Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par C&C (administrateur) sur DESKTOP-D4C3JJO (Dell Inc. Inspiron 5680) (06-09-2022 14:02:00)
Exécuté depuis C:\Users\C&C\Downloads
Profils chargés: C&C
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserSessionAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\RAVAntivirus\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\RAVAntivirus\ui\RAVAntivirus.exe <7>
(C:\Program Files\RAVAntivirus\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsHelper.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (MobiSystems, Inc. -> MobiSystems Inc.) C:\Program Files\MobiSystems\PDFExtra\PdfEditorUpdate.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsEngineSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsWSC.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\x64\rsSyncSvc.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.22621.1.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2207.20002-0\SecurityHealthHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9244648 2017-11-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PDFExtra] => C:\Program Files\MobiSystems\PDFExtra\PdfEditorUpdate.exe [347928 2022-05-16] (MobiSystems, Inc. -> MobiSystems Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-08-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\C&C\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-06-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [HP ENVY Photo 6200 (NET)] => C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe [4066464 2021-11-22] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [MicrosoftEdgeAutoLaunch_5155C9EF05281296D2176AA79FC08D83] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
IFEO\vdsldr.exe: [Debugger] cmd /q (c) AveYo, 2021 /d/x/r>nul (erase /f/s/q %systemdrive%\$windows.~bt\appraiserres.dll&md 11&cd 11&ren vd.exe vdsldr.exe&robocopy "../" "./" "vdsldr.exe"&ren vdsldr.exe vd.exe&start vd -Embedding)&rem;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {09511594-72D7-4BB8-84CB-9374B8A708E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {10297E8B-1F9C-4E7A-A790-665FD8B91401} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1777136A-48D0-4A39-A8F6-0BD5529E0E78} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [663392 2022-08-22] (Dell Inc -> Dell Inc.)
Task: {2063E283-6088-4563-810A-CB4A02288A93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B1556D9-73F7-4663-8A45-36382DA0459C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3997FA9A-CB80-460C-929F-648C4EEE4D82} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {39EDB89A-E564-4924-A1C2-16533056B6BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4AC5ADD7-BAE0-4009-A52C-0EA0E4B95E62} - System32\Tasks\GoogleUpdateTaskMachineCore{BC8DAC88-9A29-4658-BB23-917E562204E1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-12] (Google LLC -> Google LLC)
Task: {54817838-BC3F-4287-879B-F3728E504F4D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D222968-861D-4FBF-857F-CDE1A38D5E74} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DC9F897-CA22-4DA3-AC67-EB26533D26FF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DFDAD39-F513-4E7D-871D-6BD96858F1E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E1CF024-44C5-425D-9F3B-82734ED317D4} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {76C530C7-1CE8-4FF8-A26B-9C2D95D1D3C6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7BF0BEE6-B483-4ECD-A185-51F4EA2C21DE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {82EB1B6C-2A1F-450D-A1A2-3C845C0D6C6E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {91B71C2C-2F3F-40A0-BC5F-06DF4625DCD2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {AAADD349-566A-498E-80A0-7E7DA1C3D791} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-197869263-2695916888-3010233270-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB555DB0-4442-4E48-B93D-681614EB8718} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B89F8CC8-27C6-4541-96CB-7C58C0D98AC5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4F45E78-FB36-433E-A43F-646339004125} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CC83CC47-69D7-4819-A787-563A010F5513} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {E0DCFCF6-1A37-44F7-9737-17C2436B92FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E10E7D9A-DEEE-4A3E-9527-F62E60A7BDFE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3BCB0C3-995B-4AA2-8361-27BC64615076} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E7500CD7-9E32-42FD-A5BA-C13A705BF504} - System32\Tasks\GoogleUpdateTaskMachineUA{82F4B1DB-FC3E-4E3C-AA25-934937C7D89D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-12] (Google LLC -> Google LLC)
Task: {E754C74B-44D7-4EF3-983D-04A7CC0791E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F45423F7-E2A6-4089-988B-E030C77DAA5E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F5BEB420-0A11-4A40-AE8D-C365C36B8092} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{396e7f11-ed31-4683-a55d-9d534ef8b644}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aca9ab69-4384-426f-a791-71ca4936ad77}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\C&C\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-06]
FireFox:
========
FF DefaultProfile: 0jir82xg.default
FF ProfilePath: C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\0jir82xg.default [2022-06-12]
FF ProfilePath: C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release [2022-09-06]
FF Extension: (Enhancer for YouTube™) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-06-21]
FF Extension: (uBlock Origin) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-09-06]
FF Extension: (YouTube Video Downloader/YouTube HD Download) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\youtubedownloader@youtubedownloadvideo1clickgroup.com.xpi [2022-06-12]
FF Extension: (Traduire les pages Web) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2022-08-24]
FF Extension: (Absolute Right Click) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2022-06-12]
FF Extension: (uVPN - VPN gratuit et sécurisé pour la confidentialité en ligne) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{98e5888b-e5f3-4321-a647-28bc617deda2}.xpi [2022-06-12]
FF Extension: (Video DownloadHelper) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-06-12]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-16]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-12]
CHR Notifications: Profile 1 -> hxxps://meet.google.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-07-10]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2022-06-12]
CHR Extension: (I don't care about cookies) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-06-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-12]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-07-21]
CHR Notifications: Profile 2 -> hxxps://meet.google.com
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-17]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-09-06]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-09-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-21]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-16]
CHR HKU\S-1-5-21-197869263-2695916888-3010233270-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-08-25] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [45784 2022-08-17] (Dell Inc -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-08-15] (Dell Inc -> Dell)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-21] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-21] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncHelper.exe [3380624 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-08-26] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-01] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\OneDriveUpdaterService.exe [3800976 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [197336 2021-06-15] (Qualcomm Atheros, Inc. -> )
R2 rsClientSvc; C:\Program Files\RAVAntivirus\rsClientSvc.exe [728904 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsEngineSvc; C:\Program Files\RAVAntivirus\rsEngineSvc.exe [354632 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsSyncSvc; C:\Program Files\RAVAntivirus\x64\rsSyncSvc.exe [578736 2022-08-29] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsWSC; C:\Program Files\RAVAntivirus\rsWSC.exe [204504 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2022-08-22] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-06-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-06-12] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 CyUcmClient_Device; C:\WINDOWS\System32\drivers\CyUcmClient.sys [133480 2017-06-19] (Cypress Semiconductor Corporation -> Cypress Semiconductor Corporation)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2022-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [37808 2022-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 ReasonCamFilter; C:\WINDOWS\System32\DRIVERS\ReasonCamFilter.sys [49992 2022-09-06] (Reason CyberSecurity Inc. -> Reason Software Company)
S3 rsDwf; C:\WINDOWS\system32\DRIVERS\rsDwf.sys [54144 2022-09-03] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
S0 rsElam; C:\WINDOWS\System32\drivers\rsElam.sys [19944 2022-09-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Reason CyberSecurity Inc.)
