Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15.03.2024 Exécuté par gmamb (administrateur) sur GM (HP OMEN by HP 25L Gaming Desktop GT15-0xxx) (17-03-2024 13:41:39) Exécuté depuis C:\Users\gmamb\Desktop\FRST64.exe Profils chargés: gmamb Plate-forme: Microsoft Windows 11 Famille Version 23H2 22631.3296 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2402.4.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2402.4.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\omenmqtt.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.270.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.92\msedgewebview2.exe <7> (DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\BridgeCommunication.exe (DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_helper.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2402.4.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13> (services.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_fe3afc9d28b2c978\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f1b47696babae655\x64\OmenCap\OmenCap.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_3befaa646f991169\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_12a05294eb98ea3c\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_4644c24027cfb2ed\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_33284f5d2f7b1562\AS\IAS\IntelAudioService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcsig.inf_amd64_3b75d8665c447c80\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3020235693730747\RtkAudUService64.exe <2> (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\Overlay\OverlayHelper.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.270.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-15] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-15] (Adobe Inc. -> ) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDQ.DLL [482816 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.129\Installer\chrmstp.exe [2024-03-14] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {6935C1FD-B587-408D-AF6B-9A5D397F61A7} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.266\WatchDog.exe repair (Pas de fichier) Task: {DC7308DE-F32C-4277-805D-72A68B445FA9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2024-01-16] (Google Inc -> Google Inc.) Task: {ADE55C4C-2309-4513-9F0E-30C1233B44D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2024-01-16] (Google Inc -> Google Inc.) Task: {108D4B9D-83E2-4E55-AC48-D6BCB045FF87} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO Task: {522DA4A0-3BBB-4C78-A05F-4E343E4758B6} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError Task: {FB1A8A39-54E7-463B-B8C2-B9E4D73EE205} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF Task: {F810F35A-6E2A-4F1F-B94D-F45619C1B3D3} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1 Task: {D819A413-59AE-4287-A925-937EF9A5B519} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2 Task: {0FE0F8C2-9E4F-49D6-B67F-26A79E5213F2} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI Task: {F9C0CA42-B992-45C9-A718-F77919194FAB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags: Task: {1BFEC6F7-1E3E-41FC-BC16-ED6F77B7931E} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError Task: {2B70AA98-95AE-4854-B2D2-36DA52FE296C} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => C:\WINDOWS\system32\cmd.exe [323584 2023-12-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckTest Task: {7CF04C02-8EE0-4EAA-8578-47A85FC58BC7} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-SmartCheckTest => c:\windows\system32\schtasks.exe [258048 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\SmartCheckTest" Task: {C339FA51-F15F-4418-8B74-9DFEB62F369E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-02-01] (HP Inc. -> HP Inc.) Task: {C8204905-8875-4E9E-8605-F33FA8BE653C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231472 2024-02-01] (HP Inc. -> HP Inc.) Task: {4DE59AB7-84C2-4206-8DC6-04E5F3B2710A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2024-02-01] (HP Inc. -> HP Inc.) Task: {16B09C33-6C02-4371-BA19-69B393B47D77} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2024-02-01] (HP Inc. -> HP Inc.) Task: {7F15F14E-04E8-4973-8A39-6EAAEBDE5656} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-03-06] (Adobe Inc. -> Adobe Inc.) