Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Exécuté par Benjamin (administrateur) sur DESKTOP-146HTAL (Dell Inc. Latitude E7470) (13-11-2023 20:07:03)
Exécuté depuis C:\Users\Benjamin\Desktop\FRST64.exe
Profils chargés: Benjamin
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3570 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
(C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe ->) (Chaos) [Fichier non signé] C:\Program Files\Chaos\UnifiedLogin\ula.exe
(C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrol.exe
(C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ELECTRIC CO., LTD. -> ALPSALPINE CO., LTD.) C:\Program Files\DellTPad\hidfind.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(C:\Users\Benjamin\AppData\Roaming\protonmail\bridge-v3\updates\3.6.1\bridge-gui.exe ->) (Proton AG -> ) C:\Users\Benjamin\AppData\Roaming\protonmail\bridge-v3\updates\3.6.1\crashpad_handler.exe
(C:\Users\Benjamin\AppData\Roaming\protonmail\bridge-v3\updates\3.6.1\bridge-gui.exe ->) (Proton AG -> Proton AG) C:\Users\Benjamin\AppData\Roaming\protonmail\bridge-v3\updates\3.6.1\bridge.exe
(ChaosGroup) [Fichier non signé] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe <2>
(DriverStore\FileRepository\igdlh64.inf_amd64_6742a32d2d482a17\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6742a32d2d482a17\igfxEM.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7>
(explorer.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrlsupervisor.exe
(explorer.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Chaos) [Fichier non signé] C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <5>
(explorer.exe ->) (pCloud AG -> ) C:\Program Files\pCloud Drive\pCloud.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(explorer.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.332\GoogleCrashHandler64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(Proton AG -> Proton AG) C:\Users\Benjamin\AppData\Roaming\protonmail\bridge-v3\updates\3.6.1\bridge-gui.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (FPT USA Corp. -> ) C:\Windows\System32\DellRctlService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6742a32d2d482a17\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6742a32d2d482a17\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6742a32d2d482a17\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2342.8.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\Benjamin\AppData\Roaming\Telegram Desktop\Telegram.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2013-03-07] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230280 2018-06-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489384 2018-06-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489384 2018-06-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [779152 2019-12-12] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-10-31] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [390896 2023-09-12] (pCloud AG -> )
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [409280 2020-12-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Run: [Wox] => C:\Users\Benjamin\AppData\Local\Wox\app-1.3.578\Wox.exe [211456 2021-03-09] (Wox) [Fichier non signé]
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Run: [] => [X]
HKU\S-1-5-21-725036268-701289504-3211003095-1002\...\Policies\Explorer: []
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CCBService.lnk [2023-02-21]
ShortcutTarget: CCBService.lnk -> C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ChaosUnifiedLogin.lnk [2023-02-21]
ShortcutTarget: ChaosUnifiedLogin.lnk -> C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe (Chaos) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2022-05-09]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2022-05-09]
ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Chaos License Server.lnk [2023-02-21]
ShortcutTarget: Start Chaos License Server.lnk -> C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ("Chaos Software" Ltd -> Chaos)
Startup: C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Proton Mail Bridge.lnk [2023-03-16]
ShortcutTarget: Proton Mail Bridge.lnk -> C:\Program Files\Proton Technologies AG\ProtonMail Bridge\Desktop-Bridge.exe (Proton Technologies AG -> Proton AG)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy-Firefox: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {47062349-549E-4FAE-92CF-2192002E3A2E} - \Opera scheduled assistant Autoupdate 1607200173 -> Pas de fichier <==== ATTENTION