R1 rsKernelEngine; C:\WINDOWS\System32\DRIVERS\rsKernelEngine.sys [49456 2022-09-06] (Reason CyberSecurity Inc. -> Windows (R) Win 7 DDK provider)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-06 13:44 - 2022-09-06 13:44 - 000000000 ____D C:\ProgramData\RAVAntivirusBackup
2022-09-06 13:44 - 2022-09-06 13:42 - 000049992 _____ (Reason Software Company) C:\WINDOWS\system32\Drivers\ReasonCamFilter.sys
2022-09-06 13:44 - 2022-09-06 13:42 - 000049456 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\rsKernelEngine.sys
2022-09-06 13:44 - 2022-09-06 13:42 - 000019944 _____ (Reason CyberSecurity Inc.) C:\WINDOWS\system32\Drivers\rsElam.sys
2022-09-06 12:05 - 2022-09-06 12:05 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64(1)-1.exe
2022-09-06 12:04 - 2022-09-06 12:04 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64(1).exe
2022-09-06 12:00 - 2022-09-06 12:00 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-09-06 11:44 - 2022-09-06 13:36 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2022-09-06 11:44 - 2022-09-06 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-09-06 11:44 - 2022-09-06 11:44 - 007513880 _____ (VS Revo Group ) C:\Users\C&C\Downloads\revosetup.exe
2022-09-06 11:44 - 2022-09-06 11:44 - 000000000 ____D C:\Program Files\VS Revo Group
2022-09-06 11:40 - 2022-09-06 11:43 - 593955437 _____ C:\Users\C&C\Downloads\Colette.2018.TRUEFRENCH.BDRip.x264-EXTREME.mkv
2022-09-06 10:46 - 2022-09-06 10:48 - 000054517 _____ C:\Users\C&C\Downloads\Addition.txt
2022-09-06 10:45 - 2022-09-06 14:02 - 000031002 _____ C:\Users\C&C\Downloads\FRST.txt
2022-09-06 10:45 - 2022-09-06 14:02 - 000000000 ____D C:\FRST
2022-09-06 10:44 - 2022-09-06 10:44 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64-1.exe
2022-09-06 10:29 - 2022-09-06 10:29 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64.exe
2022-09-06 09:17 - 2022-09-06 09:17 - 000040634 _____ C:\Users\C&C\Downloads\emploi-tempsEFimpaire.export
2022-09-06 09:11 - 2022-09-06 09:11 - 000039102 _____ C:\Users\C&C\Downloads\emploi-temps EFpaire.export
2022-09-05 22:49 - 2022-09-05 22:49 - 000891763 _____ C:\Users\C&C\Downloads\FSE Falconnet Inscription autorisation parentale 2022-2023.pdf
2022-09-05 22:49 - 2022-09-05 22:49 - 000820137 _____ C:\Users\C&C\Downloads\Meute 2022_FALCONNET carte mutuelle.pdf
2022-09-05 22:47 - 2022-09-05 22:47 - 000243064 _____ C:\Users\C&C\Downloads\FSE Falconnet Fiche sanitaire de liaison 2022-2023.pdf
2022-09-05 22:47 - 2022-09-05 22:47 - 000143718 _____ C:\Users\C&C\Downloads\FSE Falconnet AttestationDroits.pdf
2022-09-05 21:58 - 2022-09-05 21:58 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2022-09-05 21:48 - 2022-09-05 21:48 - 000118994 _____ C:\Users\C&C\Downloads\PAP2023_BG_GA_P218_TM-MANCINI - PAP total (hors PS).odt
2022-09-05 14:49 - 2022-09-05 14:49 - 000338011 _____ C:\Users\C&C\Downloads\Je le ferai pour toi (Cohen, Thierry) (z-lib.org).epub
2022-09-05 11:29 - 2022-09-05 11:29 - 000002489 _____ C:\Users\C&C\Documents\CoralieFALCONNET.pfx
2022-09-05 11:28 - 2022-09-05 11:28 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\NVIDIA
2022-09-05 11:26 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\AppData\Local\SolidDocuments
2022-09-05 11:26 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\.ms-ad
2022-09-05 11:25 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\Adobe
2022-09-05 11:25 - 2022-09-05 11:25 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-05 11:25 - 2022-09-05 11:25 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-05 11:25 - 2022-09-05 11:25 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-05 11:25 - 2022-09-05 11:25 - 000000000 ____D C:\Program Files\Adobe
2022-09-05 11:24 - 2022-09-05 11:26 - 000000000 ____D C:\ProgramData\Adobe
2022-09-05 11:24 - 2022-09-05 11:25 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-09-05 11:22 - 2022-09-05 19:32 - 000000000 ____D C:\Users\C&C\AppData\Local\Adobe
2022-09-04 19:30 - 2022-09-06 12:00 - 000001527 _____ C:\WINDOWS\system32\config\VSMIDK
2022-09-04 15:49 - 2022-09-04 15:49 - 000415022 _____ C:\Users\C&C\Downloads\AF-1ère4- Emploi_du_temps.pdf
2022-09-04 15:48 - 2022-09-04 15:48 - 000035816 _____ C:\Users\C&C\Downloads\emploi-temps(AF).export
2022-09-04 15:40 - 2022-09-04 15:40 - 000415022 _____ C:\Users\C&C\Downloads\emploi_du_temps.pdf
2022-09-04 15:04 - 2022-09-04 15:04 - 000038042 _____ C:\Users\C&C\Downloads\emploi-temps(E semaine paire).export
2022-09-04 14:55 - 2022-09-04 14:55 - 000039560 _____ C:\Users\C&C\Downloads\emploi-temps(E semaine impaire).export
2022-09-04 13:10 - 2022-09-04 13:10 - 890182854 _____ C:\Users\C&C\Downloads\Sonorus-Alixe-HP734-Tome4-Les-Sorciers-.zip
2022-09-04 12:53 - 2022-09-06 08:51 - 000004180 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9E4A72AB-3C91-430A-A25D-35A373AD75FA}
2022-09-04 12:27 - 2022-09-04 12:32 - 000000000 ____D C:\Users\C&C\Documents\Shadow of the Tomb Raider
2022-09-04 12:07 - 2022-09-04 12:07 - 012189608 _____ C:\Users\C&C\Downloads\HPEasyStart_14_5_6.exe
2022-09-04 12:04 - 2022-09-04 12:04 - 000178125 _____ C:\Users\C&C\Downloads\Screenshot 2022-09-03 at 13-37-19 emploidutemps-1.jpeg
2022-09-04 12:03 - 2022-09-04 12:03 - 000171016 _____ C:\Users\C&C\Downloads\Screenshot 2022-09-03 at 13-36-02 emploidutemps.jpeg
2022-09-03 22:39 - 2022-09-03 22:39 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Eidos Montreal
2022-09-03 13:37 - 2022-09-03 13:37 - 000009738 _____ C:\Users\C&C\Downloads\calendar.ical
2022-09-03 13:37 - 2022-09-03 13:37 - 000009738 _____ C:\Users\C&C\Downloads\calendar(1).ical
2022-09-03 13:36 - 2022-09-03 13:37 - 000076322 _____ C:\Users\C&C\Downloads\emploidutemps-1.pdf
2022-09-03 13:29 - 2022-09-03 13:29 - 000074470 _____ C:\Users\C&C\Downloads\emploidutemps.pdf
2022-09-03 12:16 - 2022-09-06 11:49 - 000000000 ____D C:\ProgramData\SaferWebService
2022-09-03 12:16 - 2022-09-03 12:16 - 000054144 _____ (Reason CyberSecurity Inc.) C:\WINDOWS\system32\Drivers\rsDwf.sys
2022-09-03 12:16 - 2022-09-03 12:16 - 000000000 ____D C:\ProgramData\SaferWebBackup
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\Users\C&C\AppData\Roaming\rav-antivirus-client
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\ProgramData\RAVAntivirus
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\Program Files\RAVAntivirus
2022-09-03 12:15 - 2022-09-06 11:49 - 000000000 ____D C:\ProgramData\RAVVPNService
2022-09-03 12:15 - 2022-09-03 12:15 - 000000000 ____D C:\ProgramData\RAVVPNBackup