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Pas de fichier) Task: {784ED649-FCBE-4AC6-B4C7-6EF54DE27913} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4BB04A66-892D-4DE5-9326-6FEC9946B26C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {28652EA9-CBA7-4D3C-A2B8-3E26A569CB81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B5F7907E-335D-409D-8FB0-C22B01104994} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {38C3D403-B6EA-44DA-A07A-DE33FC2003D0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {75F0FD0A-F7B6-419A-9E94-1047B68CFB4E} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1369263724-1093925690-1449689200-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671648 2024-03-06] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6CA7D565-AB7B-4C6B-8BA9-62255C8BE500} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-03-06] (Mozilla Corporation -> Mozilla Foundation) Task: {28DB3E6F-02BD-4D8F-B8A7-43BF4492F018} - System32\Tasks\OmenInstallMonitor => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [66520 2024-03-05] (HP Inc. -> HP Inc.) Task: {D2729CBD-F46D-4B4F-AA31-EAE1D9569662} - System32\Tasks\OmenInstallMonitorCustomEvent => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [66520 2024-03-05] (HP Inc. -> HP Inc.) Task: {E154C87B-3EB8-4EAB-96C7-ED4721FE6049} - System32\Tasks\OmenOverlay => C:\Program Files\HP\Overlay\OverlayHelper.exe [67536 2024-03-05] (HP Inc. -> HP Inc.) Task: {75BC9360-DF07-4A37-9863-A97CCD76CC63} - System32\Tasks\OmenOverlayCustomEvent => C:\Program Files\HP\Overlay\OverlayHelper.exe [67536 2024-03-05] (HP Inc. -> HP Inc.) Task: {A9CD3827-814D-43F3-8A33-E0ACABBF6EED} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1369263724-1093925690-1449689200-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation) Task: {D9629C81-462E-4294-9006-E36D908861DC} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3020235693730747\RtkAudUService64.exe [1907616 2023-08-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {138FEAD4-63B4-491B-81EE-EB739E111727} - System32\Tasks\SoftMakerUpdater => C:\Program Files (x86)\SoftMaker FreeOffice 2021\SoftMakerUpdaterTool.exe [6368464 2019-12-03] (SoftMaker Software GmbH -> ) Task: {25C9E608-AC4B-449E-8797-E7D947BF1723} - System32\Tasks\SystemOptimizer => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [150488 2024-03-05] (HP Inc. -> HP Inc.) Task: {DB1BC44B-8E32-4E96-926A-F808DBF63CE9} - System32\Tasks\SystemOptimizerCustomEvent => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [150488 2024-03-05] (HP Inc. -> HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.128.1 Tcpip\..\Interfaces\{2a5e8097-f210-4990-9f29-da907aa1d8a2}: [NameServer] 9.9.9.9,149.112.112.112 Tcpip\..\Interfaces\{2a5e8097-f210-4990-9f29-da907aa1d8a2}: [DhcpNameServer] 192.168.128.1 Tcpip\..\Interfaces\{2a5e8097-f210-4990-9f29-da907aa1d8a2}: [DhcpDomain] home Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-17] Edge HomePage: Default -> hxxps://www.google.com/ Edge Extension: (Malwarebytes Browser Guard) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-16] Edge Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jbkfoedolllekgbhcbcoahefnbanhhlh [2024-03-09] Edge Extension: (Edge relevant text changes) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Edge Extension: (Decentraleyes) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmijmgnfconjockjeepmlmkkibfgjmla [2024-01-15] Edge Extension: (Privacy Badger) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2024-03-16] Edge Extension: (uBlock Origin) - C:\Users\gmamb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-02-21] Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl] FireFox: ======== FF DefaultProfile: wzdgxoxy.default FF ProfilePath: C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\wzdgxoxy.default [2024-03-12] FF ProfilePath: C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release [2024-03-17] FF Extension: (Firefox Multi-Account Containers) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\@testpilot-containers.xpi [2024-01-16] FF Extension: (To Google Translate) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-01-16] FF Extension: (Decentraleyes) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2024-01-16] FF Extension: (Privacy Badger) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2024-03-13] FF Extension: (TrafficLight) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\trafficlight@bitdefender.com.xpi [2024-03-14] FF Extension: (uBlock Origin) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-02-21] FF Extension: (Malwarebytes Browser Guard) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2024-03-13] FF Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2024-03-13] FF Extension: (Rolling Stones Tongue) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\{65a24cc9-3b1f-4a4d-b859-97d2a5b7156e}.xpi [2024-01-16] FF Extension: (Matte Black (Orange)) - C:\Users\gmamb\AppData\Roaming\Mozilla\Firefox\Profiles\jdrnrake.default-release\Extensions\{e7c9fb23-17c0-4bb6-a8ba-ff52a7770b89}.xpi [2024-01-16] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-15] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [Pas de fichier] FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-15] (Adobe Inc. -> Adobe Systems) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2024-03-12] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2024-03-12] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default [2024-03-16] CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Extension: (Google Traduction) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-01-16] CHR Extension: (TrafficLight) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2024-03-14] CHR Extension: (uBlock