Task: {BD49AAE0-A45E-41AD-A62C-3FC90D72F8B4} - \Benjamin -> Pas de fichier <==== ATTENTION
Task: {107214B4-CDF6-4422-8EE1-2020441F0C47} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false
Task: {DAEF035B-14BC-4169-84E2-C5B340904AAA} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {DAEF035B-14BC-4169-84E2-C5B340904AAA} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {DAEF035B-14BC-4169-84E2-C5B340904AAA} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {42635067-45F9-497A-8E06-616DED4C3339} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [260360 2023-10-31] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {25A73BC7-5065-42D4-A648-C39713BE97B2} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1814008 2023-10-31] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {B391B81C-514E-4046-9395-B97A177CB36C} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {FF4CA5CB-7503-4373-B851-4CD22C8D7671} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [37168176 2023-09-26] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {355633BC-5B35-4658-AEFB-8CD3AC38A11F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BE566F83-CC7C-44C3-AE7A-5D9D9AFF0853} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D1A6E3F5-3171-46CE-AD6C-BD80499665ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-20] (Google LLC -> Google LLC)
Task: {F0D2C915-A318-4959-BB73-3C4FBD5B8C79} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-20] (Google LLC -> Google LLC)
Task: {5F5DAB00-4644-4B55-A822-9AFD28DDF3D6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {601C46C4-4BDA-4EC8-A8A4-BA1065AE6068} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {36A25DBA-43B8-4538-B932-27C6903B5A8B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {B12DDCA1-44B5-487D-AA8B-697B1E8FB3B8} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-146HTAL-Benjamin DESKTOP-146HTAL => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [469640 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {435E613D-AF31-4E92-BECF-FE6B7A911BDA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABBF205F-01A8-466A-A44F-BE48C86A8F04} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {272C3A92-9108-49B2-850E-03F2C61B89B7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9B23E7-8E6E-4C78-91D4-28FF88CF5820} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C79FBF9-6CA7-4584-904B-63DD39F2E0FA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B538B22-BAA0-4305-A76D-1093F92D0FED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1ABE321-BA7C-4126-ACAE-59EC52F605E3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {3EB9AEB6-F202-4C6D-825D-2E5EBDF0929D} - System32\Tasks\Microsoft\Windows\NetFramework\Microsoft .NET Framework => C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe -pool us1.ethermine.org:4444 -pool2 us2.ethermine.org:4444 -wal 0x2760488092a4b071Fa80e26e2537ba5113a56502.MyRig -proto 3 (Pas de fichier)
Task: {9607BF34-4001-4B40-B336-E14A8926D569} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {42A06C37-17CD-46B7-9D58-CC6B6AE6AB0B} - System32\Tasks\Opera scheduled Autoupdate 1607200171 => C:\Users\Benjamin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {ACB12CAC-0EAF-4E20-BCBA-D829275D29A7} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\System32\Wscript.exe [170496 2023-10-13] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{2fe9760f-e0b7-4b00-8ce9-134ce09b38d1}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{760871a2-bf83-4bdf-b0ce-bc304fa69c93}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{760871a2-bf83-4bdf-b0ce-bc304fa69c93}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\Benjamin\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-08]
FireFox:
========
FF DefaultProfile: erd7qwpq.default
FF ProfilePath: C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\erd7qwpq.default [2022-02-17]
FF ProfilePath: C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release [2023-11-13]
FF Homepage: Mozilla\Firefox\Profiles\wdredbv8.default-release -> hxxps://duckduckgo.com/
FF NetworkProxy: Mozilla\Firefox\Profiles\wdredbv8.default-release -> type", 0
FF Notifications: Mozilla\Firefox\Profiles\wdredbv8.default-release -> hxxps://community.e.foundation; hxxps://b.re-captha-version-3-33.top