2022-09-03 12:14 - 2022-09-03 12:15 - 000001399 _____ C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-09-03 12:14 - 2022-09-03 12:14 - 000001393 _____ C:\Users\C&C\Desktop\Navigateur Opera.lnk
2022-09-03 12:14 - 2022-09-03 12:14 - 000000000 ____D C:\Users\C&C\AppData\Local\TaskbarSystem
2022-09-03 11:50 - 2022-09-03 11:50 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-09-03 11:50 - 2022-09-03 11:50 - 000000028 ____H C:\.GamingRoot
2022-09-03 11:50 - 2022-09-03 11:50 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-09-03 11:50 - 2022-09-03 11:50 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-09-03 11:49 - 2022-09-03 11:49 - 000000000 ____D C:\Users\C&C\AppData\Local\MinecraftInstaller
2022-09-02 12:02 - 2022-09-02 12:02 - 002448851 _____ C:\Users\C&C\Downloads\Les Animaux fantastiques 3 Les Secrets de Dumbledore (J.K. Rowling Steve Kloves) (z-lib.org).epub
2022-09-02 12:01 - 2022-09-02 12:01 - 001241641 _____ C:\Users\C&C\Downloads\Les Animaux Fantastiques Les Crimes de Grindelwald - Le Texte du Film (Rowling, J.K. [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 12:00 - 2022-09-02 12:00 - 001783632 _____ C:\Users\C&C\Downloads\Les Animaux fantastiques le texte du film (J. K. Rowling [Rowling, J. K.]) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 001177600 _____ C:\Users\C&C\Downloads\Poudlard Le Guide pas complet et pas fiable du tout (Rowling, J K) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 000500114 _____ C:\Users\C&C\Downloads\Nouvelles de Poudlard Pouvoir, Politique et Esprits frappeurs Enquiquinants (Pottermore Presents (Français)) (French Edition) (J.K. Rowling [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 000444834 _____ C:\Users\C&C\Downloads\Nouvelles de Poudlard Héroïsme, Tribulations et Passe-temps Dangereux (Pottermore Presents (Français)) (French Edition) (J.K. Rowling [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 11:57 - 2022-09-02 11:57 - 005836354 _____ C:\Users\C&C\Downloads\La Collection Poudlard (J. K. Rowling) (z-lib.org).epub
2022-08-31 22:14 - 2022-08-31 22:14 - 001200529 _____ C:\Users\C&C\Downloads\ODR822GAML.pdf
2022-08-31 22:11 - 2022-08-31 22:11 - 000085118 _____ C:\Users\C&C\Desktop\contrat.pdf
2022-08-31 21:33 - 2022-08-31 21:33 - 000052581 _____ C:\Users\C&C\Downloads\Facture F905BN52766.pdf
2022-08-31 21:33 - 2022-08-31 21:33 - 000052581 _____ C:\Users\C&C\Desktop\Facture F905BN52766.pdf
2022-08-30 18:59 - 2022-09-04 19:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-30 12:18 - 2022-08-30 12:18 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Unreal Engine
2022-08-28 12:46 - 2022-08-28 12:46 - 000000000 ____D C:\Users\C&C\AppData\Local\BattlEye
2022-08-26 11:39 - 2022-08-26 11:39 - 872564232 _____ C:\Users\C&C\Downloads\Sonorus-Alixe-HP734-Tome3-Les_Reformateurs.zip
2022-08-26 11:31 - 2022-08-26 11:31 - 029894157 _____ C:\Users\C&C\Downloads\Le Petit Nicolas en bande dessinée - La bande dessinée originale (2017).(Goscinny-Sempé).-.[iBooker-Digital-1920].cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 021744975 _____ C:\Users\C&C\Downloads\Sempé - 1969 - Marcellin Caillou.cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 012003220 _____ C:\Users\C&C\Downloads\Catherine Certitude (one shot) [Modiano-Sempé] - DKFR.cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 008663292 _____ C:\Users\C&C\Downloads\Sempe. Quelques enfants .cbz
2022-08-26 11:29 - 2022-08-26 11:38 - 1543366054 _____ C:\Users\C&C\Downloads\Qu.est.Ce.Qu.on.A.Tous.Fait.Au.Bon.Dieu.2021.FRENCH.720p.HDLight.x264.AC3-EXTREME_wWw.Extreme-Down.io.mkv
2022-08-25 16:03 - 2022-08-25 16:03 - 000000000 ____D C:\Users\C&C\AppData\Roaming\NVIDIA
2022-08-21 22:26 - 2022-08-21 22:26 - 000381358 _____ C:\Users\C&C\Downloads\FR_2022_PLF_BG_PGM_134.pdf
2022-08-21 22:24 - 2022-08-21 22:24 - 000333713 _____ C:\Users\C&C\Downloads\FR_2022_PLF_BG_PGM_218.pdf
2022-08-21 11:03 - 2022-08-21 11:03 - 002671284 _____ C:\WINDOWS\Minidump\082122-32656-01.dmp
2022-08-20 20:54 - 2022-08-20 20:54 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-20 20:49 - 2022-08-20 20:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-06 14:01 - 2022-06-12 17:24 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-06 13:55 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-09-06 13:51 - 2022-07-21 17:45 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-06 13:50 - 2022-06-12 17:19 - 000000000 ____D C:\Users\C&C\AppData\Local\Packages
2022-09-06 13:50 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-06 13:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-06 13:49 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-06 13:44 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-09-06 12:59 - 2022-06-12 17:25 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-06 12:56 - 2022-06-12 17:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-06 12:55 - 2022-06-12 17:35 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\Mozilla
2022-09-06 12:05 - 2022-06-12 18:33 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-06 12:05 - 2021-06-05 20:14 - 000769848 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-06 12:05 - 2021-06-05 20:14 - 000148146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-06 12:05 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-09-06 12:00 - 2022-06-12 18:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-06 12:00 - 2022-06-12 17:13 - 000012288 ___SH C:\DumpStack.log.tmp
2022-09-06 11:59 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-06 11:52 - 2022-07-21 17:54 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-09-06 11:50 - 2022-06-12 18:34 - 000003660 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-09-06 09:44 - 2022-06-12 17:26 - 000000000 ____D C:\Users\C&C\AppData\Local\D3DSCache
2022-09-05 21:48 - 2022-06-12 18:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-05 11:54 - 2022-06-14 11:12 - 000000000 ____D C:\Users\C&C\Desktop\Dossier FSE camp 2022
2022-09-05 11:26 - 2022-06-12 18:28 - 000000000 ____D C:\Users\C&C
2022-09-05 11:26 - 2022-06-12 17:19 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Adobe
2022-09-04 19:31 - 2022-06-12 22:55 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-04 19:30 - 2022-06-13 19:14 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-09-04 19:30 - 2022-06-12 17:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-04 19:30 - 2022-06-12 17:13 - 004459771 ____N C:\WINDOWS\Minidump\090422-34609-01.dmp
2022-09-04 13:09 - 2022-06-17 14:22 - 000000000 ____D C:\Users\C&C\Desktop\Bureautique
