RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
ExÃ©cutÃ© par Administrateur (administrateur) sur PCWIN1122H2 (Gigabyte Technology Co., Ltd. B365M DS3H) (05-05-2024 18:24:36)
ExÃ©cutÃ© depuis D:\_1_OneDrive\OneDrive\Bureau\FRST64.exe
Profils chargÃ©s: tbaro & Administrateur
Plate-forme: Microsoft Windows 11 Professionnel Version 23H2 22635.3500 (X64) Langue: FranÃ§ais (France)
Navigateur par dÃ©faut: Edge
Mode d'amorÃ§age: Normal

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe ->) (Hasleo Software) [Fichier non signÃ©] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupSystemTray.exe
(DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe
(explorer.exe ->) (Waves Audio Ltd.) [Fichier non signÃ©] C:\Windows\SysWOW64\SGDawNodeService.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) () [Fichier non signÃ©] C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (Hasleo Software) [Fichier non signÃ©] C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_518f2921ba495409\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(services.exe ->) (Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\tbaro\AppData\Local\Microsoft\OneDrive\24.081.0421.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
Impossible d'accÃ©der au processus -> vmmemCmZygote

==================== Registre (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SGDawNodeService] => C:\Windows\SysWOW64\SGDawNodeService.exe [6014464 2022-10-06] (Waves Audio Ltd.) [Fichier non signÃ©]
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [3302288 2024-02-04] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Opera Browser Assistant] => C:\Users\tbaro\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [Emjysoft Sauvegarde Facile] => C:\Program Files\Emjysoft\Sauvegarde-Facile\Sauvegarde.exe start (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\Run: [MicrosoftEdgeAutoLaunch_BB202E6882A355C809BC75A4FF5B13CF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2449686422-2661205932-1969823142-1001\...\MountPoints2: {eff12438-6267-11ed-baf0-de28b994db10} - "H:\vs90sp1\SPInstaller.exe" 
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCXProcess] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" (Pas de fichier)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1417976 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2449686422-2661205932-1969823142-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4096976 2024-04-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-05] (Google LLC -> Google LLC)
Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SoundGridStudioSilent.lnk [2022-11-13]
ShortcutTarget: SoundGridStudioSilent.lnk -> C:\Program Files (x86)\Waves\SoundGrid Studio\SoundGrid Studio.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WavesLocalServer.lnk [2022-11-13]
ShortcutTarget: WavesLocalServer.lnk -> C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe (Waves Inc -> Waves Audio Ltd.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {7BBC684E-1436-4623-9171-BA87CC531729} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {B1448F41-E3B5-4984-9F9A-C207520243B8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {59DA7391-3458-439B-8DE6-8DD846DB3EFC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "51c25333-6d35-4121-bdef-09c8d44f2189" --version "6.22.10977" --silent
Task: {B5FE2CAE-63A2-4D0C-9BF3-EB3162876C95} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {493AB6AE-14C6-4CEA-900D-E870637D4147} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{E337D36E-8676-4BF7-9419-849362A50E30} => C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
Task: {1E8F4D12-51CE-4BB5-B248-3065C6AA8987} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {673ED929-C6AD-4235-BDF9-DF3E2C6DE79B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A19F5A08-BA3D-4205-AC0A-79F469CFA193} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9AF88C-103F-4337-8996-F00DA53D161B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1939C591-E8B1-4043-A736-5C2A49DB136E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F2B355E7-3B9E-4270-8059-53C84AE49920} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [255040 2024-04-04] (Microsoft Corporation -> Microsoft)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe  (Pas de fichier)
Task: {1D3EE0BD-DA71-4AC0-9510-9128F9A833CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C243C9D7-8DE0-48FD-95BE-5522D22A6F75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9FFC8228-47FD-4A09-8E8F-EE3C82B37869} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A61DB47B-9DE5-4145-92BC-05F56BBFD315} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EE71ACE2-4394-4807-88C1-C35BFF262292} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'Ã©lÃ©ment de donnÃ©es a 6 caractÃ¨res en plus).
Task: {FC612F5F-C848-488A-ADDD-0308D3E49370} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2449686422-2661205932-1969823142-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-04-16] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (l'Ã©lÃ©ment de donnÃ©es a 6 caractÃ¨res en plus).
