19 13:02 - 000000000 ____D C:\Users\Céline\Desktop\Tor 2023-02-15 10:13 - 2023-02-15 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LMMS 1.2.2 2023-02-15 10:13 - 2023-02-15 10:13 - 000000000 ____D C:\Program Files\LMMS ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-05-12 12:51 - 2022-08-06 10:36 - 000000000 ____D C:\FRST 2023-05-12 12:50 - 2019-07-03 20:31 - 000000000 ____D C:\Users\Céline\AppData\Local\D3DSCache 2023-05-12 12:49 - 2021-05-10 17:36 - 000000000 ___RD C:\Users\Céline\Creative Cloud Files 2023-05-12 12:49 - 2019-09-18 14:44 - 000000000 ____D C:\Users\Céline\AppData\Local\Dropbox 2023-05-12 12:49 - 2019-06-22 09:35 - 000000000 ___SD C:\Users\Céline\AppData\Roaming\Microsoft\Credentials 2023-05-12 12:48 - 2022-06-08 14:31 - 000000000 ____D C:\Users\Céline\AppData\Roaming\DropboxElectron 2023-05-11 23:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-05-11 23:34 - 2019-06-22 09:42 - 000000000 ____D C:\ProgramData\NVIDIA 2023-05-11 23:15 - 2020-09-10 12:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-05-11 22:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-05-11 22:52 - 2019-07-01 13:22 - 000000000 ____D C:\Program Files (x86)\Google 2023-05-11 22:48 - 2020-05-19 19:25 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2023-05-11 22:43 - 2020-09-10 12:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-05-11 22:43 - 2020-09-10 12:31 - 000479064 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-05-11 22:43 - 2020-08-14 16:58 - 000008192 ___SH C:\DumpStack.log.tmp 2023-05-11 22:42 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-05-11 22:39 - 2022-01-03 09:58 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Filestar 2023-05-11 21:11 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-05-11 21:01 - 2021-11-18 20:29 - 000000000 ____D C:\Users\Céline\AppData\Roaming\ZHP 2023-05-11 19:31 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-05-11 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-05-11 19:27 - 2020-08-28 17:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-05-11 19:27 - 2019-06-22 09:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-05-11 19:22 - 2019-06-22 09:56 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-05-11 19:05 - 2021-05-18 13:49 - 000000000 ____D C:\Users\Céline\AppData\Local\CrashDumps 2023-05-11 18:44 - 2021-05-10 17:35 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2023-05-11 18:43 - 2020-09-10 12:35 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-05-11 18:43 - 2020-09-10 12:35 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-05-10 19:41 - 2019-06-22 10:15 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Excel 2023-05-10 19:02 - 2019-06-22 10:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Word 2023-05-09 22:07 - 2021-09-19 20:26 - 000000000 ____D C:\Users\Céline\Desktop\boulot 2023-05-09 14:42 - 2020-01-14 19:55 - 000024605 _____ C:\Users\Céline\Desktop\Charges comptes.xlsx 2023-05-09 14:35 - 2022-10-13 20:34 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-05-09 14:35 - 2020-09-10 12:35 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-05-09 14:22 - 2022-10-13 20:40 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk 2023-05-09 14:22 - 2022-10-13 20:40 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2023-05-09 13:58 - 2019-06-22 09:35 - 000000000 ____D C:\Users\Céline\AppData\Local\Packages 2023-05-07 23:51 - 2020-07-09 11:28 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-05-07 21:12 - 2019-06-22 09:55 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\Mozilla 2023-05-07 12:43 - 2021-05-10 17:34 - 000000000 ____D C:\Program Files\Common Files\Adobe 2023-05-07 12:43 - 2021-05-10 17:34 - 000000000 ____D C:\Program Files\Adobe 2023-05-07 12:43 - 2019-07-01 14:50 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-05-06 17:19 - 2022-07-12 17:02 - 000000000 ____D C:\KPRM 2023-05-06 16:56 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-05-06 16:49 - 2023-01-10 11:07 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-05-06 16:49 - 2021-06-29 18:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple 2023-05-06 16:49 - 2019-07-05 18:05 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-05-06 15:28 - 2021-12-13 18:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2218409065-412658654-1762571001-1001 2023-05-06 15:28 - 2020-09-10 12:35 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2218409065-412658654-1762571001-1001 2023-05-06 15:28 - 2020-09-10 12:31 - 000002420 _____ C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-05-06 12:22 - 2019-07-01 13:11 - 000000000 ____D C:\Users\Céline\AppData\LocalLow\Temp 2023-05-06 09:46 - 2020-05-19 19:25 - 000000000 ____D C:\Users\Céline\AppData\Roaming\TeamViewer 2023-05-05 23:43 - 2022-08-06 10:36 - 000000000 ____D C:\AdwCleaner 2023-05-05 23:36 - 2020-09-10 12:39 - 000005810 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-05-05 23:36 - 2019-12-07 16:50 - 000837692 _____ C:\WINDOWS\system32\perfh00C.dat 2023-05-05 23:36 - 2019-12-07 16:50 - 000163782 _____ C:\WINDOWS\system32\perfc00C.dat 2023-05-05 16:22 - 2022-10-20 19:41 - 000000000 ____D C:\Users\Céline\AppData\Local\Wondershare 2023-05-05 16:20 - 2022-12-27 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2023-05-05 16:20 - 2022-10-20 19:41 - 000000000 ____D C:\ProgramData\Wondershare 2023-05-05 16:01 - 2022-10-20 19:42 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Wondershare 2023-05-05 10:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-05-04 23:04 - 2020-09-10 12:31 - 000000000 ____D C:\Users\Céline 2023-05-04 22:15 - 2021-05-07 13:07 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-05-04 22:15 - 2021-04-09 20:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-05-03 22:19 - 2019-09-18 14:44 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-05-03 10:17 - 2021-08-23 20:34 - 000000000 ____D C:\Users\Céline\Desktop\Music'all 2023-05-01 15:05 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-04-29 18:55 - 2023-01-10 11:21 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2023-04-29 18:55 - 2023-01-10 11:20 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Telegram Desktop 2023-04-27 21:40 - 2019-06-22 10:14 - 000000000 ____D C:\Users\Céline\AppData\Roaming\Microsoft\Office 2023-04-27 19:08 - 2021-03-10 19:58 - 000000000 ____D C:\Users\Céline\AppData\Roaming\vlc 2023-04-26 19:06 - 2021-11-19 13:43 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2023-04-26 19:06 - 2021-09-01 21:14 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk 2023-04-26 19:06 - 2021-09-01 21:14 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2023-04-26 19:06 - 2021-09-01 21:14 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk 2023-04-23 23:29 - 2022-10-20 19:34 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2023-04-21 14:15 - 2021-06-29 18:10 - 000000000 ____D C:\ProgramData\Apple Inc 2023-04-21 14:15 - 2019-09-18 14:46 - 000000000 ___RD C:\Users\Céline\Dropbox 2023-04-21 14:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration 2023-04-21 14:07 - 2019-06-22 09:55 - 000000000 ____D C:\Users\Céline\AppData\Local\Mozilla 2023-04-20 19:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2023-04-20 18:42 - 2023-01-01 14:18 - 000000000 ____D C:\Users\Céline\.MemuHyperv 2023-04-20 18:19 - 2020-07-29 13:12 - 000000000 ____D C:\Users\Céline\.android 2023-04-18 21:29 - 2022-11-29 20:20 - 000000000 ____D C:\Users\Céline\Desktop\Lubin 2023-04-18 20:04 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-04-18 20:04 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-04-16 22:54 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-04-16 22:53 - 2019-06-22 10:09 - 000000000 ____D C:\Program Files\Microsoft Office 2023-04-12 13:18 - 2020-09-10 12:32 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== Fichiers à la racine de certains dossiers ======== 2022-09-04 17:38 - 2022-09-04 17:38 - 000000349 _____ () C:\Users\Céline\AppData\Roaming\AdobeWLCMR2Cache.dat ==================== SigCheckExt ========================= 2018-01-22 15:10 - 2018-01-22 15:10 - 002271232 _____ (Intel(R) Corporation) C:\WINDOWS\system32\accesor.dll 