2022-09-04 12:52 - 2022-06-12 17:19 - 000000000 ____D C:\ProgramData\Packages
2022-09-04 12:36 - 2022-06-12 17:35 - 000000000 ____D C:\WINDOWS\system32\11
2022-09-04 12:31 - 2022-07-17 14:57 - 000000000 ____D C:\Users\C&C\Documents\My Games
2022-09-04 12:11 - 2022-07-02 12:45 - 000000000 ____D C:\Users\C&C\AppData\Roaming\HP_Easy_Start
2022-09-04 10:37 - 2022-06-12 19:20 - 000000000 ____D C:\Users\C&C\AppData\Local\CrashDumps
2022-09-04 10:27 - 2022-06-12 17:14 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 10:27 - 2022-06-12 17:14 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-03 21:36 - 2022-06-12 17:24 - 000000000 ____D C:\Users\C&C\AppData\Local\PlaceholderTileLogoFolder
2022-09-03 21:06 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-03 12:08 - 2022-07-11 18:04 - 000001419 _____ C:\Users\C&C\Desktop\Roblox Player.lnk
2022-09-03 12:08 - 2022-07-11 18:03 - 000001242 _____ C:\Users\C&C\Desktop\Roblox Studio.lnk
2022-09-03 12:08 - 2022-07-11 18:03 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-09-01 16:28 - 2022-06-12 18:34 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-197869263-2695916888-3010233270-1001
2022-09-01 16:28 - 2022-06-12 18:30 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-09-01 16:28 - 2022-06-12 18:00 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-31 12:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-08-30 20:20 - 2022-06-12 18:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-30 20:20 - 2022-06-12 17:35 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 15:56 - 2022-06-12 18:30 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{82F4B1DB-FC3E-4E3C-AA25-934937C7D89D}
2022-08-30 15:56 - 2022-06-12 18:30 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{BC8DAC88-9A29-4658-BB23-917E562204E1}
2022-08-26 20:40 - 2022-07-02 12:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-26 20:40 - 2022-07-02 12:48 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-25 17:13 - 2022-06-29 12:09 - 000003952 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2022-08-25 17:13 - 2022-06-29 12:09 - 000000000 ____D C:\Program Files\Dell
2022-08-25 17:09 - 2022-06-29 12:09 - 000000000 ____D C:\Program Files\dotnet
2022-08-25 17:09 - 2022-06-12 17:59 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-24 17:57 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-24 17:57 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-24 17:53 - 2022-06-12 17:58 - 000000000 ____D C:\Users\C&C\AppData\Local\EpicGamesLauncher
2022-08-22 22:06 - 2022-06-12 17:24 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-22 22:06 - 2022-06-12 17:24 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-21 11:03 - 2022-06-12 22:55 - 2434025760 _____ C:\WINDOWS\MEMORY.DMP
2022-08-21 11:03 - 2022-06-12 18:27 - 000476720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-20 20:53 - 2022-06-12 18:30 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-20 20:48 - 2022-07-02 12:44 - 000000000 ____D C:\Users\C&C\AppData\Local\ElevatedDiagnostics
2022-08-20 20:04 - 2022-06-12 17:57 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-20 19:59 - 2022-06-13 16:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-20 19:58 - 2022-06-13 16:06 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-20 19:56 - 2022-06-12 18:30 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-20 19:56 - 2022-06-12 18:30 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2022-06-29 16:00 - 2022-06-29 16:00 - 000007605 _____ () C:\Users\C&C\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par C&C (administrateur) sur DESKTOP-D4C3JJO (Dell Inc. Inspiron 5680) (06-09-2022 14:02:00)
Exécuté depuis C:\Users\C&C\Downloads
Profils chargés: C&C
Plate-forme: Microsoft Windows 11 Famille Version 21H2 22000.856 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserSessionAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\RAVAntivirus\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\RAVAntivirus\ui\RAVAntivirus.exe <7>
(C:\Program Files\RAVAntivirus\rsEngineSvc.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsHelper.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(explorer.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(explorer.exe ->) (MobiSystems, Inc. -> MobiSystems Inc.) C:\Program Files\MobiSystems\PDFExtra\PdfEditorUpdate.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_1e59f5ec7049260a\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\SocketHeciServer.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_5.68.30003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsEngineSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\rsWSC.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\RAVAntivirus\x64\rsSyncSvc.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.22621.1.0_x64__8wekyb3d8bbwe\SecHealthUI.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\SecurityHealth\1.0.2207.20002-0\SecurityHealthHost.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9244648 2017-11-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PDFExtra] => C:\Program Files\MobiSystems\PDFExtra\PdfEditorUpdate.exe [347928 2022-05-16] (MobiSystems, Inc. -> MobiSystems Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32703952 2022-08-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\C&C\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-06-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [HP ENVY Photo 6200 (NET)] => C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe [4066464 2021-11-22] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234600 2022-08-20] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-197869263-2695916888-3010233270-1001\...\Run: [MicrosoftEdgeAutoLaunch_5155C9EF05281296D2176AA79FC08D83] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-22] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
IFEO\vdsldr.exe: [Debugger] cmd /q (c) AveYo, 2021 /d/x/r>nul (erase /f/s/q %systemdrive%\$windows.~bt\appraiserres.dll&md 11&cd 11&ren vd.exe vdsldr.exe&robocopy "../" "./" "vdsldr.exe"&ren vdsldr.exe vd.exe&start vd -Embedding)&rem;
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {09511594-72D7-4BB8-84CB-9374B8A708E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {10297E8B-1F9C-4E7A-A790-665FD8B91401} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1777136A-48D0-4A39-A8F6-0BD5529E0E78} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [663392 2022-08-22] (Dell Inc -> Dell Inc.)