Task: {8621A235-54B5-415B-B00D-902004EA9834} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34208 2024-04-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {983116E0-082B-461F-B9CE-9292F1255517} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  /reporting (Pas de fichier)
Task: {161CC31F-EE16-4DBE-831A-CCCDA5CBDEE2} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  /reporting (Pas de fichier)
Task: {B4BE6110-2096-4D73-8DF0-08E67C00BF21} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  (Pas de fichier)
Task: {A470EE5C-4F33-46C6-805F-8B3609D2983A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  (Pas de fichier)
Task: {26EBB521-4E92-44C5-B8CC-0BDA26FA49E3} - System32\Tasks\Opera scheduled assistant Autoupdate 1667905404 => C:\Users\tbaro\AppData\Local\Programs\Opera\launcher.exe [1581984 2024-05-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\tbaro\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {B2499FFA-D65B-4983-830A-04A12B263DD7} - System32\Tasks\Opera scheduled Autoupdate 1667905397 => C:\Users\tbaro\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-25] (Opera Norway AS -> Opera Software)
Task: {9946EB79-4CC9-4673-9BE6-3056BE60EA5C} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\FFmpeg 1.07\SampleUsage.txt  (Pas de fichier)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un Ã©lÃ©ment dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{03ac9879-8d55-4fa1-bd42-96ec1f21710a}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{895e891a-8b16-4355-b77f-8ce747d6b0d4}: [DhcpNameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\452414B4F4E4144494: [DhcpDomain] lan
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\6427565626F687D2436454144344: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [NameServer] 10.0.0.243
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D223E2437486A7: [DhcpDomain] home
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c5e9b25d-94ca-43c5-9af4-a4315406ea40}\C496675626F687D283132303D2537486A7: [DhcpDomain] home

Edge: 
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-05]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-03-30]
Edge Extension: (GoogleÂ Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-06]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-05-05]
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-05-05]
Edge HomePage: Profile 1 -> hxxps://www.google.com/
Edge StartupUrls: Profile 1 -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
Edge Session Restore: Profile 1 -> est activÃ©.
Edge Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bjnclkhfflcbkflemkkdocopfelcbifo [2024-03-17]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bojobppfploabceghnmlahpoonbcbacn [2024-04-16]
Edge Extension: (Page Ruler) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\dbbmodidecniimhhohmohndfdhhfcdbo [2024-01-14]
Edge Extension: (Page Captures d'Ã©cran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fcbmiimfkmkkkffjlopcpdlgclncnknm [2023-06-30]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-20]
Edge Extension: (HeadingsMap) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\flbjommegcjonpdmenkdiocclhjacmbi [2024-03-17]
Edge Extension: (GoogleÂ Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
Edge Extension: (RÃ©dacteur Microsoft : VÃ©rificateur dâOrthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\hokifickgkhplphjiodbggjmoafhignh [2024-05-05]
Edge Extension: (ColorFish Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jlefpjinggjhccheobegboicdcacepfg [2022-11-20]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-05]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-11-11]
Edge Extension: (Smart Color Picker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ochgakkmfibnneodjiehdpgdimcondao [2023-10-10]
Edge Extension: (Custom New Tab URL) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\oeibmbobgpgnbnlbaffdgebpeepfbnhi [2023-12-19]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]

FireFox:
========
FF DefaultProfile: qjeljq5r.default
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\qjeljq5r.default [2022-11-13]
FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release [2024-05-05]
FF user.js: detected! => C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\user.js [2023-02-19]
FF Homepage: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> google.fr
FF Session Restore: Mozilla\Firefox\Profiles\5gxd1npn.default-release -> est activÃ©.