Origin) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-02-22] CHR Extension: (Google Docs hors connexion) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-28] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-03-13] CHR Extension: (Ugly Email) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldgiafaliifpknmgofiifianlnbgflgj [2024-03-08] CHR Extension: (Decentraleyes) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldpochfccmkkmhdbclfhpagapcfdljkj [2024-01-16] CHR Extension: (Save to Pocket) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2024-01-16] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-16] CHR Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-03-12] CHR Extension: (Serenity) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjjaaonciccncnfeeecpnfgepojgmfpg [2024-03-13] CHR Extension: (Privacy Badger) - C:\Users\gmamb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2024-03-16] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-15] (Adobe Inc. -> Adobe Inc.) R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [153736 2017-03-02] (Canon Inc. -> CANON INC.) R2 dptftcs; C:\WINDOWS\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_12a05294eb98ea3c\ipfsvc.exe [544896 2022-06-16] (Intel Corporation -> Intel Corporation) R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-02-22] (DTS, Inc. -> DTS Inc.) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\AppHelperCap.exe [895016 2024-02-03] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\DiagsCap.exe [893888 2024-02-03] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\NetworkCap.exe [890408 2024-02-03] (HP Inc. -> HP Inc.) R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f1b47696babae655\x64\OmenCap\OmenCap.exe [755152 2023-10-18] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_18c14e57f0966c7f\x64\SysInfoCap.exe [893992 2024-02-03] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_fe3afc9d28b2c978\x64\TouchpointAnalyticsClientService.exe [493296 2023-11-20] (HP Inc. -> HP Inc.) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [446328 2023-09-13] (Canon Inc. -> ) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_33284f5d2f7b1562\AS\IAS\IntelAudioService.exe [531800 2023-07-25] (Intel Corporation -> Intel) R2 ipfsvc; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_uf.exe [2773616 2022-06-08] (Intel Corporation -> Intel Corporation) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9423680 2024-03-12] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-03-12] (Malwarebytes Inc. -> Malwarebytes) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsig.inf_amd64_3b75d8665c447c80\Display.NvContainer\NVDisplay.Container.exe [1274992 2024-02-17] (NVIDIA Corporation -> NVIDIA Corporation) R2 SyncBackFreeSchedulesMonitor; C:\Program Files (x86)\2BrightSparks\SyncBackFree\SchedulesMonitor.exe [3447536 2024-02-19] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte Ltd) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-03-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [24960 2022-09-01] (HP Inc. -> HP Inc.) R2 HpReadHWData; C:\WINDOWS\system32\drivers\HpReadHWData.sys [53368 2024-01-15] (HP Inc. -> Windows (R) Win 7 DDK provider) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1605296 2022-07-12] (Intel Corporation -> Intel Corporation) S3 IntcSdwBus; C:\WINDOWS\System32\DriverStore\FileRepository\intcsdwbus.inf_amd64_a7c91360744c6f58\IntcSdwBus.sys [523608 2023-07-25] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88784 2022-08-10] (Intel Corporation -> Intel Corporation) R3 ipf_acpi; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_2c4217605fff2443\ipf_acpi.sys [87152 2022-06-08] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_cpu.sys [80496 2022-06-08] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\WINDOWS\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_15575ddcbffc1fc6\ipf_lf.sys [441968 2022-06-08] (Intel Corporation -> Intel Corporation) R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223296 2024-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239576 2024-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MpKsl982a8443; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5A3419B7-75D4-4791-805A-263238CDE25E}\MpKslDrv.sys [300312 2024-03-17] (Microsoft Windows -> Microsoft Corporation) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [67496 2023-03-23] (Realtek Semiconductor Corp. -> Realtek) R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20928 2024-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [603416 2024-03-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-03-12] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-03-17 13:41 - 2024-03-17 13:41 - 000029905 _____ C:\Users\gmamb\Desktop\FRST.txt 2024-03-17 13:40 - 2024-03-17 13:41 - 000000000 ____D C:\FRST 2024-03-17 13:37 - 2024-03-17 13:37 - 002390528 _____ (Farbar) C:\Users\gmamb\Desktop\FRST64.exe 2024-03-17 12:47 - 2024-03-17 12:47 - 000813250 _____ C:\WINDOWS\system32\perfh00C.dat 2024-03-17 