Task: {2063E283-6088-4563-810A-CB4A02288A93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B1556D9-73F7-4663-8A45-36382DA0459C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3997FA9A-CB80-460C-929F-648C4EEE4D82} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {39EDB89A-E564-4924-A1C2-16533056B6BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4AC5ADD7-BAE0-4009-A52C-0EA0E4B95E62} - System32\Tasks\GoogleUpdateTaskMachineCore{BC8DAC88-9A29-4658-BB23-917E562204E1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-12] (Google LLC -> Google LLC)
Task: {54817838-BC3F-4287-879B-F3728E504F4D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D222968-861D-4FBF-857F-CDE1A38D5E74} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DC9F897-CA22-4DA3-AC67-EB26533D26FF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DFDAD39-F513-4E7D-871D-6BD96858F1E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E1CF024-44C5-425D-9F3B-82734ED317D4} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {76C530C7-1CE8-4FF8-A26B-9C2D95D1D3C6} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7BF0BEE6-B483-4ECD-A185-51F4EA2C21DE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {82EB1B6C-2A1F-450D-A1A2-3C845C0D6C6E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {91B71C2C-2F3F-40A0-BC5F-06DF4625DCD2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {AAADD349-566A-498E-80A0-7E7DA1C3D791} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-197869263-2695916888-3010233270-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB555DB0-4442-4E48-B93D-681614EB8718} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {B89F8CC8-27C6-4541-96CB-7C58C0D98AC5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4F45E78-FB36-433E-A43F-646339004125} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CC83CC47-69D7-4819-A787-563A010F5513} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {E0DCFCF6-1A37-44F7-9737-17C2436B92FF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E10E7D9A-DEEE-4A3E-9527-F62E60A7BDFE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3BCB0C3-995B-4AA2-8361-27BC64615076} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E7500CD7-9E32-42FD-A5BA-C13A705BF504} - System32\Tasks\GoogleUpdateTaskMachineUA{82F4B1DB-FC3E-4E3C-AA25-934937C7D89D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-12] (Google LLC -> Google LLC)
Task: {E754C74B-44D7-4EF3-983D-04A7CC0791E9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F45423F7-E2A6-4089-988B-E030C77DAA5E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F5BEB420-0A11-4A40-AE8D-C365C36B8092} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{396e7f11-ed31-4683-a55d-9d534ef8b644}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aca9ab69-4384-426f-a791-71ca4936ad77}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\C&C\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-06]
FireFox:
========
FF DefaultProfile: 0jir82xg.default
FF ProfilePath: C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\0jir82xg.default [2022-06-12]
FF ProfilePath: C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release [2022-09-06]
FF Extension: (Enhancer for YouTube™) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2022-06-21]
FF Extension: (uBlock Origin) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-09-06]
FF Extension: (YouTube Video Downloader/YouTube HD Download) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\youtubedownloader@youtubedownloadvideo1clickgroup.com.xpi [2022-06-12]
FF Extension: (Traduire les pages Web) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2022-08-24]
FF Extension: (Absolute Right Click) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2022-06-12]
FF Extension: (uVPN - VPN gratuit et sécurisé pour la confidentialité en ligne) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{98e5888b-e5f3-4321-a647-28bc617deda2}.xpi [2022-06-12]
FF Extension: (Video DownloadHelper) - C:\Users\C&C\AppData\Roaming\Mozilla\Firefox\Profiles\uqotpkqj.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-06-12]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-16]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-12]
CHR Notifications: Profile 1 -> hxxps://meet.google.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-07-10]
CHR Extension: (Stay secure with CyberGhost VPN Free Proxy) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ffbkglfijbcbgblgflchnbphjdllaogb [2022-06-12]
CHR Extension: (I don't care about cookies) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-06-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-12]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-07-21]
CHR Notifications: Profile 2 -> hxxps://meet.google.com
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-17]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-09-06]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-09-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C&C\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-21]
CHR Profile: C:\Users\C&C\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-16]
CHR HKU\S-1-5-21-197869263-2695916888-3010233270-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-08-25] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2022-08-16] (Dell Inc -> Dell Technologies Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [45784 2022-08-17] (Dell Inc -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-08-15] (Dell Inc -> Dell)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-06-21] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-06-21] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncHelper.exe [3380624 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-08-26] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8765464 2022-09-01] (Malwarebytes Inc. -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\OneDriveUpdaterService.exe [3800976 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [197336 2021-06-15] (Qualcomm Atheros, Inc. -> )
R2 rsClientSvc; C:\Program Files\RAVAntivirus\rsClientSvc.exe [728904 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsEngineSvc; C:\Program Files\RAVAntivirus\rsEngineSvc.exe [354632 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsSyncSvc; C:\Program Files\RAVAntivirus\x64\rsSyncSvc.exe [578736 2022-08-29] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsWSC; C:\Program Files\RAVAntivirus\rsWSC.exe [204504 2022-09-06] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2022-08-22] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_9de4645e348173bf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-06-12] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-06-12] (Microsoft Corporation) [Fichier non signé]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Fichier non signé]
R3 CyUcmClient_Device; C:\WINDOWS\System32\drivers\CyUcmClient.sys [133480 2017-06-19] (Cypress Semiconductor Corporation -> Cypress Semiconductor Corporation)
R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2022-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [37808 2022-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R1 ReasonCamFilter; C:\WINDOWS\System32\DRIVERS\ReasonCamFilter.sys [49992 2022-09-06] (Reason CyberSecurity Inc. -> Reason Software Company)
S3 rsDwf; C:\WINDOWS\system32\DRIVERS\rsDwf.sys [54144 2022-09-03] (Reason CyberSecurity Inc. -> Reason CyberSecurity Inc.)