FF Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\clearcache@michel.de.almeida.xpi [2023-02-18]
FF Extension: (Custom Tab Title and Favicon) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\custom-tab-title-favicon@pakker.io.xpi [2023-02-18]
FF Extension: (To Google Translate) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2023-02-18]
FF Extension: (Material Design Color Palette - Click to Copy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\material-color@harnerdesigns.com.xpi [2023-02-18]
FF Extension: (Firefox Relay) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\private-relay@firefox.com.xpi [2023-08-19]
FF Extension: (Qwant VIPrivacy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\qwantcomforfirefox@jetpack.xpi [2023-02-18]
FF Extension: (TWP - Translate Web Pages) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2023-08-19]
FF Extension: (Page Captures d'Ã©cran Web - Fireshot) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}.xpi [2023-06-26]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-08-19]
FF Extension: (Download All Images) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2023-05-28]
FF Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{585280b0-ee78-428a-92c5-3fb3c0b85460}.xpi [2023-05-28]
FF Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2023-02-18]
FF Extension: (Measure-it) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{79b2e4de-8fb4-4ccc-b9f6-362ac2fb74b2}.xpi [2023-02-18]
FF Extension: (Video DownloadHelper) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-19]
FF Extension: (Web Developer) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2023-02-18]
FF Extension: (Adblock Plus - bloqueur de publicitÃ©s gratuit) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gxd1npn.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2024-05-05]
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?tab=rm&ogbl&pli=1#inbox"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch
CHR Session Restore: Default -> est activÃ©.
CHR Extension: (GoogleÂ Traduction) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-05-11]
CHR Extension: (Web Developer) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2023-09-02]
CHR Extension: (ColorZilla) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-09-16]
CHR Extension: (Clear Cache) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2022-11-08]
CHR Extension: (Export History/Bookmarks to JSON/CSV*/XLS*) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcoegfodcnjofhjfbhegcgjgapeichlf [2022-11-08]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2023-09-28]
CHR Extension: (GoogleÂ Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-23]
CHR Extension: (RÃ©dacteur Microsoft : VÃ©rificateur dâOrthographe et de Grammaire) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2024-02-01]
CHR Extension: (NetBeans Connector) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa [2024-02-11]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2023-01-04]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-04-13]
CHR Extension: (Measure-it) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jocbgkoackihphodedlefohapackjmna [2022-11-08]
CHR Extension: (Qwant) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\kplfenefaakjhjkklghidleljeocgdap [2024-03-17]
CHR Extension: (Page Captures d'Ã©cran Web - Fireshot) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-07-01]
CHR Extension: (Paiements via le ChromeÂ WebÂ Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-08]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-05-05]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2024-05-05]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.3.3\ABService.exe [1102320 2023-10-30] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [84216 2024-01-29] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
S3 CyberGhostTunnel$CyberGhost-WireGuard-12; C:\Program Files\CyberGhost 8\Applications\VPN\WGHelper.exe [26872 2024-01-29] (CyberGhost S.R.L. -> WGHelper)
R2 D-Link DWA-171C_PBC_WPS; C:\Program Files\D-Link\DWA-171 revC\ALPBCC\ALPBCSVC.exe [65536 2013-01-15] () [Fichier non signÃ©]
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-10-25] (Mixbyte Inc -> Freemake)
S2 GoogleUpdaterInternalService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
S2 GoogleUpdaterService126.0.6441.0; C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe [4789536 2024-04-26] (Google LLC -> Google LLC)
R2 HasleoBackupSuiteService; C:\Program Files\Hasleo\Hasleo Backup Suite\bin\BackupService.exe [3473920 2024-04-30] (Hasleo Software) [Fichier non signÃ©]
R2 NTKDaemonService; C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe [15821032 2022-09-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [42456 2024-04-04] (Microsoft Corporation -> Microsoft)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142952 2024-02-29] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; D:\wamp64\bin\apache\apache2.4.54.2\bin\httpd.exe [30720 2022-11-02] (Apache Software Foundation) [Fichier non signÃ©]
S3 wampmariadb64; D:\wamp64\bin\mariadb\mariadb10.10.2\bin\mysqld.exe [34696 2022-11-14] (MariaDB Corporation Ab -> )
S3 wampmysqld64; D:\wamp64\bin\mysql\mysql8.0.31\bin\mysqld.exe [54641264 2022-09-13] (Oracle America, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\D-Link\DWA-171 revC\WifiAutoInstallSrv.exe [138176 2017-11-07] (Realtek Semiconductor Corp. -> Realtek)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Pilotes (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [172928 2023-11-12] (AOMEI International Network Limited -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2023-11-12] (AOMEI International Network Limited -> )
S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [38832 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [39312 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [45976 2021-01-21] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R1 anodlwf; C:\Windows\system32\DRIVERS\anodlwfx.sys [15872 2010-05-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [544768 2023-08-05] (Microsoft Corporation) [Fichier non signÃ©]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-08-05] (Microsoft Corporation) [Fichier non signÃ©]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-11-07] (Microsoft Corporation) [Fichier non signÃ©]
R0 fse; C:\Windows\System32\drivers\fse.sys [218496 2023-11-20] (Microsoft Windows -> Microsoft Corporation)
S1 gvm; C:\Windows\system32\DRIVERS\gvm.sys [390144 2023-12-23] (Google LLC -> Google LLC)
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
S3 mlkumidi; C:\Windows\system32\drivers\mlkumidi.sys [55344 2015-12-21] (MusicLab, Inc. -> MusicLab, Inc.)