12:47 - 2024-03-17 12:47 - 000797350 _____ C:\WINDOWS\system32\perfh013.dat 2024-03-17 12:47 - 2024-03-17 12:47 - 000170452 _____ C:\WINDOWS\system32\perfc013.dat 2024-03-17 12:47 - 2024-03-17 12:47 - 000166962 _____ C:\WINDOWS\system32\perfc00C.dat 2024-03-17 10:10 - 2024-03-17 10:10 - 000000000 ____D C:\ProgramData\NCH Software 2024-03-14 22:24 - 2024-03-17 10:48 - 000001283 _____ C:\Users\gmamb\Desktop\ESET Online Scanner.lnk 2024-03-14 22:23 - 2024-03-17 10:49 - 000001389 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2024-03-14 22:23 - 2024-03-14 22:23 - 000000000 ____D C:\Users\gmamb\AppData\Local\ESET 2024-03-14 15:45 - 2024-03-14 15:45 - 000001549 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4K Video Downloader+.lnk 2024-03-14 14:49 - 2024-03-17 10:20 - 000000000 ____D C:\Users\gmamb\AppData\Local\ElevatedDiagnostics 2024-03-13 17:21 - 2024-03-15 09:35 - 000000000 ____D C:\WINDOWS\Panther 2024-03-13 16:03 - 2024-03-13 16:03 - 000001046 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DiskInfo64.lnk 2024-03-13 14:59 - 2024-03-13 14:59 - 000001001 _____ C:\Users\gmamb\Desktop\cdbxpp.lnk 2024-03-13 14:57 - 2024-03-13 14:57 - 000001001 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cdbxpp.lnk 2024-03-13 14:39 - 2024-03-13 14:39 - 000000946 _____ C:\Users\gmamb\Desktop\RogueKiller_portable64.lnk 2024-03-13 14:39 - 2024-03-13 14:39 - 000000909 _____ C:\Users\gmamb\Desktop\UCheck_portable64.lnk 2024-03-13 13:20 - 2024-03-13 13:20 - 000046272 _____ C:\ProgramData\uninstalltool.1710332435.16744.v2.bin 2024-03-13 13:20 - 2024-03-13 13:20 - 000004036 _____ C:\ProgramData\uninstalltool.1710332435.16856.v2.bin 2024-03-13 10:53 - 2024-03-13 10:53 - 000000946 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RogueKiller_portable64.lnk 2024-03-13 10:53 - 2024-03-13 10:53 - 000000909 _____ C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UCheck_portable64.lnk 2024-03-13 09:34 - 2024-03-13 09:34 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2024-03-13 09:33 - 2024-03-17 12:47 - 002790076 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-03-13 09:32 - 2024-03-17 12:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-03-13 09:32 - 2024-03-15 19:17 - 000003530 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess 2024-03-13 09:32 - 2024-03-13 09:32 - 000011433 _____ C:\WINDOWS\diagwrn.xml 2024-03-13 09:32 - 2024-03-13 09:32 - 000011433 _____ C:\WINDOWS\diagerr.xml 2024-03-13 09:32 - 2024-03-13 09:32 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-03-13 09:32 - 2024-03-13 09:32 - 000003526 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2024-03-13 09:32 - 2024-03-13 09:32 - 000003424 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1da47c1dfa53909 2024-03-13 09:32 - 2024-03-13 09:32 - 000003302 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2024-03-13 09:32 - 2024-03-13 09:32 - 000003280 _____ C:\WINDOWS\system32\Tasks\Optimize Push Notification Data File-S-1-5-21-1369263724-1093925690-1449689200-1001 2024-03-13 09:32 - 2024-03-13 09:32 - 000003200 _____ C:\WINDOWS\system32\Tasks\OmenInstallMonitorCustomEvent 2024-03-13 09:32 - 2024-03-13 09:32 - 000003176 _____ C:\WINDOWS\system32\Tasks\SystemOptimizerCustomEvent 2024-03-13 09:32 - 2024-03-13 09:32 - 000003140 _____ C:\WINDOWS\system32\Tasks\OmenOverlayCustomEvent 2024-03-13 09:32 - 2024-03-13 09:32 - 000002800 _____ C:\WINDOWS\system32\Tasks\SoftMakerUpdater 2024-03-13 09:32 - 2024-03-13 09:32 - 000002760 _____ C:\WINDOWS\system32\Tasks\OmenInstallMonitor 2024-03-13 09:32 - 2024-03-13 09:32 - 000002736 _____ C:\WINDOWS\system32\Tasks\SystemOptimizer 2024-03-13 09:32 - 2024-03-13 09:32 - 000002700 _____ C:\WINDOWS\system32\Tasks\OmenOverlay 2024-03-13 09:32 - 2024-03-13 09:32 - 000002452 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG 2024-03-13 09:32 - 2024-03-13 09:32 - 000000020 ___SH C:\Users\gmamb\ntuser.ini 2024-03-13 09:32 - 2024-03-13 09:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-03-13 09:32 - 2024-03-13 09:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2024-03-13 09:32 - 2024-03-13 09:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard 2024-03-13 09:32 - 2024-03-12 07:37 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2024-03-13 09:31 - 2024-03-13 09:31 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network 2024-03-13 09:30 - 2024-03-17 11:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-03-13 09:30 - 2024-03-17 10:34 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2024-03-13 09:30 - 2024-03-13 09:30 - 000364176 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-03-13 09:27 - 2024-03-13 09:30 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2024-03-13 09:27 - 2024-03-13 09:30 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\Crypto 2024-03-13 09:27 - 2024-03-13 09:27 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\SystemCertificates 2024-03-13 09:27 - 2024-03-13 09:27 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\Network 2024-03-13 09:26 - 2024-03-15 18:15 - 000000000 ____D C:\Users\gmamb 2024-03-13 09:26 - 2024-03-13 09:34 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\Windows 2024-03-13 09:26 - 2024-03-13 09:30 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\Spelling 2024-03-13 09:26 - 2024-03-13 09:27 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\Voisinage réseau 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\Voisinage d'impression 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\Modèles 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\Mes documents 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\Menu Démarrer 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 _SHDL C:\Users\gmamb\AppData\Local\Historique 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 ____D C:\WINDOWS\system32\DTS 2024-03-13 09:26 - 2024-03-13 09:26 - 000000000 ____D C:\WINDOWS\Firmware 2024-03-13 09:24 - 2024-03-13 09:24 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-03-13 09:23 - 2024-03-13 09:23 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-03-13 09:20 - 2024-03-13 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\nl 2024-03-13 09:20 - 2024-03-13 09:26 - 000000000 ____D C:\WINDOWS\system32\nl 2024-03-13 09:16 - 2024-03-13 09:16 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2024-03-13 08:51 - 2024-03-13 08:51 - 000000000 ___HD C:\$Windows.~WS 2024-03-12 23:51 - 2024-03-16 18:45 - 000000000 ____D C:\Users\gmamb\AppData\Local\Malwarebytes 2024-03-12 23:50 - 2024-03-12 23:50 - 000002100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-03-12 23:50 - 2024-03-12 23:50 - 000002088 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-03-12 23:50 - 2024-03-12 23:50 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-03-12 08:55 - 2024-03-12 08:55 - 000000027 _____ C:\WINDOWS\system32\ctc.json 2024-03-12 07:59 - 2024-03-12 07:59 - 000196844 _____ C:\ProgramData\vpn.1710226766.bdinstall.v2.bin 2024-03-12 07:59 - 2024-03-12 07:59 - 000000000 ____D C:\ProgramData\UnifiedSDK.Service 2024-03-12 07:38 - 2024-03-12 07:38 - 000688808 _____ C:\ProgramData\cl.1710225433.bdinstall.v2.bin 2024-03-12 07:38 - 2024-03-12 07:38 - 000125220 _____ C:\ProgramData\cl.kit.1710225431.bdinstall.v2.bin 2024-03-12 07:37 - 2024-03-13 09:30 - 000000000 ____D C:\WINDOWS\system32\elambkup 2024-03-12 07:37 - 2024-03-12 07:37 - 000000000 ____D C:\ProgramData\Gemma 2024-03-12 07:37 - 2024-03-12 07:37 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2024-03-12 07:35 - 2024-03-12 07:35 - 000142988 _____ C:\ProgramData\agent.1710225354.bdinstall.v2.bin 2024-03-12 07:15 - 2024-03-12 07:15 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\Local\F-Secure 2024-03-11 12:26 - 2024-03-11 12:26 - 000000996 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader+.lnk 2024-03-11 12:26 - 2024-03-11 12:26 - 000000984 _____ C:\Users\Public\Desktop\4K Video Downloader+.lnk 2024-03-11 12:26 - 2024-03-11 12:26 - 000000000 ____D C:\Program Files\4KDownload 2024-03-11 12:04 - 2024-03-11 12:04 - 000001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2024-03-11 12:04 - 2024-03-11 12:04 - 000001087 _____ C:\Users\Public\Desktop\Audacity.lnk 2024-03-11 12:04 - 2024-03-11 12:04 - 000000000 ____D C:\Program Files (x86)\Audacity 2024-03-10 17:26 - 2024-03-13 22:04 - 000000000 ____D C:\Program Files\Malwarebytes 2024-03-10 17:17 - 2024-03-17 12:14 - 000000000 ____D C:\Users\gmamb\AppData\Local\FSDART 2024-03-10 11:39 - 2024-03-12 07:16 - 000000000 ____D C:\Program Files (x86)\F-Secure 2024-03-07 09:12 - 2024-03-12 07:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2024-03-06 10:11 - 2024-03-12 07:40 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-03-05 08:51 - 2024-03-05 08:51 - 000001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk 2024-02-26 15:59 - 2024-02-26 15:59 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\NVIDIA 2024-02-26 09:47 - 2024-03-13 09:31 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2024-02-26 09:47 - 2023-11-10 02:01 - 000131560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2024-02-26 09:45 - 2024-02-17 09:07 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-02-26 09:45 - 2024-02-17 09:07 - 002031464 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-02-26 09:45 - 2024-02-17 09:07 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-02-26 09:45 - 2024-02-17 09:07 - 001578856 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-02-26 09:45 - 2024-02-17 09:07 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-02-26 09:45 - 2024-02-17 09:07 - 001445224 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-02-26 09:45 - 2024-02-17 09:07 - 001445224 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-02-26 09:45 - 2024-02-17 09:07 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-02-26 09:45 - 2024-02-17 09:07 - 001295208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-02-26 09:45 - 2024-02-17 09:07 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-02-26 09:45 - 2024-02-17 09:04 - 059965448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2024-02-26 