2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll 2020-02-14 20:05 - 2020-02-14 20:05 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll 2019-03-19 06:45 - 2019-03-19 06:45 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll 2019-03-19 06:43 - 2019-03-19 06:43 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll 2019-03-19 06:43 - 2019-03-19 06:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll 2018-01-22 15:13 - 2018-01-22 15:13 - 000505856 _____ (Intel Corporation) C:\WINDOWS\system32\IPROSetMonitor.exe 2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe 2018-01-22 15:11 - 2018-01-22 15:11 - 001568256 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncs2dmix.dll 2018-01-22 15:08 - 2018-01-22 15:08 - 000671232 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncs2instutility.dll 2018-01-22 15:44 - 2018-01-22 15:44 - 000349696 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Ncs2Setp.dll 2018-01-22 15:06 - 2018-01-22 15:06 - 004811264 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncscolib.dll 2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll 2019-03-19 06:44 - 2019-03-19 06:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll 2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll 2003-04-18 17:46 - 2003-04-18 17:46 - 001233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4.dll 2003-04-18 17:29 - 2003-04-18 17:29 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll 2020-05-25 15:21 - 1998-07-13 00:00 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RCHTXFR.DLL 2020-05-25 15:21 - 2004-08-05 14:00 - 000024626 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrnfr.dll 2020-05-25 15:21 - 2000-10-02 00:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb6fr.dll 2023-05-07 16:01 - 2023-05-12 12:50 - 002382848 _____ (Farbar) C:\Users\Céline\Desktop\FRST64.exe 2023-05-07 14:46 - 2023-05-07 14:46 - 003309256 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPCleaner.exe 2023-05-07 16:00 - 2023-05-07 16:00 - 003516104 _____ (Nicolas Coolman) C:\Users\Céline\Desktop\ZHPSuite.exe 2023-05-07 16:01 - 2023-05-07 16:01 - 002382848 _____ (Farbar) C:\Users\Céline\Downloads\FRST64.exe 2023-05-06 17:18 - 2023-05-06 17:18 - 002363152 _____ (kernel-panik) C:\Users\Céline\Downloads\kprm_2.13.exe 2023-05-07 14:46 - 2023-05-07 14:46 - 003309256 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPCleaner.exe 2023-05-11 20:46 - 2023-05-11 20:46 - 003517128 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPSuite (1).exe 2023-05-07 16:00 - 2023-05-07 16:00 - 003516104 _____ (Nicolas Coolman) C:\Users\Céline\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {c368dfd9-b52b-11ed-80aa-309c23d8c63f} {c368dfda-b52b-11ed-80aa-309c23d8c63f} {c368dfdb-b52b-11ed-80aa-309c23d8c63f} timeout 1 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume4 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {1203800d-f359-11ea-96d3-db9cfd791e85} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {c368dfd9-b52b-11ed-80aa-309c23d8c63f} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {c368dfda-b52b-11ed-80aa-309c23d8c63f} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {c368dfdb-b52b-11ed-80aa-309c23d8c63f} description UEFI:Network Device Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {1203800f-f359-11ea-96d3-db9cfd791e85} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {1203800d-f359-11ea-96d3-db9cfd791e85} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {1203800f-f359-11ea-96d3-db9cfd791e85} device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{12038010-f359-11ea-96d3-db9cfd791e85} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{12038010-f359-11ea-96d3-db9cfd791e85} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {1203800d-f359-11ea-96d3-db9cfd791e85} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {1203800f-f359-11ea-96d3-db9cfd791e85} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} integrityservices Enable Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {12038010-f359-11ea-96d3-db9cfd791e85} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================