R3 MpKsl80cdc6b0; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3A375E5E-589D-4AB3-8811-F2A4BF123586}\MpKslDrv.sys [301336 2024-05-05] (Microsoft Windows -> Microsoft Corporation)
R3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 SoundGridMIDI; C:\Windows\system32\drivers\SoundGridMidi.sys [46104 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R3 SoundGridMIDI; C:\Windows\SysWOW64\drivers\SoundGridMidi.sys [23552 2022-10-06] (Waves Audio Ltd.) [Fichier non signÃ©]
R2 SoundGridProtocol; C:\Windows\system32\DRIVERS\SoundGridProtocol.sys [132136 2022-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Waves Audio Ltd.)
R2 SoundGridProtocol; C:\Windows\SysWOW64\DRIVERS\SoundGridProtocol.sys [64000 2022-10-06] (Waves Audio Ltd.) [Fichier non signÃ©]
R3 synusb64; C:\Windows\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-11-01] (Microsoft Windows -> )
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2023-01-24] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-11-17] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
R3 ysusb_w10_64; C:\Windows\system32\drivers\ysusb_w10_64.sys [179760 2022-07-08] (Microsoft Windows Hardware Compatibility Publisher -> Yamaha Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois (crÃ©Ã©s) (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-05-05 18:18 - 2024-05-05 18:24 - 000000000 ____D C:\FRST
2024-05-05 17:40 - 2024-05-05 17:40 - 000808228 _____ C:\Windows\system32\perfh00C.dat
2024-05-05 17:40 - 2024-05-05 17:40 - 000156716 _____ C:\Windows\system32\perfc00C.dat
2024-05-05 16:50 - 2024-05-05 17:33 - 000000000 ____D C:\Windows\system32\config\regsave
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo Backup Suite
2024-05-05 16:47 - 2024-05-05 16:47 - 000000000 ____D C:\Program Files\Hasleo
2024-05-05 16:38 - 2024-05-05 16:38 - 029382926 _____ (Hasleo Software. ) C:\Users\tbaro\Downloads\Hasleo_Backup_Suite_Free.exe
2024-05-05 16:04 - 2024-05-05 16:04 - 000000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2024-05-05 15:15 - 2024-05-05 15:15 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-04-20 19:20 - 2024-04-20 19:21 - 000000000 ___HD C:\$SysReset
2024-04-20 18:30 - 2024-04-20 18:30 - 000008192 _____ C:\Windows\system32\config\userdiff
2024-04-20 17:52 - 2024-04-20 17:52 - 000001994 __RSH C:\ProgramData\ntuser.pol
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagwrn.xml
2024-04-20 16:46 - 2024-04-20 17:25 - 000005718 _____ C:\Windows\diagerr.xml
2024-04-20 16:10 - 2024-04-20 16:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\HTML Help
2024-04-20 09:50 - 2024-04-20 09:50 - 000107862 _____ C:\Users\tbaro\Downloads\Edge_Zero_II-7.webp
2024-04-19 21:36 - 2024-04-19 21:37 - 000000000 ___HD C:\$WinREAgent
2024-04-16 18:41 - 2024-04-16 20:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-04-16 17:59 - 2024-04-16 17:59 - 000000000 ____D C:\Users\tbaro\AppData\Local\github-copilot
2024-04-16 11:37 - 2024-04-16 11:37 - 000407990 _____ C:\Users\tbaro\Downloads\DWA-171_ds_revc_Datasheet_en.pdf
2024-04-15 09:32 - 2024-04-15 09:32 - 000001373 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-14 21:54 - 2024-04-14 21:54 - 000029461 _____ C:\Users\tbaro\AppData\Local\recently-used.xbel
2024-04-14 21:07 - 2024-04-14 21:07 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\HTML Help
2024-04-11 11:14 - 2024-04-11 11:14 - 000000000 ____D C:\Users\tbaro\AppData\Local\PackageManagement
2024-04-11 10:43 - 2024-04-11 10:43 - 000000000 ____D C:\Users\tbaro\.nuget
2024-04-09 20:48 - 2024-04-09 20:48 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Visual Studio Setup
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\source
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ServiceHub
2024-04-09 18:28 - 2024-04-09 18:28 - 000000000 ____D C:\Users\Administrateur\AppData\Local\IdentityNexusIntegration
2024-04-07 12:05 - 2024-04-07 12:05 - 000001168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackPro.lnk
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\2BrightSparks
2024-04-07 12:05 - 2024-04-07 12:05 - 000000000 ____D C:\Program Files\2BrightSparks
2024-04-07 12:05 - 2021-05-25 14:41 - 000044032 _____ C:\Windows\SysWOW64\SyncBackPro.dll
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-07 09:34 - 2024-04-07 09:34 - 000024821 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-06 15:42 - 2024-04-06 15:42 - 000000000 ____D C:\ProgramData\Piriform
2024-04-06 15:41 - 2024-05-05 16:32 - 000000000 ____D C:\Program Files\CCleaner