S0 rsElam; C:\WINDOWS\System32\drivers\rsElam.sys [19944 2022-09-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Reason CyberSecurity Inc.)
R1 rsKernelEngine; C:\WINDOWS\System32\DRIVERS\rsKernelEngine.sys [49456 2022-09-06] (Reason CyberSecurity Inc. -> Windows (R) Win 7 DDK provider)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_d2a498d51a4f7bec\rtcx21x64.sys [409000 2021-06-01] (Realtek Semiconductor Corp. -> Realtek)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-04] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-06 13:44 - 2022-09-06 13:44 - 000000000 ____D C:\ProgramData\RAVAntivirusBackup
2022-09-06 13:44 - 2022-09-06 13:42 - 000049992 _____ (Reason Software Company) C:\WINDOWS\system32\Drivers\ReasonCamFilter.sys
2022-09-06 13:44 - 2022-09-06 13:42 - 000049456 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\rsKernelEngine.sys
2022-09-06 13:44 - 2022-09-06 13:42 - 000019944 _____ (Reason CyberSecurity Inc.) C:\WINDOWS\system32\Drivers\rsElam.sys
2022-09-06 12:05 - 2022-09-06 12:05 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64(1)-1.exe
2022-09-06 12:04 - 2022-09-06 12:04 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64(1).exe
2022-09-06 12:00 - 2022-09-06 12:00 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-09-06 11:44 - 2022-09-06 13:36 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2022-09-06 11:44 - 2022-09-06 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2022-09-06 11:44 - 2022-09-06 11:44 - 007513880 _____ (VS Revo Group ) C:\Users\C&C\Downloads\revosetup.exe
2022-09-06 11:44 - 2022-09-06 11:44 - 000000000 ____D C:\Program Files\VS Revo Group
2022-09-06 11:40 - 2022-09-06 11:43 - 593955437 _____ C:\Users\C&C\Downloads\Colette.2018.TRUEFRENCH.BDRip.x264-EXTREME.mkv
2022-09-06 10:46 - 2022-09-06 10:48 - 000054517 _____ C:\Users\C&C\Downloads\Addition.txt
2022-09-06 10:45 - 2022-09-06 14:02 - 000031002 _____ C:\Users\C&C\Downloads\FRST.txt
2022-09-06 10:45 - 2022-09-06 14:02 - 000000000 ____D C:\FRST
2022-09-06 10:44 - 2022-09-06 10:44 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64-1.exe
2022-09-06 10:29 - 2022-09-06 10:29 - 002371072 _____ (Farbar) C:\Users\C&C\Downloads\FRST64.exe
2022-09-06 09:17 - 2022-09-06 09:17 - 000040634 _____ C:\Users\C&C\Downloads\emploi-tempsEFimpaire.export
2022-09-06 09:11 - 2022-09-06 09:11 - 000039102 _____ C:\Users\C&C\Downloads\emploi-temps EFpaire.export
2022-09-05 22:49 - 2022-09-05 22:49 - 000891763 _____ C:\Users\C&C\Downloads\FSE Falconnet Inscription autorisation parentale 2022-2023.pdf
2022-09-05 22:49 - 2022-09-05 22:49 - 000820137 _____ C:\Users\C&C\Downloads\Meute 2022_FALCONNET carte mutuelle.pdf
2022-09-05 22:47 - 2022-09-05 22:47 - 000243064 _____ C:\Users\C&C\Downloads\FSE Falconnet Fiche sanitaire de liaison 2022-2023.pdf
2022-09-05 22:47 - 2022-09-05 22:47 - 000143718 _____ C:\Users\C&C\Downloads\FSE Falconnet AttestationDroits.pdf
2022-09-05 21:58 - 2022-09-05 21:58 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys
2022-09-05 21:48 - 2022-09-05 21:48 - 000118994 _____ C:\Users\C&C\Downloads\PAP2023_BG_GA_P218_TM-MANCINI - PAP total (hors PS).odt
2022-09-05 14:49 - 2022-09-05 14:49 - 000338011 _____ C:\Users\C&C\Downloads\Je le ferai pour toi (Cohen, Thierry) (z-lib.org).epub
2022-09-05 11:29 - 2022-09-05 11:29 - 000002489 _____ C:\Users\C&C\Documents\CoralieFALCONNET.pfx
2022-09-05 11:28 - 2022-09-05 11:28 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\NVIDIA
2022-09-05 11:26 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\AppData\Local\SolidDocuments
2022-09-05 11:26 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\.ms-ad
2022-09-05 11:25 - 2022-09-05 11:26 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\Adobe
2022-09-05 11:25 - 2022-09-05 11:25 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-05 11:25 - 2022-09-05 11:25 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-05 11:25 - 2022-09-05 11:25 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-05 11:25 - 2022-09-05 11:25 - 000000000 ____D C:\Program Files\Adobe
2022-09-05 11:24 - 2022-09-05 11:26 - 000000000 ____D C:\ProgramData\Adobe
2022-09-05 11:24 - 2022-09-05 11:25 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-09-05 11:22 - 2022-09-05 19:32 - 000000000 ____D C:\Users\C&C\AppData\Local\Adobe
2022-09-04 19:30 - 2022-09-06 12:00 - 000001527 _____ C:\WINDOWS\system32\config\VSMIDK
2022-09-04 15:49 - 2022-09-04 15:49 - 000415022 _____ C:\Users\C&C\Downloads\AF-1ère4- Emploi_du_temps.pdf
2022-09-04 15:48 - 2022-09-04 15:48 - 000035816 _____ C:\Users\C&C\Downloads\emploi-temps(AF).export
2022-09-04 15:40 - 2022-09-04 15:40 - 000415022 _____ C:\Users\C&C\Downloads\emploi_du_temps.pdf
2022-09-04 15:04 - 2022-09-04 15:04 - 000038042 _____ C:\Users\C&C\Downloads\emploi-temps(E semaine paire).export
2022-09-04 14:55 - 2022-09-04 14:55 - 000039560 _____ C:\Users\C&C\Downloads\emploi-temps(E semaine impaire).export
2022-09-04 13:10 - 2022-09-04 13:10 - 890182854 _____ C:\Users\C&C\Downloads\Sonorus-Alixe-HP734-Tome4-Les-Sorciers-.zip
2022-09-04 12:53 - 2022-09-06 08:51 - 000004180 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9E4A72AB-3C91-430A-A25D-35A373AD75FA}
2022-09-04 12:27 - 2022-09-04 12:32 - 000000000 ____D C:\Users\C&C\Documents\Shadow of the Tomb Raider
2022-09-04 12:07 - 2022-09-04 12:07 - 012189608 _____ C:\Users\C&C\Downloads\HPEasyStart_14_5_6.exe
2022-09-04 12:04 - 2022-09-04 12:04 - 000178125 _____ C:\Users\C&C\Downloads\Screenshot 2022-09-03 at 13-37-19 emploidutemps-1.jpeg
2022-09-04 12:03 - 2022-09-04 12:03 - 000171016 _____ C:\Users\C&C\Downloads\Screenshot 2022-09-03 at 13-36-02 emploidutemps.jpeg
2022-09-03 22:39 - 2022-09-03 22:39 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Eidos Montreal
2022-09-03 13:37 - 2022-09-03 13:37 - 000009738 _____ C:\Users\C&C\Downloads\calendar.ical