09:45 - 2024-02-17 09:04 - 001046152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2024-02-26 09:45 - 2024-02-17 09:04 - 000669816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2024-02-26 09:45 - 2024-02-17 09:04 - 000505456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2024-02-26 09:45 - 2024-02-17 09:03 - 002173552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2024-02-26 09:45 - 2024-02-17 09:03 - 001541640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2024-02-26 09:45 - 2024-02-17 09:03 - 001199112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2024-02-26 09:45 - 2024-02-17 09:03 - 000842272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2024-02-26 09:45 - 2024-02-17 09:02 - 012928136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2024-02-26 09:45 - 2024-02-17 09:02 - 001625200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2024-02-26 09:45 - 2024-02-17 09:02 - 001024136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2024-02-26 09:45 - 2024-02-17 09:02 - 000787064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2024-02-26 09:45 - 2024-02-17 09:02 - 000459384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2024-02-26 09:45 - 2024-02-17 09:01 - 016033824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2024-02-26 09:45 - 2024-02-17 09:01 - 006780424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2024-02-26 09:45 - 2024-02-17 09:01 - 005912608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2024-02-26 09:45 - 2024-02-17 09:01 - 005773344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2024-02-26 09:45 - 2024-02-17 09:01 - 003721864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2024-02-26 09:45 - 2024-02-17 09:01 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2024-02-26 09:45 - 2024-02-17 08:59 - 006943328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2024-02-26 09:45 - 2024-02-17 08:59 - 006030464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2024-02-26 09:45 - 2024-02-15 17:42 - 000119184 _____ C:\WINDOWS\system32\nvinfo.pb 2024-02-26 09:40 - 2024-02-26 09:40 - 000001816 _____ C:\Users\gmamb\Desktop\SyncBackFree - Raccourci.lnk 2024-02-26 09:33 - 2024-02-26 09:33 - 000001418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackFree.lnk 2024-02-26 09:33 - 2024-02-26 09:33 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\2BrightSparks 2024-02-26 09:33 - 2024-02-26 09:33 - 000000000 ____D C:\Users\gmamb\AppData\Local\2BrightSparks 2024-02-26 09:33 - 2024-02-26 09:33 - 000000000 ____D C:\Program Files (x86)\2BrightSparks 2024-02-25 22:02 - 2024-02-25 22:02 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\Local\Ashampoo 2024-02-25 22:01 - 2024-02-25 23:25 - 000000000 ____D C:\Users\_ashbackuppbf_ 2024-02-25 22:01 - 2024-02-25 22:01 - 000000020 ___SH C:\Users\_ashbackuppbf_\ntuser.ini 2024-02-25 22:01 - 2024-02-25 22:01 - 000000000 _SHDL C:\Users\_ashbackuppbf_\Voisinage réseau 2024-02-25 22:01 - 2024-02-25 22:01 - 000000000 _SHDL C:\Users\_ashbackuppbf_\Voisinage d'impression 2024-02-25 22:01 - 2024-02-25 22:01 - 000000000 _SHDL C:\Users\_ashbackuppbf_\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2024-02-25 22:01 - 2024-02-25 22:01 - 000000000 _SHDL C:\Users\_ashbackuppbf_\AppData\Local\Historique 2024-02-25 22:01 - 2024-02-25 22:01 - 000000000 ___SD C:\Users\_ashbackuppbf_\AppData\Roaming\Microsoft\Protect 2024-02-25 22:01 - 2024-02-12 12:18 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\LocalLow\NVIDIA 2024-02-25 22:01 - 2024-02-12 12:18 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\Local\D3DSCache 2024-02-25 22:01 - 2024-01-15 15:43 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\Roaming\Microsoft\Windows 2024-02-25 22:01 - 2022-05-07 06:24 - 000000000 ____D C:\Users\_ashbackuppbf_\AppData\Roaming\Microsoft\Spelling 2024-02-25 19:51 - 2024-02-25 19:51 - 000000000 ____D C:\Users\gmamb\AppData\Local\unali-289617484 2024-02-25 19:51 - 2024-02-25 19:51 - 000000000 ____D C:\Users\gmamb\AppData\Local\unali-289617328 2024-02-21 12:24 - 2024-02-21 12:24 - 000001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2024-02-20 17:24 - 2024-02-20 17:24 - 000000000 ____D C:\Users\gmamb\AppData\Local\AdvertisingPopup 2024-02-20 17:01 - 2024-02-22 11:24 - 000000048 _____ C:\WINDOWS\SysWOW64\EUTB.TODJ 2024-02-20 17:01 - 2024-02-20 17:01 - 000000000 ____D C:\ProgramData\SystemAcCrux 2024-02-20 17:00 - 2024-02-25 19:52 - 000000000 ____D C:\Program Files (x86)\EaseUS 2024-02-20 17:00 - 2023-08-29 10:53 - 000029248 _____ C:\WINDOWS\system32\Drivers\euimgprt.sys 2024-02-17 11:03 - 2024-02-17 11:03 - 000000000 ____D C:\Users\gmamb\AppData\Local\ASP.NET ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-03-17 13:40 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2024-03-17 13:15 - 2024-01-16 09:20 - 000000000 ____D C:\Program Files (x86)\Google 2024-03-17 13:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-03-17 13:07 - 2024-01-16 07:46 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-03-17 