2024-04-06 15:41 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2024-04-06 15:41 - 2024-04-15 18:49 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-04-06 15:41 - 2024-04-06 17:38 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-04-06 15:41 - 2024-04-06 15:41 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-04-06 15:41 - 2024-04-06 15:41 - 000002932 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Administrateur
2024-04-06 15:41 - 2024-04-06 15:41 - 000000000 ____D C:\ProgramData\Norton
2024-04-06 09:30 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent SE 5
2024-04-06 09:27 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic
2024-04-06 09:24 - 2024-04-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 13

==================== Un mois (modifiÃ©s) ==================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2024-05-05 18:19 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-05 18:09 - 2023-03-31 08:55 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\KeePass
2024-05-05 17:45 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-05-05 17:44 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-05-05 17:40 - 2022-11-07 12:59 - 001803994 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-05 17:40 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-05-05 17:35 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-05 17:34 - 2023-09-04 17:48 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat
2024-05-05 17:34 - 2023-09-04 17:48 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat
2024-05-05 17:34 - 2022-11-07 12:58 - 000000000 ____D C:\Intel
2024-05-05 17:34 - 2022-11-07 12:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-05-05 17:34 - 2022-11-07 12:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-05 17:33 - 2023-08-12 16:53 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2024-05-05 17:33 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2024-05-05 17:02 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Local\CyberGhost
2024-05-05 16:36 - 2024-02-05 12:25 - 000002421 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-05-05 16:36 - 2024-02-05 12:01 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2024-02-05 12:01 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2449686422-2661205932-1969823142-1001
2024-05-05 16:36 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-05-05 16:29 - 2023-06-30 18:07 - 000000000 ____D C:\Windows\system32\appmgmt
2024-05-05 16:29 - 2023-06-30 17:54 - 000000000 ____D C:\Program Files\Blackmagic Design
2024-05-05 16:28 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CyberGhost
2024-05-05 16:26 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2024-05-05 16:09 - 2022-11-07 19:14 - 000000000 ____D C:\Program Files\Common Files\VST3
2024-05-05 16:09 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Steinberg
2024-05-05 16:08 - 2023-01-24 16:37 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\CyberGhost
2024-05-05 16:08 - 2022-11-07 16:10 - 000000000 ____D C:\ProgramData\Package Cache
2024-05-05 16:07 - 2022-11-12 12:53 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2024-05-05 16:06 - 2022-12-11 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2024-05-05 16:05 - 2022-11-07 17:15 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2024-05-05 16:04 - 2024-03-16 15:27 - 000000000 ___HD C:\$WINDOWS.~BT
2024-05-05 16:04 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro
2024-05-05 16:04 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\Panther
2024-05-05 16:01 - 2023-02-17 16:45 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2024-05-05 16:01 - 2022-12-13 17:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\luminati
2024-05-05 16:01 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\NDF
2024-05-05 16:00 - 2023-09-27 10:56 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Google
2024-05-05 15:59 - 2022-11-07 16:00 - 000000000 ____D C:\Users\tbaro\AppData\Local\Google
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Users\tbaro\.android
2024-05-05 15:54 - 2023-12-23 12:57 - 000000000 ____D C:\Program Files\Android
2024-05-05 15:54 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur
2024-05-05 15:48 - 2022-11-08 13:03 - 000004268 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1667905397
2024-05-05 15:48 - 2022-11-08 13:03 - 000001390 _____ C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2024-05-05 15:15 - 2022-11-07 16:00 - 000000000 ____D C:\Program Files (x86)\Google
2024-05-05 15:15 - 2022-11-07 12:52 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-05 15:08 - 2022-11-07 12:54 - 000001575 _____ C:\Windows\system32\config\VSMIDK
2024-04-22 22:14 - 2023-09-04 17:48 - 000000000 ____D C:\ProgramData\AomeiBR