FF Extension: (Disconnect) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\2.0@disconnect.me.xpi [2020-12-05]
FF Extension: (Cookie AutoDelete) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\CookieAutoDelete@kennydo.com.xpi [2022-12-12]
FF Extension: (Privacy Badger) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2023-11-02]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-11-07]
FF Extension: (Bypass Paywalls Clean (D)) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\magnolia_limited_permissions_d@12.34.xpi [2023-11-13]
FF Extension: (TrackMeNot) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\trackmenot@mrl.nyu.edu.xpi [2020-12-05]
FF Extension: (Tree Style Tab) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\treestyletab@piro.sakura.ne.jp.xpi [2023-09-13]
FF Extension: (uBlock Origin) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\uBlock0@raymondhill.net.xpi [2023-11-02]
FF Extension: (pCloud Save) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{237ead2a-d4b4-4db1-9b50-5350452cabee}.xpi [2022-03-08]
FF Extension: (Smart Blocker) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{38d68dcb-1982-4b81-a6d6-c4e61a3547d4}.xpi [2021-08-20]
FF Extension: (Bitwarden - Gestion des mots de passe) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2023-11-09]
FF Extension: (User-Agent Switcher and Manager) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{a6c4a591-f1b2-4f03-b3ff-767e5bedf4e7}.xpi [2023-04-26]
FF Extension: (Video DownloadHelper) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-25]
FF Extension: (Bypass Paywalls Clean) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{d133e097-46d9-4ecc-9903-fa6a722a6e0e}.xpi [2022-09-26]
FF Extension: (Diigo Web Collector - Capture and Annotate) - C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wdredbv8.default-release\Extensions\{fc2b8f80-d9a5-4f51-8076-7c7ce3c67ee3}.xpi [2020-12-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-30] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6576104 2023-10-11] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [389096 2023-09-06] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [266936 2023-10-31] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [297392 2023-10-31] (Avira Operations GmbH -> Avira Operations GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-11-01] (Microsoft Corporation -> Microsoft Corporation)
S2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [12002208 2019-12-16] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2023-10-31] (Dropbox, Inc -> Dropbox, Inc.)
R2 DellRctlService; C:\Windows\system32\DellRctlService.exe [528968 2017-02-03] (FPT USA Corp. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030592 2020-12-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43784 2023-09-25] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [240392 2023-09-25] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2021-01-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11218336 2023-11-10] (Avira Operations GmbH -> Avira Operations GmbH)
S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11218336 2023-11-10] (Avira Operations GmbH -> Avira Operations GmbH)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-12-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-10] (HP Inc. -> HP Inc.)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [115304 2021-10-05] (Proton Technologies AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [65128 2021-10-05] (Proton Technologies AG -> )
S3 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [50792 2021-10-05] (Proton Technologies AG -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2022-10-04] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2022-10-04] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 BdNet; C:\Windows\System32\DRIVERS\BdNet.sys [190712 2023-03-16] (Avira Operations GmbH -> Avira Operations GmbH)
R1 BdSentry; C:\Windows\System32\DRIVERS\BdSentry.sys [233560 2023-05-26] (Avira Operations GmbH -> Avira Operations GmbH)
R1 cbfs20; C:\Windows\System32\drivers\cbfs20.sys [457768 2022-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbfsconnect2017; C:\Windows\system32\drivers\cbfsconnect2017.sys [481296 2020-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [29160 2018-07-27] (Dell Inc -> OSR Open Systems Resources, Inc.)