13:06 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-03-17 12:42 - 2024-01-15 16:45 - 000000000 ____D C:\Users\gmamb\AppData\Local\OGH 2024-03-17 12:42 - 2024-01-15 16:45 - 000000000 ____D C:\Program Files\HP 2024-03-17 12:41 - 2024-01-15 15:48 - 000000000 ____D C:\ProgramData\NVIDIA 2024-03-17 12:41 - 2023-09-18 10:03 - 000012288 ___SH C:\DumpStack.log.tmp 2024-03-17 12:41 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState 2024-03-17 12:41 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-03-17 10:46 - 2024-01-15 16:37 - 000000000 ____D C:\Users\gmamb\AppData\Local\Packages 2024-03-17 10:46 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-17 10:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-03-17 10:36 - 2024-01-15 16:39 - 000000000 ____D C:\Users\gmamb\AppData\Local\PlaceholderTileLogoFolder 2024-03-17 10:34 - 2024-01-15 16:37 - 000000000 ____D C:\ProgramData\Packages 2024-03-17 10:24 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-03-16 08:36 - 2024-01-15 16:39 - 000000000 ____D C:\Users\gmamb\AppData\Local\D3DSCache 2024-03-15 18:20 - 2024-01-16 18:15 - 000000000 ____D C:\ProgramData\CanonIJPLM 2024-03-15 18:15 - 2024-01-15 17:29 - 000000000 ___RD C:\Users\gmamb\Creative Cloud Files Personal Account mambourg.henaux@gmail.com 6725371A5AD1D6090A495C7D@AdobeID 2024-03-15 07:45 - 2024-02-06 11:37 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\audacity 2024-03-15 07:16 - 2023-12-03 14:58 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-03-15 07:16 - 2023-12-03 14:58 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-03-14 19:26 - 2024-01-16 09:21 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-03-14 19:26 - 2024-01-16 09:21 - 000002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-03-13 14:56 - 2022-07-19 15:01 - 000000000 ____D C:\Prog Portables 2024-03-13 14:43 - 2024-01-16 07:40 - 000000000 ____D C:\Users\gmamb\AppData\Local\ashampoo 2024-03-13 14:43 - 2022-07-20 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2024-03-13 11:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\appcompat 2024-03-13 10:56 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-03-13 10:50 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-03-13 09:50 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2024-03-13 09:34 - 2024-01-15 16:37 - 000000000 __RHD C:\Users\Public\AccountPictures 2024-03-13 09:32 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-03-13 09:32 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows NT 2024-03-13 09:32 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender 2024-03-13 09:31 - 2022-05-07 06:24 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2024-03-13 09:31 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Media 2024-03-13 09:30 - 2023-12-26 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HandBrake 2024-03-13 09:30 - 2023-11-18 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftMaker FreeOffice 2021 2024-03-13 09:30 - 2023-10-30 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TS5100 series Manuel à l'écran 2024-03-13 09:30 - 2022-07-19 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2024-03-13 09:30 - 2022-05-07 06:28 - 000000000 ____D C:\WINDOWS\Setup 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\spool 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2024-03-13 09:30 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Registration 2024-03-13 09:28 - 2022-05-07 06:24 - 000000000 __RHD C:\Users\Public\Libraries 2024-03-13 09:27 - 2023-10-30 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2024-03-13 09:27 - 2022-05-07 06:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2024-03-13 09:26 - 2023-12-04 07:27 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\BrowserCore 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-03-13 09:26 - 2022-05-07 06:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows 2024-03-13 09:26 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing 2024-03-13 09:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-03-13 09:22 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\OCR 2024-03-13 09:20 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-03-13 09:20 - 2022-05-07 11:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\winrm 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\WCN 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\slmgr 2024-03-13 09:20 - 2022-05-07 11:23 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\dsc 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Com 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\IME 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System 2024-03-13 09:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-03-13 09:07 - 2024-01-15 15:13 - 000000000 ____D C:\ESD 2024-03-13 00:56 - 2024-02-05 17:42 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\MMC 2024-03-12 22:55 - 2024-01-15 15:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-03-12 19:52 - 2024-02-11 17:44 - 000000000 ____D