2024-04-22 22:13 - 2023-09-04 17:49 - 000001024 ____H C:\SYSTAG.BIN
2024-04-22 20:52 - 2024-02-01 17:29 - 000000000 ____D C:\Users\tbaro\AppData\Local\.IdentityService
2024-04-22 18:52 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\GitKraken
2024-04-22 12:04 - 2024-04-04 11:53 - 000000000 ____D C:\Users\tbaro\AppData\Local\SourceServer
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\Packages
2024-04-22 09:26 - 2022-11-07 13:01 - 000000000 ____D C:\Users\tbaro\AppData\Local\D3DSCache
2024-04-22 09:26 - 2022-11-07 12:54 - 000000000 ____D C:\ProgramData\Packages
2024-04-20 19:23 - 2024-03-27 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2024-04-20 19:23 - 2024-02-11 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2024-04-20 19:23 - 2024-02-04 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2024-04-20 19:23 - 2023-11-28 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default)
2024-04-20 19:23 - 2023-11-25 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Library Manager
2024-04-20 19:23 - 2023-11-12 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoyoteWT
2024-04-20 19:23 - 2023-11-11 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Band-in-a-Box
2024-04-20 19:23 - 2023-11-07 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comptes et Budget - AlauxSoft
2024-04-20 19:23 - 2023-09-27 11:03 - 000000000 ____D C:\Program Files\Intel
2024-04-20 19:23 - 2023-09-27 10:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
2024-04-20 19:23 - 2023-08-19 09:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Underwater
2024-04-20 19:23 - 2023-07-08 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2024-04-20 19:23 - 2023-07-08 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase 12
2024-04-20 19:23 - 2023-07-05 09:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2024-04-20 19:23 - 2023-07-01 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HandBrake
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent 5
2024-04-20 19:23 - 2023-05-20 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg
2024-04-20 19:23 - 2023-04-03 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnConvert
2024-04-20 19:23 - 2023-03-14 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2024-04-20 19:23 - 2023-02-11 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Slate Digital
2024-04-20 19:23 - 2023-02-06 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2024-04-20 19:23 - 2023-01-25 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spitfire Audio
2024-04-20 19:23 - 2023-01-24 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 8
2024-04-20 19:23 - 2023-01-04 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SoundToys
2024-04-20 19:23 - 2022-12-18 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer
2024-04-20 19:23 - 2022-12-15 09:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2024-04-20 19:23 - 2022-12-13 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-04-20 19:23 - 2022-12-03 11:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kontakt Lister
2024-04-20 19:23 - 2022-11-27 12:20 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-04-20 19:23 - 2022-11-14 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery Bundle
2024-04-20 19:23 - 2022-11-13 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DMGAudio
2024-04-20 19:23 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valhalla DSP
2024-04-20 19:23 - 2022-11-12 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IK Multimedia
2024-04-20 19:23 - 2022-11-12 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FabFilter
2024-04-20 19:23 - 2022-11-12 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia
2024-04-20 19:23 - 2022-11-12 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:23 - 2022-11-11 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ORPALIS PDF Reducer 3 Professional Edition
2024-04-20 19:23 - 2022-11-11 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2024-04-20 19:23 - 2022-11-10 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2024-04-20 19:23 - 2022-11-08 12:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2024-04-20 19:23 - 2022-11-08 09:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EastWest
2024-04-20 19:23 - 2022-11-07 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic SE
2024-04-20 19:23 - 2022-11-07 19:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2024-04-20 19:23 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Download Assistant
2024-04-20 19:23 - 2022-11-07 19:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2024-04-20 19:23 - 2022-11-07 13:01 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-04-20 19:23 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\InboxApps