R3 DellRctl; C:\Windows\System32\drivers\DellRctl.sys [42296 2017-02-28] (FPT USA Corp. -> )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2020-12-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2020-12-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 netprotection_network_filter; C:\Windows\System32\drivers\netprotection_network_filter.sys [100128 2022-04-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S0 rtp_elam; C:\Windows\System32\DRIVERS\rtp_elam.sys [28784 2023-11-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH)
U5 rtp_filesystem_filter; C:\Windows\System32\Drivers\rtp_filesystem_filter.sys [219448 2023-07-11] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp_filter; C:\Windows\System32\DRIVERS\rtp_filter.sys [364008 2023-11-10] (Avira Operations GmbH -> Avira Operations GmbH)
U5 rtp_process_monitor; C:\Windows\System32\Drivers\rtp_process_monitor.sys [199992 2023-07-11] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp_traverse; C:\Windows\system32\DRIVERS\rtp_traverse.sys [41984 2023-11-10] (Avira Operations GmbH -> Avira Operations GmbH)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-10-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 vpnpbus; C:\Windows\System32\drivers\vpnpbus.sys [20496 2020-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-05] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [118200 2020-03-18] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2021-10-25] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\Windows\system32\DRIVERS\wireguard.sys [165384 2021-10-25] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-13 20:28 - 2023-11-13 20:29 - 000000000 ____D C:\Users\Benjamin\Downloads\Sex.Education.S02.COMPLETE.720p.NF.WEBRip.x264-GalaxyTV[TGx]
2023-11-13 20:24 - 2023-10-27 19:17 - 367897083 _____ C:\Users\Benjamin\Desktop\Sex.Education.S01E07.720p.NF.WEBRip.x264-GalaxyTV.mkv
2023-11-13 20:07 - 2023-11-13 20:15 - 000035445 _____ C:\Users\Benjamin\Desktop\FRST.txt
2023-11-13 20:06 - 2023-11-13 20:12 - 000000000 ____D C:\FRST
2023-11-13 20:01 - 2023-11-13 20:01 - 002383872 _____ (Farbar) C:\Users\Benjamin\Desktop\FRST64.exe
2023-11-12 18:45 - 2023-11-12 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2023-11-12 18:45 - 2023-11-12 18:45 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2023-11-12 14:48 - 2023-11-12 14:48 - 000000004 ____H C:\ProgramData\cm-lock
2023-11-10 22:15 - 2023-11-10 22:15 - 006576104 _____ (Avira Operations GmbH) C:\Users\Benjamin\Downloads\avira_fr_sptl1_faace881067928e4__pavwws.exe
2023-11-10 21:49 - 2023-11-10 21:49 - 000000629 _____ C:\Users\Benjamin\Desktop\aaaa.txt
2023-11-10 20:55 - 2023-10-27 19:18 - 324173443 _____ C:\Users\Benjamin\Desktop\Sex.Education.S01E06.720p.NF.WEBRip.x264-GalaxyTV.mkv
2023-11-09 12:21 - 2023-11-09 12:21 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\kingsoft
2023-11-09 12:21 - 2023-11-09 12:21 - 000000000 ____D C:\ProgramData\kingsoft
2023-11-08 21:00 - 2023-11-09 12:28 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-08 20:39 - 2023-11-08 20:39 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance
2023-11-08 20:39 - 2023-11-08 20:39 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2023-11-08 20:39 - 2023-11-08 20:39 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2023-11-07 20:32 - 2023-11-09 12:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-11-04 15:47 - 2023-11-10 19:52 - 000000000 ____D C:\Users\Benjamin\.affinity
2023-11-04 15:47 - 2023-11-10 19:52 - 000000000 ____D C:\ProgramData\Affinity
2023-11-04 15:40 - 2023-11-05 21:42 - 000000365 _____ C:\Users\Benjamin\Desktop\PTL sortie calendrier.txt
2023-11-03 21:21 - 2023-11-03 21:21 - 000000218 _____ C:\Users\Benjamin\AppData\Local\recently-used.xbel
2023-11-03 21:20 - 2023-11-03 21:20 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\EaseUS
2023-11-03 21:20 - 2023-11-03 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS PDF Editor
2023-11-03 21:20 - 2023-11-03 21:20 - 000000000 ____D C:\Program Files (x86)\EaseUS