2022-09-03 13:37 - 2022-09-03 13:37 - 000009738 _____ C:\Users\C&C\Downloads\calendar(1).ical
2022-09-03 13:36 - 2022-09-03 13:37 - 000076322 _____ C:\Users\C&C\Downloads\emploidutemps-1.pdf
2022-09-03 13:29 - 2022-09-03 13:29 - 000074470 _____ C:\Users\C&C\Downloads\emploidutemps.pdf
2022-09-03 12:16 - 2022-09-06 11:49 - 000000000 ____D C:\ProgramData\SaferWebService
2022-09-03 12:16 - 2022-09-03 12:16 - 000054144 _____ (Reason CyberSecurity Inc.) C:\WINDOWS\system32\Drivers\rsDwf.sys
2022-09-03 12:16 - 2022-09-03 12:16 - 000000000 ____D C:\ProgramData\SaferWebBackup
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\Users\C&C\AppData\Roaming\rav-antivirus-client
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\ProgramData\RAVAntivirus
2022-09-03 12:15 - 2022-09-06 13:44 - 000000000 ____D C:\Program Files\RAVAntivirus
2022-09-03 12:15 - 2022-09-06 11:49 - 000000000 ____D C:\ProgramData\RAVVPNService
2022-09-03 12:15 - 2022-09-03 12:15 - 000000000 ____D C:\ProgramData\RAVVPNBackup
2022-09-03 12:14 - 2022-09-03 12:15 - 000001399 _____ C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-09-03 12:14 - 2022-09-03 12:14 - 000001393 _____ C:\Users\C&C\Desktop\Navigateur Opera.lnk
2022-09-03 12:14 - 2022-09-03 12:14 - 000000000 ____D C:\Users\C&C\AppData\Local\TaskbarSystem
2022-09-03 11:50 - 2022-09-03 11:50 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-09-03 11:50 - 2022-09-03 11:50 - 000000028 ____H C:\.GamingRoot
2022-09-03 11:50 - 2022-09-03 11:50 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-09-03 11:50 - 2022-09-03 11:50 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-09-03 11:49 - 2022-09-03 11:49 - 000000000 ____D C:\Users\C&C\AppData\Local\MinecraftInstaller
2022-09-02 12:02 - 2022-09-02 12:02 - 002448851 _____ C:\Users\C&C\Downloads\Les Animaux fantastiques 3 Les Secrets de Dumbledore (J.K. Rowling Steve Kloves) (z-lib.org).epub
2022-09-02 12:01 - 2022-09-02 12:01 - 001241641 _____ C:\Users\C&C\Downloads\Les Animaux Fantastiques Les Crimes de Grindelwald - Le Texte du Film (Rowling, J.K. [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 12:00 - 2022-09-02 12:00 - 001783632 _____ C:\Users\C&C\Downloads\Les Animaux fantastiques le texte du film (J. K. Rowling [Rowling, J. K.]) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 001177600 _____ C:\Users\C&C\Downloads\Poudlard Le Guide pas complet et pas fiable du tout (Rowling, J K) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 000500114 _____ C:\Users\C&C\Downloads\Nouvelles de Poudlard Pouvoir, Politique et Esprits frappeurs Enquiquinants (Pottermore Presents (Français)) (French Edition) (J.K. Rowling [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 11:58 - 2022-09-02 11:58 - 000444834 _____ C:\Users\C&C\Downloads\Nouvelles de Poudlard Héroïsme, Tribulations et Passe-temps Dangereux (Pottermore Presents (Français)) (French Edition) (J.K. Rowling [Rowling, J.K.]) (z-lib.org).epub
2022-09-02 11:57 - 2022-09-02 11:57 - 005836354 _____ C:\Users\C&C\Downloads\La Collection Poudlard (J. K. Rowling) (z-lib.org).epub
2022-08-31 22:14 - 2022-08-31 22:14 - 001200529 _____ C:\Users\C&C\Downloads\ODR822GAML.pdf
2022-08-31 22:11 - 2022-08-31 22:11 - 000085118 _____ C:\Users\C&C\Desktop\contrat.pdf
2022-08-31 21:33 - 2022-08-31 21:33 - 000052581 _____ C:\Users\C&C\Downloads\Facture F905BN52766.pdf
2022-08-31 21:33 - 2022-08-31 21:33 - 000052581 _____ C:\Users\C&C\Desktop\Facture F905BN52766.pdf
2022-08-30 18:59 - 2022-09-04 19:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-30 12:18 - 2022-08-30 12:18 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Unreal Engine
2022-08-28 12:46 - 2022-08-28 12:46 - 000000000 ____D C:\Users\C&C\AppData\Local\BattlEye
2022-08-26 11:39 - 2022-08-26 11:39 - 872564232 _____ C:\Users\C&C\Downloads\Sonorus-Alixe-HP734-Tome3-Les_Reformateurs.zip
2022-08-26 11:31 - 2022-08-26 11:31 - 029894157 _____ C:\Users\C&C\Downloads\Le Petit Nicolas en bande dessinée - La bande dessinée originale (2017).(Goscinny-Sempé).-.[iBooker-Digital-1920].cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 021744975 _____ C:\Users\C&C\Downloads\Sempé - 1969 - Marcellin Caillou.cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 012003220 _____ C:\Users\C&C\Downloads\Catherine Certitude (one shot) [Modiano-Sempé] - DKFR.cbz
2022-08-26 11:31 - 2022-08-26 11:31 - 008663292 _____ C:\Users\C&C\Downloads\Sempe. Quelques enfants .cbz
2022-08-26 11:29 - 2022-08-26 11:38 - 1543366054 _____ C:\Users\C&C\Downloads\Qu.est.Ce.Qu.on.A.Tous.Fait.Au.Bon.Dieu.2021.FRENCH.720p.HDLight.x264.AC3-EXTREME_wWw.Extreme-Down.io.mkv
2022-08-25 16:03 - 2022-08-25 16:03 - 000000000 ____D C:\Users\C&C\AppData\Roaming\NVIDIA
2022-08-21 22:26 - 2022-08-21 22:26 - 000381358 _____ C:\Users\C&C\Downloads\FR_2022_PLF_BG_PGM_134.pdf
2022-08-21 22:24 - 2022-08-21 22:24 - 000333713 _____ C:\Users\C&C\Downloads\FR_2022_PLF_BG_PGM_218.pdf
2022-08-21 11:03 - 2022-08-21 11:03 - 002671284 _____ C:\WINDOWS\Minidump\082122-32656-01.dmp
2022-08-20 20:54 - 2022-08-20 20:54 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000327680 _____ C:\WINDOWS\system32\pnpdiag.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000069632 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000041472 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-08-20 20:54 - 2022-08-20 20:54 - 000015026 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-20 20:49 - 2022-08-20 20:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-06 14:01 - 2022-06-12 17:24 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-06 13:55 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-09-06 13:51 - 2022-07-21 17:45 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-06 13:50 - 2022-06-12 17:19 - 000000000 ____D C:\Users\C&C\AppData\Local\Packages