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\MsDtc
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\AppLocker
2024-04-20 19:23 - 2022-05-07 07:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\SysWOW64\1029
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\3082
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1055
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1049
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1046
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1045
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1040
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1036
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1033
2024-04-20 19:22 - 2024-04-04 09:00 - 000000000 ____D C:\Windows\system32\1029
2024-04-20 19:22 - 2024-04-03 11:12 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.9
2024-04-20 19:22 - 2024-03-30 17:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.10
2024-04-20 19:22 - 2024-03-21 19:32 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12
2024-04-20 19:22 - 2024-02-08 22:37 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2024-04-20 19:22 - 2024-02-02 23:33 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2024-04-20 19:22 - 2023-11-15 12:36 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2024-04-20 19:22 - 2023-10-18 10:57 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2024-04-20 19:22 - 2023-10-02 10:29 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-20 19:22 - 2023-08-19 16:43 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2024-04-20 19:22 - 2023-08-12 16:53 - 000000000 ____D C:\Windows\system32\AMD
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ___SD C:\Users\defaultuser1\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2023-07-25 10:04 - 000000000 ____D C:\Users\defaultuser1
2024-04-20 19:22 - 2023-07-22 16:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PuTTY (64-bit)
2024-04-20 19:22 - 2023-07-21 18:54 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2024-04-20 19:22 - 2023-06-30 16:54 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moo0
2024-04-20 19:22 - 2023-02-24 17:43 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDFtoMusic Pro
2024-04-20 19:22 - 2023-02-16 12:22 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Email Extractor
2024-04-20 19:22 - 2022-12-09 09:41 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitKraken
2024-04-20 19:22 - 2022-11-14 18:03 - 000000000 ___RD C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.8
2024-04-20 19:22 - 2022-11-13 16:21 - 000000000 ____D C:\Windows\system32\gf2engine
2024-04-20 19:22 - 2022-11-12 12:20 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-20 19:22 - 2022-11-07 17:23 - 000000000 ____D C:\Windows\system32\MRT
2024-04-20 19:22 - 2022-11-07 17:15 - 000000000 ___SD C:\Users\Administrateur\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 17:14 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-11-07 13:01 - 000000000 ___SD C:\Users\tbaro\AppData\Roaming\Microsoft\Crypto
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Windows
2024-04-20 19:22 - 2022-11-07 12:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Spelling
2024-04-20 19:22 - 2022-05-07 12:35 - 000000000 ____D C:\Windows\system32\Hydrogen
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\lxss
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WebThreatDefSvc
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\spool
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecurityHealth
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\System
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\registration
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\LiveKernelReports
2024-04-20 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-04-20 16:24 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-04-20 16:16 - 2022-11-13 09:48 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
2024-04-20 15:14 - 2023-12-24 11:50 - 000001923 _____ C:\Users\Administrateur\Desktop\ReIcon_x64.lnk
2024-04-20 12:23 - 2023-01-11 19:50 - 000000000 ____D C:\Program Files\dotnet
2024-04-19 22:15 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\lxss
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-19 21:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-16 22:07 - 2023-09-26 09:05 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Code