2023-11-03 18:38 - 2023-11-03 18:38 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2023-11-03 11:12 - 2023-11-03 11:12 - 000003670 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-11-02 07:45 - 2023-11-02 07:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-11-02 07:44 - 2023-11-02 07:44 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-10-31 12:19 - 2023-10-31 12:19 - 000046824 ____N (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2023-10-26 19:36 - 2023-10-26 19:36 - 000000000 ___HD C:\OneDriveTemp
2023-10-14 15:23 - 2023-10-14 15:23 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\pCloud Drive.lnk
2023-10-14 15:23 - 2023-10-14 15:23 - 000000000 ____D C:\Program Files\pCloud Drive
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2023-11-13 20:30 - 2020-12-12 19:28 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\deluge
2023-11-13 20:27 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-13 20:17 - 2020-12-08 21:15 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Telegram Desktop
2023-11-13 19:53 - 2020-12-07 21:39 - 000005354 _____ C:\Windows\system32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-146HTAL-Benjamin DESKTOP-146HTAL
2023-11-13 19:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-13 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-11-13 19:48 - 2021-12-17 22:39 - 000000000 ____D C:\Windows\SystemTemp
2023-11-13 19:48 - 2021-03-20 14:20 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-13 19:46 - 2022-02-13 16:39 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-13 19:45 - 2021-11-22 10:56 - 000004180 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{F4141728-3F9D-4818-8F9E-44EC1F8E1076}
2023-11-13 19:44 - 2021-11-08 14:28 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Dropbox
2023-11-13 19:44 - 2021-11-08 14:28 - 000000000 ____D C:\Users\Benjamin\AppData\Local\Dropbox
2023-11-13 19:43 - 2023-02-21 22:05 - 000000000 ____D C:\Users\Benjamin\Documents\Chaos Cosmos
2023-11-13 19:43 - 2020-12-05 12:00 - 000000000 __SHD C:\Users\Benjamin\IntelGraphicsProfiles
2023-11-13 19:42 - 2021-03-20 14:20 - 000003916 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-13 19:42 - 2021-03-20 14:20 - 000003792 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-12 22:20 - 2021-09-04 13:09 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Evernote
2023-11-12 22:20 - 2020-12-05 11:59 - 000000000 ____D C:\Users\Benjamin
2023-11-12 22:15 - 2020-12-06 20:55 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\vlc
2023-11-12 21:57 - 2020-12-04 14:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-11-12 14:59 - 2020-12-04 14:41 - 001771618 _____ C:\Windows\system32\PerfStringBackup.INI
2023-11-12 14:59 - 2019-12-07 15:50 - 000794640 _____ C:\Windows\system32\perfh00C.dat
2023-11-12 14:59 - 2019-12-07 15:50 - 000150754 _____ C:\Windows\system32\perfc00C.dat
2023-11-12 14:59 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-11-12 14:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2023-11-12 14:47 - 2023-03-01 10:27 - 009793024 _____ C:\Windows\system32\rtp.db
2023-11-12 14:47 - 2020-12-04 14:29 - 000000000 ____D C:\Intel
2023-11-12 14:47 - 2020-12-04 14:28 - 000008192 ___SH C:\DumpStack.log.tmp
2023-11-12 14:47 - 2020-12-04 14:28 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-11-12 14:47 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2023-11-12 14:41 - 2020-12-06 16:13 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Microsoft\Word
2023-11-12 14:41 - 2020-12-06 16:12 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Microsoft\Excel
2023-11-12 10:14 - 2020-12-05 13:15 - 000000000 ____D C:\Users\Benjamin\AppData\Local\Spotify
2023-11-12 10:14 - 2020-12-05 13:14 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Spotify
2023-11-11 07:18 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-11-11 04:40 - 2020-12-10 08:48 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-10 22:05 - 2020-12-05 13:15 - 000000000 ____D C:\Users\Benjamin\AppData\Local\pCloud