C:\Program Files\dotnet 2024-03-12 19:52 - 2024-01-16 07:17 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-03-12 19:52 - 2024-01-15 17:27 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-12 19:50 - 2024-01-16 07:17 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-03-12 15:57 - 2024-01-16 11:17 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\SoftMaker 2024-03-11 15:38 - 2024-01-16 07:40 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Ashampoo Slideshow Studio HD 4 2024-03-11 12:24 - 2024-02-02 17:04 - 000000000 ____D C:\Users\gmamb\AppData\Local\CrashDumps 2024-03-10 10:20 - 2024-01-15 18:56 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared 2024-03-09 18:15 - 2022-08-18 06:08 - 000000000 ___HD C:\adobeTemp 2024-03-09 17:43 - 2024-01-24 10:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-03-07 09:12 - 2024-01-16 07:46 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2024-03-06 14:24 - 2024-02-12 12:42 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\HandBrake 2024-03-06 11:09 - 2024-01-15 17:27 - 000000000 ____D C:\Program Files\Adobe 2024-03-06 10:56 - 2024-01-16 09:45 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-03-05 08:51 - 2024-01-15 17:27 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-02-28 10:47 - 2024-01-21 14:50 - 000000000 ____D C:\WINDOWS\HP 2024-02-28 10:47 - 2022-07-27 19:58 - 000000000 ____D C:\SWSetup 2024-02-26 16:38 - 2024-01-16 11:22 - 000000000 ____D C:\Users\gmamb\AppData\Local\NVIDIA 2024-02-26 09:47 - 2024-01-15 15:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2024-02-25 23:27 - 2024-01-16 07:40 - 000000000 ____D C:\ProgramData\Ashampoo 2024-02-25 20:08 - 2024-01-16 11:27 - 000000000 ____D C:\Users\gmamb\AppData\Roaming\Microsoft\HTML Help 2024-02-21 12:27 - 2024-01-15 17:27 - 000000000 ____D C:\ProgramData\Adobe 2024-02-20 17:24 - 2024-02-06 10:20 - 000000000 ____D C:\Users\gmamb\AppData\Local\cache 2024-02-17 11:00 - 2024-01-16 07:40 - 000000000 ____D C:\Program Files (x86)\Ashampoo ==================== SigCheckExt ========================= 2024-03-17 13:37 - 2024-03-17 13:37 - 002390528 _____ (Farbar) C:\Users\gmamb\Desktop\FRST64.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {1192a596-b864-11ee-b337-806e6f6e6963} {1192a597-b864-11ee-b337-806e6f6e6963} {1192a598-b864-11ee-b337-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} isolatedcontext Yes default {current} resumeobject {ca218601-b3b4-11ee-bb1a-6c02e0485929} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {1192a596-b864-11ee-b337-806e6f6e6963} description UEFI:CD/DVD Drive isolatedcontext Yes Application logicielle (101fffff) -------------------------------- identificateur {1192a597-b864-11ee-b337-806e6f6e6963} description UEFI:Removable Device isolatedcontext Yes Application logicielle (101fffff) -------------------------------- identificateur {1192a598-b864-11ee-b337-806e6f6e6963} description UEFI:Network Device isolatedcontext Yes Chargeur de démarrage Windows ----------------------------- identificateur {394289a7-4491-11ed-adea-6c02e0485929} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{394289a8-4491-11ed-adea-6c02e0485929} path \windows\system32\winload.efi description Windows Recovery Environment locale nl-NL inherit {bootloadersettings} displaymessage Recovery isolatedcontext Yes osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{394289a8-4491-11ed-adea-6c02e0485929} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale fr-FR inherit {bootloadersettings} recoverysequence {ca218604-b3b4-11ee-bb1a-6c02e0485929} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {ca218601-b3b4-11ee-bb1a-6c02e0485929} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {ca218604-b3b4-11ee-bb1a-6c02e0485929} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ca218605-b3b4-11ee-bb1a-6c02e0485929} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery isolatedcontext Yes osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{ca218605-b3b4-11ee-bb1a-6c02e0485929} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {ca218601-b3b4-11ee-bb1a-6c02e0485929} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {ca218604-b3b4-11ee-bb1a-6c02e0485929} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes isolatedcontext Yes Paramètres EMS -------------- identificateur {emssettings} bootems No isolatedcontext Yes Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local isolatedcontext Yes Erreurs de mémoire RAM ---------------------- identificateur {badmemory} isolatedcontext Yes Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} isolatedcontext Yes Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} isolatedcontext Yes Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} isolatedcontext Yes hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} isolatedcontext Yes Options de périphérique ----------------------- identificateur {ca218605-b3b4-11ee-bb1a-6c02e0485929} description Windows Recovery isolatedcontext Yes ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================