2024-04-16 20:56 - 2022-11-07 15:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-04-16 19:33 - 2022-11-07 15:59 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-04-16 18:57 - 2022-11-11 19:06 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\qBittorrent
2024-04-16 18:47 - 2022-12-13 11:31 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\vlc
2024-04-16 18:43 - 2022-11-07 15:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-04-16 16:21 - 2022-11-10 11:24 - 000000000 ____D C:\Users\tbaro\AppData\Local\CrashDumps
2024-04-16 15:54 - 2022-11-07 16:23 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 20:54 - 2022-11-07 16:10 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\CyberGhost
2024-04-15 10:18 - 2022-11-16 12:06 - 000000000 ____D C:\Users\tbaro\AppData\Local\babl-0.1
2024-04-14 21:54 - 2022-11-16 12:11 - 000000000 ____D C:\Users\tbaro\AppData\Local\gtk-2.0
2024-04-14 21:13 - 2022-11-11 19:51 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Emjysoft
2024-04-14 18:31 - 2024-03-26 12:13 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Figma
2024-04-13 09:25 - 2022-11-09 16:41 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-04-13 09:24 - 2022-11-09 16:41 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-13 09:18 - 2022-11-12 17:58 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2024-04-13 09:11 - 2022-11-12 19:59 - 000000000 ____D C:\ProgramData\ValhallaDelay
2024-04-13 09:11 - 2022-11-12 11:52 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Celemony Software GmbH
2024-04-12 22:17 - 2022-11-07 12:52 - 000494928 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 21:22 - 2022-11-07 12:55 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-10 09:00 - 2022-11-07 17:23 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-10 08:55 - 2022-11-07 12:52 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-09 18:29 - 2023-11-17 10:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\NuGet
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\Documents\Visual Studio 2022
2024-04-09 18:28 - 2023-11-17 10:42 - 000000000 ____D C:\Users\Administrateur\AppData\Local\.IdentityService
2024-04-09 16:02 - 2022-11-08 09:19 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\Microsoft\Word
2024-04-08 10:02 - 2023-04-03 15:58 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\XnConvert
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Roaming\2BrightSparks
2024-04-07 17:55 - 2024-01-30 23:26 - 000000000 ____D C:\Users\tbaro\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\Users\Administrateur\AppData\Local\2BrightSparks
2024-04-07 12:05 - 2024-01-29 13:26 - 000000000 ____D C:\ProgramData\2BrightSparks
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-07 11:10 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2024-04-07 11:07 - 2023-12-22 11:34 - 000000000 ____D C:\Users\Administrateur\Desktop\myMP3-2
2024-04-07 09:37 - 2022-05-07 12:35 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2024-04-07 09:37 - 2022-05-07 12:35 - 000024383 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2024-04-07 09:29 - 2022-11-07 16:40 - 000000000 ____D C:\Windows\system32\Tasks\2BrightSparks
2024-04-07 09:24 - 2022-11-13 10:57 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-04-06 15:43 - 2023-01-05 18:42 - 000000000 ____D C:\Windows\Minidump
2024-04-06 15:41 - 2023-11-23 12:43 - 000000000 ___HD C:\temp
2024-04-06 10:17 - 2022-11-07 19:10 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Steinberg
2024-04-06 10:15 - 2023-05-18 09:17 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\KeePass
2024-04-06 09:30 - 2022-11-07 19:06 - 000000000 ____D C:\ProgramData\Steinberg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files\eLicenser
2024-04-06 09:21 - 2022-11-07 19:10 - 000000000 ____D C:\Program Files (x86)\eLicenser
2024-04-06 09:20 - 2022-11-07 19:03 - 000000000 ____D C:\Program Files\Common Files\Steinberg

==================== Fichiers Ã  la racine de certains dossiers ========

2023-02-16 12:22 - 2023-02-16 12:22 - 000000441 _____ () C:\Users\Administrateur\AppData\Roaming\apps.txt
2023-07-15 09:41 - 2023-07-15 09:42 - 000000016 _____ () C:\Users\Administrateur\AppData\Roaming\msregsvv.dll
2022-11-30 17:45 - 2023-11-23 12:42 - 000000615 _____ () C:\Users\Administrateur\AppData\Local\oobelibMkey.log
2022-11-13 12:20 - 2024-04-13 10:33 - 000772390 _____ () C:\Users\Administrateur\AppData\Local\wle.log
2022-11-13 12:20 - 2024-01-21 11:43 - 001074003 _____ () C:\Users\Administrateur\AppData\Local\wle.log.1

==================== FLock ==============================

2022-11-07 12:52 C:\Windows\system32\config\BFS

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

==================== Fin de FRST.txt ========================