2023-11-10 19:52 - 2020-12-05 12:00 - 000000000 ____D C:\Users\Benjamin\AppData\Local\Packages
2023-11-10 19:52 - 2020-12-04 14:37 - 000000000 ____D C:\ProgramData\Packages
2023-11-10 15:43 - 2020-12-05 13:15 - 000000000 ____D C:\ProgramData\Package Cache
2023-11-10 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-11-10 14:05 - 2020-12-05 12:02 - 000000000 ___RD C:\Users\Benjamin\OneDrive
2023-11-10 14:03 - 2020-12-28 19:53 - 000001426 _____ C:\Windows\system32\default_error_stack-000000-000000.txt
2023-11-10 13:53 - 2023-04-24 18:53 - 000364008 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_filter.sys
2023-11-10 13:53 - 2022-05-09 20:25 - 000041984 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_traverse.sys
2023-11-10 13:52 - 2022-05-09 20:25 - 000028784 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_elam.sys
2023-11-09 14:11 - 2022-01-02 22:38 - 000000000 ____D C:\Users\Benjamin\Downloads\Telegram Desktop
2023-11-09 12:28 - 2020-12-05 12:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 12:28 - 2020-12-04 14:28 - 000440240 _____ C:\Windows\system32\FNTCACHE.DAT
2023-11-09 12:14 - 2020-12-05 12:58 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-11-08 20:39 - 2020-12-05 21:29 - 000003478 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2023-11-08 08:38 - 2020-12-05 13:22 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-11-07 07:44 - 2021-12-12 11:27 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-725036268-701289504-3211003095-1002
2023-11-07 07:44 - 2021-12-12 11:27 - 000003382 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-725036268-701289504-3211003095-1002
2023-11-07 07:44 - 2020-12-06 15:58 - 000002433 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-05 21:35 - 2021-09-04 13:09 - 000000000 ____D C:\Users\Benjamin\AppData\Local\evernote-client-updater
2023-11-05 13:36 - 2020-12-05 17:19 - 000000000 ____D C:\Users\Benjamin\AppData\Local\D3DSCache
2023-11-04 15:47 - 2020-12-05 12:00 - 000000000 ____D C:\Users\Benjamin\AppData\Local\Publishers
2023-11-03 21:28 - 2020-12-04 14:30 - 000000000 ____D C:\ProgramData\Adobe
2023-11-03 18:54 - 2020-12-06 14:44 - 000000000 ____D C:\Users\Benjamin\Desktop\projets
2023-11-03 15:43 - 2020-12-06 16:19 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-11-03 15:43 - 2020-12-05 12:00 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\Adobe
2023-11-03 11:12 - 2020-12-13 12:12 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-11-03 11:12 - 2020-12-13 12:12 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-11-02 07:45 - 2021-11-08 14:28 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-11-02 07:44 - 2020-12-06 16:05 - 000000000 ____D C:\Program Files\Microsoft Office
2023-10-28 14:33 - 2020-12-10 08:48 - 000003688 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-10-28 14:33 - 2020-12-10 08:48 - 000003564 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-10-27 18:44 - 2021-02-23 18:52 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-17 20:57 - 2022-01-06 11:21 - 000000000 ____D C:\Users\Benjamin\AppData\Roaming\com.tuto.player
2023-10-17 20:24 - 2020-12-19 19:41 - 000000000 ____D C:\Users\Benjamin\AppData\Local\Ubisoft Game Launcher
2023-10-17 20:23 - 2022-01-06 11:17 - 000000000 ____D C:\Program Files\Tuto.com
2023-10-17 20:07 - 2022-06-04 19:16 - 000000000 ____D C:\Users\Benjamin\AppData\Local\CrashDumps
==================== Fichiers à la racine de certains dossiers ========
2021-10-07 18:14 - 2022-09-13 19:09 - 000001456 _____ () C:\Users\Benjamin\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2023-07-05 20:09 - 2023-07-05 20:13 - 000022680 _____ () C:\Users\Benjamin\AppData\Local\digikamrc
2022-10-16 18:34 - 2023-11-03 18:38 - 000000205 _____ () C:\Users\Benjamin\AppData\Local\oobelibMkey.log
2023-11-03 21:21 - 2023-11-03 21:21 - 000000218 _____ () C:\Users\Benjamin\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================