2022-09-06 13:50 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-06 13:50 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-06 13:49 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-06 13:44 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-09-06 12:59 - 2022-06-12 17:25 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-06 12:56 - 2022-06-12 17:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-06 12:55 - 2022-06-12 17:35 - 000000000 ____D C:\Users\C&C\AppData\LocalLow\Mozilla
2022-09-06 12:05 - 2022-06-12 18:33 - 001709664 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-06 12:05 - 2021-06-05 20:14 - 000769848 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-06 12:05 - 2021-06-05 20:14 - 000148146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-06 12:05 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-09-06 12:00 - 2022-06-12 18:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-06 12:00 - 2022-06-12 17:13 - 000012288 ___SH C:\DumpStack.log.tmp
2022-09-06 11:59 - 2021-06-05 14:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-06 11:52 - 2022-07-21 17:54 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-09-06 11:50 - 2022-06-12 18:34 - 000003660 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-09-06 09:44 - 2022-06-12 17:26 - 000000000 ____D C:\Users\C&C\AppData\Local\D3DSCache
2022-09-05 21:48 - 2022-06-12 18:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-05 11:54 - 2022-06-14 11:12 - 000000000 ____D C:\Users\C&C\Desktop\Dossier FSE camp 2022
2022-09-05 11:26 - 2022-06-12 18:28 - 000000000 ____D C:\Users\C&C
2022-09-05 11:26 - 2022-06-12 17:19 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Adobe
2022-09-04 19:31 - 2022-06-12 22:55 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-04 19:30 - 2022-06-13 19:14 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-09-04 19:30 - 2022-06-12 17:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-04 19:30 - 2022-06-12 17:13 - 004459771 ____N C:\WINDOWS\Minidump\090422-34609-01.dmp
2022-09-04 13:09 - 2022-06-17 14:22 - 000000000 ____D C:\Users\C&C\Desktop\Bureautique
2022-09-04 12:52 - 2022-06-12 17:19 - 000000000 ____D C:\ProgramData\Packages
2022-09-04 12:36 - 2022-06-12 17:35 - 000000000 ____D C:\WINDOWS\system32\11
2022-09-04 12:31 - 2022-07-17 14:57 - 000000000 ____D C:\Users\C&C\Documents\My Games
2022-09-04 12:11 - 2022-07-02 12:45 - 000000000 ____D C:\Users\C&C\AppData\Roaming\HP_Easy_Start
2022-09-04 10:37 - 2022-06-12 19:20 - 000000000 ____D C:\Users\C&C\AppData\Local\CrashDumps
2022-09-04 10:27 - 2022-06-12 17:14 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-04 10:27 - 2022-06-12 17:14 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-03 21:36 - 2022-06-12 17:24 - 000000000 ____D C:\Users\C&C\AppData\Local\PlaceholderTileLogoFolder
2022-09-03 21:06 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-03 12:08 - 2022-07-11 18:04 - 000001419 _____ C:\Users\C&C\Desktop\Roblox Player.lnk
2022-09-03 12:08 - 2022-07-11 18:03 - 000001242 _____ C:\Users\C&C\Desktop\Roblox Studio.lnk
2022-09-03 12:08 - 2022-07-11 18:03 - 000000000 ____D C:\Users\C&C\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2022-09-01 16:28 - 2022-06-12 18:34 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-197869263-2695916888-3010233270-1001
2022-09-01 16:28 - 2022-06-12 18:30 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-09-01 16:28 - 2022-06-12 18:00 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-31 12:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2022-08-30 20:20 - 2022-06-12 18:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-30 20:20 - 2022-06-12 17:35 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-30 15:56 - 2022-06-12 18:30 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{82F4B1DB-FC3E-4E3C-AA25-934937C7D89D}
2022-08-30 15:56 - 2022-06-12 18:30 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{BC8DAC88-9A29-4658-BB23-917E562204E1}
2022-08-26 20:40 - 2022-07-02 12:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-08-26 20:40 - 2022-07-02 12:48 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-08-25 17:13 - 2022-06-29 12:09 - 000003952 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2022-08-25 17:13 - 2022-06-29 12:09 - 000000000 ____D C:\Program Files\Dell
2022-08-25 17:09 - 2022-06-29 12:09 - 000000000 ____D C:\Program Files\dotnet
2022-08-25 17:09 - 2022-06-12 17:59 - 000000000 ____D C:\ProgramData\Package Cache
2022-08-24 17:57 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-24 17:57 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-24 17:53 - 2022-06-12 17:58 - 000000000 ____D C:\Users\C&C\AppData\Local\EpicGamesLauncher
2022-08-22 22:06 - 2022-06-12 17:24 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-22 22:06 - 2022-06-12 17:24 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-08-21 11:03 - 2022-06-12 22:55 - 2434025760 _____ C:\WINDOWS\MEMORY.DMP
2022-08-21 11:03 - 2022-06-12 18:27 - 000476720 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2022-08-21 01:20 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-20 20:53 - 2022-06-12 18:30 - 003103744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-20 20:48 - 2022-07-02 12:44 - 000000000 ____D C:\Users\C&C\AppData\Local\ElevatedDiagnostics
2022-08-20 20:04 - 2022-06-12 17:57 - 000000000 ____D C:\Program Files\Microsoft Office
2022-08-20 19:59 - 2022-06-13 16:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-20 19:58 - 2022-06-13 16:06 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-20 19:56 - 2022-06-12 18:30 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-20 19:56 - 2022-06-12 18:30 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2022-06-29 16:00 - 2022-06-29 16:00 - 000007605 _____ () C:\Users\C&C\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================